On Wed, Feb 10, 2010 at 3:16 AM, David Burgess <[email protected]> wrote: > Greetings, > > I have an ADSL modem that is not currently in use, but will be soon. > When said modem is connected directly by cable to pfsense's WAN, and > the appropriate address/netmask assigned statically to the WAN > (192.168.1.0/24), I can reach the modem's web interface at its > assigned address (192.168.1.1) from a host on the LAN > (192.168.2.0/24). > > However, if I assign the modem a different address (192.168.4.2), > place the modem on a different interface (192.168.4.1/24), attached > directly to pfsense by cable again, now I cannot reach it from the > LAN. On the LAN I have, for the purpose of testing, a rule to permit > all from all. I have a similar rule on the opt interface that the > modem is attached to. Both of these rules are set to log. > > When I ping the modem from pfsense I get responses. The modem appears > in the arp table. Yet, for some reason, when I ping from a LAN host, I > see the ping request show up in the log, but no response is received. > I did a packet capture on pfsense and I see the icmp request go out, > but nothing comes back from the modem. Similarly I can't bring up the > modem's web interface in this configuration. > > Any idea what's going on here?
You probably don't have a gateway configured on the OPT interface, so it's being treated as a LAN/internal interface, and the traffic isn't being NATed. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected] Commercial support available - https://portal.pfsense.org
