Hello list,
I'm facing a problem and I'd like some help with it. I have set up two Dell R200 severs with pfSense complete with carp for failover. I'll try to explain the topology as clear as I can Currently pfSense (lets say, 10.1.0.1) sits between one big network (10.1.0.0/16) from now on referred as BigLAN and our wan routers. BigLAN has about 2k workstations *plus* some routers (10.1.0.x) connecting us with our branches. We now are moving (at last) the workstations to vLANs (10.10.0.0/16) but this can't happen overnight so these two setups have to coexist for the transition period. So now we have the vLANs connected to the BigLAN where pfSense is and through it to the Outside world. Now the problem I'm facing is that I see dropped packets when a workstation from a vLAN is trying to access one of our branches. That is going out of the vLAN (10.10.x.y) inside the BigLAN to pfSense (10.1.0.1) and then routed (w/ static routes) through a router in the same LAN as pfSense (lets say 10.1.0.2) to our branch. I have activated the option to "Bypass firewall rules for traffic on the same interface", I also inserted a rule to allow this specific traffic but I still see packets being dropped by the *default* rule. Am I doing something wrong? Is there any other way to accomplish the same thing? Thanx in advance! --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected] Commercial support available - https://portal.pfsense.org
