How do I route between interfaces in PFsense?

firewall routing pfsense interface
58,582

Firewall rules are correct. Probably a host firewall, or wrong subnet mask on a host, or missing/wrong default gateway.

Share:
58,582

Related videos on Youtube

Josh
Author by

Josh

I am Josh Gitlin, CTO and co-founder of Digital Fruition a software as a service eCommerce company. Currently serving as Principal DevOps Engineer at Pinnacle 21, and hacking away at Cinc Server, the free-as-in-beer rebranded distribution of Chef Server.

Updated on September 18, 2022

Comments

  • Josh
    Josh over 1 year

    I have a PFsense router which divides a single WAN connection into three NAT networks on three interfaces: LAN, OPT1 and OPT2. This allows me to segregate my network so that computers on the OPT1 and OPT2 networks can't reach servers on the LAN network. This is working fine.

    There is a single server on the LAN network which I want to allow computers on the OPT2 network to connect to via readonly NFS. I have added firewall rules allowing traffic from the OPT2 network to the IP of the server on the LAN, but yet I still cannot connect.

    How do I route between two interfaces in PFsense?

    EDIT: Here's screen captures of my rules. I'm trying to allow computers on the FOREST interface (172.16.1.0/24) to access mission (192.168.1.107) over SSH. I used SSH because I know it's port 22 and I can ssh -v and see if it connects or not. It does not:

    FOREST rules DFLAN rules

    • Admin
      Admin over 12 years
      If your firewall rules are correct and the networks are directly connected this should Just Work. Review your logs for a reason, and if you don't find one post your configuration so we can be more helpfil...
    • Admin
      Admin over 12 years
      @voretaq7: I'm guessing my firewall rules aren't correct. I'll post screen captures of my config.
    • Admin
      Admin over 12 years
      Your links aren't correct as the screen captures aren't showing up.
    • Admin
      Admin over 7 years
      Hmm. The order of the rules matters, the tip rules are processed first. You may want to re-order your rules.
    • Admin
      Admin over 3 years
      Same issue here. Rules are "correct" and can't even ping across the subnets... There has to be some other configuration step, because this "just doesn't work"
  • Josh
    Josh over 12 years
    The host has no firewall... All machines can contact internet servers just fine so I doubt it's a missing/wrong gateway. It could possibly be a subnet mask issue, but I am pretty sure that the subnet masks were all set correctly...

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

What are the security risks of using pfsense in a virtualised environment?
Blocking a network device from communicating with another device on the LAN
How is the loopback device implemented?
Redirect http using iptables for an ip range
Routing everything except a certain IP range through an OpenVPN tunnel
Open-source firewall/router software (alternative to Kerio WinRoute)
IPV6 at home: my ISP delegates me a static IPV6 /56 subnet, how can I set up an IP scheme & DHCP6 for my network?
How can I configure pfSense to allow traffic from LAN to WAN?
How to isolate WLAN clients in OpenWRT?
Using pfSense, OpenVPN Connects but Still Can't See the Network