Hi. I've added a second network card to an existing functioning pfSense 1.2.2 firewall and setup dual LAN successfully apart from, unless I set a gateway address (of the new LAN IP interface) in the new LAN interface's DHCP server, I can neither ping the pfSense new LAN interface or an Internet address.
Why is this, when that gateway setting seems to say that inserting this IP address is the default anyway? Beside the gateway option it says "The default is to use the IP on this interface of the firewall as the gateway. Specify an alternate gateway here if this is not the correct gateway for your network." Here are all the configuration options I've made in order to set this up: * Interfaces -> OPT1 - [*] Enable Optional 1 interface - Description: LAN2 - IP address: 10.1.0.1/24 * Services -> DHCP server -> LAN2 - [*] Enable DHCP server on LAN2 interface - Range: 10.1.0.100 to 10.1.0.255 - Gateway: 10.1.0.1 * Add a firewall rule to block traffic from LAN2 to LAN: - Action: Block - Interface: LAN2 - Protocol: any - Source: Type: any (or maybe 'LAN2 subnet'?) I think any is best for a deny rule - Destination: LAN subnet - Description: Block LAN2 -> LAN * Add a firewall rule to block traffic from LAN to LAN2: - Action: Block - Interface: LAN - Protocol: any - Source: Type: any (or maybe 'LAN subnet'?) I think any is best for a deny rule - Destination: LAN2 subnet - Description: Block LAN -> LAN2 * Add a firewall rule to allow traffic of any protocol from the LAN2 subnet to any address: - Protocol: any - Source: Type: LAN2 subnet - Description: Default LAN2 -> any Any help is very appreciated. -- Pete Boyd Open Plan IT - http://openplanit.co.uk The Golden Ear - http://thegoldenear.org --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected] Commercial support available - https://portal.pfsense.org
