I switched off DCHP server in my router (Linksys E1000 w/ DD_WRT) and…

pfsensefanboy

pfSense seems to assign just one IP address! Is this normal behavior, or do I need to do something differently….either on the pfSense box, or my clients, or perhaps both?

Here's how my layout is:

ISP Modem ==> pfSense box ===> Router (Linksys E1000 w/ DD-WRT) ===> 1 Laptop & 2 Desktops connected by wire

Whilst the one desktop gets a valid IP address 192.168.x.x.....the other machines seem to be ending up with the dreaded 169.254.x.x addresses.

Thanks.

heper

you stopped using the wan port on the linksys right ?

pfsensefanboy

Dang it! No…I didn't know I had to do that!

So, should I just use one of the LAN ports instead...and that will just work....magically...or do I have to make any other changes anywhere?

I was just googling, and was reading something about changing the routers' wireless mode from "AP" to "Bridge"....but wasn't sure which bridge to change mine to (Client Bridge, or Repeater Bridge), if indeed that needs to be changed.

heper

i don't know how it works with dd_wrt…
with default firmware on consumer routers you generally can't put them in pure bridge-mode. the only option you have then is to disable dhcp and stop using the wan-port.

pfsensefanboy

Oh okay….I'll first try by leaving the router in AP mode and only moving the cable from WAN port to LAN port.

If that doesn't work, I'll try each of the other two bridge options and see how that goes.

Thanks

johnpoz

If your desktop is behind your dd-wrt router gets an IP from pfsense… Then the other devices should as well..

If you want to use your router as wireless AP.. Doesn't really matter what mode you put it in.. Just give it an IP on your network for its lan, turn off its dhcp server and connect it to your network via one of its lan ports... There you go AP...

Yes dd-wrt depending on hardware can change the wan to be part of the lan... Do you really need this 5th port?? If your so short on ports I would suggest you get a switch with the number of ports you require.

pfsensefanboy

Thanks JP!

So based on what you're saying, I believe I might have done two things wrong…and please correct me if I'm wrong:

WRONG: I have connected LAN-out (from pfSense box) to WAN-in (on router). TO CORRECT: On router side, move the cable to one of the four LAN-in ports.
WRONG: On the pfSense box, I have set the LAN IP as 10.0.0.1/8, whereas I've given the router an IP of 192.168.1.1. TO CORRECT: I guess I have to either change the pfSense IP to 192.168.1.1 or change the router to 10.0.0.1. Am I correct there, and if yes, then which is a better/recommended way to go (or does it not matter)?

Now, coming to the DD-WRT settings on my router (see attached picture), and based on what you suggested i.e. only switch off the DHCP Server (very last visible option in attached pic)….do I not have to make either of the following 2 changes as well:

Change the "WAN Connection Type" from "Automatic Configuration - DHCP" to "Disabled"?
Change the "DHCP Type" from "DHCP Server" to "DHCP Forwarder"?

With regards to "shortage of ports"….yes, I am indeed considering (and looking for) an affordable switch (16 or 24 ports), but I'm totally in analysis-paralysis mode (and coupled with that, a networking newbie)....so a) I don't really know what I need i.e. managed or unmanaged, and b) I'm not sure which brand to invest in i.e. pay the big bucks for a Cisco, or go cheap and get a TP-Link, or perhaps there might be other brands that are good value-for-money that I don't know about?

Thanks again for the help!

![DD-WRT Settings.jpg](/public/imported_attachments/1/DD-WRT Settings.jpg)
![DD-WRT Settings.jpg_thumb](/public/imported_attachments/1/DD-WRT Settings.jpg_thumb)

divsys

WRONG: I have connected LAN-out (from pfSense box) to WAN-in (on router). TO CORRECT: On router side, move the cable to one of the four LAN-in ports.

WRONG: On the pfSense box, I have set the LAN IP as 10.0.0.1/8, whereas I've given the router an IP of 192.168.1.1. TO CORRECT: I guess I have to either change the pfSense IP to 192.168.1.1 or change the router to 10.0.0.1. Am I correct there, and if yes, then which is a better/recommended way to go (or does it not matter)?

For item 1) definitely move the cable away from WAN to LAN on the WAP.

For 2):

As Johnpoz suggested, What you want in the end is the WAP to have an address on the pfSense LAN network, just like any other device.
Set the LAN subnet on pfSense to something rational like 10.0.10.0/24 (don't use /8 that's way too Huge).
Make sure you have the DHCP server enabled on the pfSense LAN NIC and set a reasonably small range (eg. 10.0.10.10 - 10.0.10.63).
Set your DD-WRT as you mentioned, WAN disabled, LAN set to DHCP forwarder (or None should work).
Also make sure you set the WAP LAN address to something on the pfSense LAN subnet (I like high addresses, eg 10.0.10.254 )

The WAP should end up acting just like a wired switch would, except the traffic it passes being obtained via wireless as well as wired connections.

My philosophy for connections remains the same - wireless is nice and often convenient, but nothing beats a wired connection for reliability and performance in the long run.

Definitely get yourself at least an 8 port switch (16 are nice …..).
As far as un vs managed, the extra functions of managed are definitely nice, though the best way to get into Cisco is via the used market, Ebay or even Craigslist/Kijijji can be your friend.

Keep at it, and perhaps draw yourself a diagram of what you expect this all to look like.
It's amazing what putting your thoughts down on paper can do to clarify a situation ;)

johnpoz

"2) Change the "DHCP Type" from "DHCP Server" to "DHCP Forwarder"?"

The dhcp server on the dd-wrt router would just be OFF. The dhcp server on pfsense would be just normal dhcp server.. Doesn't care if the clients are from wifi or wired.

If your pfsense IP is 192.168.1.1/24 then say for example your dd-wrt lan IP could be 192.168.1.2/24 and say your dhcp scope on your pfsense router could be 192.168.1.100-150

This would handle 50 dhcp clients.

If your using 10.0.0.0/24 network - then use say 10.0.0.1/24 for pfsense 10.0.0.2/24 for dd-wrt lan IP.

pfsensefanboy

Thanks JohnPoz, DivSys, and Heper :)

With all of your help I have been able to resolve my issues.

Not only that….but I've also been able to configure a TP-Link dual-channel wireless NIC that I installed in the machine, and it is now allowing our wireless clients (tablets, smartphones, laptops etc.) to work at the 5Ghz level, and therefore there's also no more complaints about the microwave causing stoppage of Netflix movies, games, youtube videos etc.

@DivSys, I like your idea of drawing a diagram of what I expect my network to look like. I do have a diagram of my as-is setup (which I had attached to another post, from a few days back)...and I will certainly update that one to show my to-be layout, and work towards achieving that objective.

I will also be looking for (at least) a 16 port managed switch.

Cheers guys!