WAN connection droping
-
Hi all,
I am in a terrible situation. Here's my setup :
ISP –Static Ip--> Modem –-192.168.1.1/24--->8 Port switch–-192.168.1.103--->Pf sense Firewall–----192.168.4.1/24--->Pcs,Wifi,laptop
From 8 port switch–---One is connected to wifi device for MDs (bypassing firewall)
One is connected to DVRThe firewall Gateway log keep complaining about WANGW down 192.168.1.1. As a result my users do not get internet.
Also I have noticed in LAN interface In/out packet block keep on increasing.
Can any one please help. It's quite urgent.
With warm regards,
Ashima -
Try connecting a device directly to the modem and see if you lose any pings. It could be the port on the modem is faulty or it could even be the switch port(s) that are playing up. As you are using a managed switch, can you ping the modem from your switch at all?
Has this issue only started to occur recently?
Do you see anything untoward in your firewall logs?
-
Thanks for the quick reply,
Internet work flawlessly if I connect my laptop to modem. I have also tried changing my switch. I am not using managed switch. Should I use one.
Also I tried connecting my entire LAN directly through switch, that is every one in 192.168.1.1/24 series bypassing firewall. Things work without trouble.
Thank you
Ashima -
Did this issue just occur recently, randomly? Or has something been changed or added and the issue has arose since then?
If you ping from a PC behind the firewall to both the firewall WAN interface and to the switch, do any of the pings drop?
Can you post your firewall logs for the LAN interface?
-
Yes, things were working quite smoothly for few days.. until 5 days back we faced this issue.
This is the response when I ping my modem from firewall box
PING 192.168.1.1 (192.168.1.1): 56 data bytes
64 bytes from 192.168.1.1: icmp_seq=0 ttl=254 time=0.649 ms–- 192.168.1.1 ping statistics ---
3 packets transmitted, 1 packets received, 66.7% packet loss
round-trip min/avg/max/stddev = 0.649/0.649/0.649/0.000 msOne of my boy is reaching the location in 15 min. I'll post the ping result from a laptop connected to LAN once he reaches.
I am remotely accessing the firewall.I am attaching Firewall LAN interface Log. I hope this what you have asked for.
Regards,
Ashima
 -
Just an update
My person reached there and he is saying that he is getting request time out if he ping modem from laptop connected to LAN port.
-
Just an update
My person reached there and he is saying that he is getting request time out if he ping modem from laptop connected to LAN port.
Is the laptop connected directly to the modem here?
-
If he connects the laptop directly to modem or through the switch he gets flawless internet. As soon as he connects the firewall to switch… the ping packets start dropping.
Can my firewall WAN port be faulty.
Thanks
-
If you've change the switch in front of the firewall then yes I'd say it is your WAN port. Easiest way to test is to set pings going to both the LAN and WAN interfaces from a machine in front of the pfSense. If your LAN doesn't drop and your WAN does it's safe to say it is you WAN NIC that may be faulty. If your LAN drops too, I'd go with the switch being faulty! :)
-
Thanks for all the support and quick response.
Yes I have changed the switch in front of pfsense box (between modem and firewall). I have asked the boys to bring the firewall to office… I guess I'll do the entire testing tomorrow morning.
I hope it's just the WAN port. It's paining from past 1 week. Testing each and every device.
I'll post once again after testing.
Thank you for all the help.
With warm regards,
Ashima -
No problem hope you get it sorted.
-
Tested my firewall thoroughly in the office. Working without any problem. Changed the modem at the client place. Looks like ISP have provided buggy modem (Dlink DSL- 252OU) for a 8 MBPS connection.
Going to shift firewall unit after 2 days. I guess things would start working fine.
A special thanks to jonathanbaird for all the effort.
Regards,
Ashima.