Pfsense behind a router



  • I couldn't find anything for my specific Internet setup, so I apologize if this has already been answered.

    Currently I have an Asus RT-AC87R running as my router for my home network.

    I live in a rural area and use a Verizon Pantech UML 295 for my internet connection on an old grandfathered unlimited data plan, plugged directly into my router, which works like a champ.

    I have pieced together an old PC and installed pfsense successfully.

    What I would like to know, is what would be the best way to configure my router and the pfsense box together?

    My router does a great job in terms of the usb adapter as my primary Internet connection, and I am not entirely sure how well the pfsense box would do with the adapter plugged into it vs. the router.

    I don't know if the adapter would still work plugged into my router if I were to use it as an AP or Bridge behind the pfsense box.

    I hope this makes sense and appreciate any help that can be given.

    TIA!



  • I would use the Asus as AP and let pfSense do its job.



  • @Wolf666:

    I would use the Asus as AP and let pfSense do its job.

    So, to be clear, changing the router to AP mode would still do the legwork of using the usb adapter as my internet connection and then let me use my pfsense box as the router?

    If so, that is easier than I thought it would be.



  • You should be able to plug the 4G dongle into the pc where pfSense is running and configure it properly: https://doc.pfsense.org/index.php/Known_Working_3G-4G_Modems



  • @Wolf666:

    You should be able to plug the 4G dongle into the pc where pfSense is running and configure it properly: https://doc.pfsense.org/index.php/Known_Working_3G-4G_Modems

    So, assuming plugging the USB dongle into the board, would I be able to get away with only having one ethernet port on the board?



  • So, I have it up and running, UML 295 plugged into the pfSense box, connected, LAN connected to my laptop.

    It is saying that I have no internet connectivity, now, though.



  • You have outbound NAT setup for correct external interface? I assume that USB would create it's own interface and that it's not using WAN. See this post for example using NAT for an alternative interface:

    https://forum.pfsense.org/index.php?topic=105979.msg596684#msg596684



  • Post screenshot of firewall and NAT rules, also screenshot of interface assignements. Did you follow this https://doc.pfsense.org/index.php/Configuring_3G_modems ?



  • Ok. I have verified that my WAN connection, via the dongle, is in fact working, as I can use option 7 in the setup interface to ping google's DNS servers.

    Now, I cannot access the web GUI.

    How I have it setup, right now:

    USB dongle: Down -> v4DHCP4 -> 192.168.32.227/24
    Intel LAN: UP

    (So, ue0 as wan and em0 as LAN).

    I have the pfSense box plugged directly into my laptop.

    I cannot obtain an IP address and my adapter just shows "unknown network".

    Any ideas? Again, I am still in the setup, no web GUI.

    TIA



  • I think PPP must be assigned to WAN interface since it is your only internet connection and it must have an external IP nto private like 192.168.x.x

    Again, please post screenshots of your config.



  • @Wolf666:

    Again, please post screenshots of your config.

    Use your cell phone and take a picture since, I'm assuming, you aren't able to screenshot this with it being your router and not the webConfigurator you're working with.  You might could go to "1) Assign Interfaces" and NOT assign the WAN and just setup the LAN with a static IP of 192.168.1.1/24 so that you can login to the webConfigurator on the Laptop.  You'll need to manually assign your Laptop as well, though.