In Status/System Logs/Settings check the "Log packets matched from the default block rules in the ruleset" option and see if the firewall log shows blocked packets.
Are the interfaces set to block private networks, since you are using those on all interfaces? -- Steve Yates ITS, Inc. -----Original Message----- From: List [mailto:list-boun...@lists.pfsense.org] On Behalf Of Pol Hallen Sent: Friday, September 9, 2016 10:53 AM To: pfSense Support and Discussion Mailing List <list@lists.pfsense.org>; mo...@ymkatz.net Subject: Re: [pfSense] nat or routing? Hi Moshe, thanks for all your advices about security :-) Very kind! > All you need to do is create rules on each LAN interface that allow > incoming traffic from the other LAN. > > - Rule on LAN1 interface: > - Action: "Pass" > - Source: "LAN1 net" > - Destination: "LAN2 net" > - Rule on LAN2 interface: > - Action: "Pass" > - Source: "LAN2 net" > - Destination: "LAN1 net" some problem: I can ping lan1 from lan2 (and vice-versa) but traceroute doesn't work and if I try to connect to local webserver no reply. Any idea to solve the problem? thanks for help! Pol _______________________________________________ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold _______________________________________________ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold