Jump to content

PfSense Router Inside Network.

Trouble Kelp
By Trouble Kelp
in Networking
 Share
Posted

I am trying to set up a pfSense router to use as a separate network from my main network but I am having some problems. I have set up an configured the pfSense router and have it up and running but I can’t seem to get the internet working on it. It is running on a VM in ESXi 6.7 and I have a virtual switch set up that takes in the internet from my ISP’s router into the pfsense VM as the WAN connection. Then another virtual switch going from the pfSense VM LAN into the other VMs.
PfSense was getting an IPv6 and IPv4 address but I couldn’t connect to the internet from it. Then I tried putting it in the DMZ of my ISP’s router nothing really changed. When I set up the pfSense box I unchecked the “Block RFC1918 Private Networks” and “Block bogon networks.”
My ISP requires the router WAN be set up with VLAN Tag 2 and VLAN priority as 3 so I also tried setting that up while the pfSense box is in the DMZ but with this configuration pfSense doesn’t get any IP addresses.
What is the best way to go about this? Should I keep the pfSense box in the DMZ or not? Am I doing something wrong?

CPU: Intel i5 2310 Mobo: MSI Z77A-G41 GPU: MSI 760 Twin Frozr 4GB RAM: 8GB ADATA XPG Gaming Series 


Storage: OCZ Aglility 3 120 GB SSD, 2 250GB Segate HDDs Case: Cooler Master HAF 912 PSU: Antec NEO ECO 520W


 

Link to comment
https://linustechtips.com/topic/1052018-pfsense-router-inside-network/
Share on other sites
Link to post
Share on other sites
Posted

Use an IP from your LAN as the pfSense external/WAN connection, no need to put it in your DMZ. Make sure that not only does the pfSense have routes set up to the ISP router, but also that the ISP router has routes set up returning to the pfSense router. I suspect that is where the connection issue lies.

[Out-of-date] Want to learn how to make your own custom Windows 10 image?

 

Desktop: AMD R9 3900X | ASUS ROG Strix X570-F | Radeon RX 5700 XT | EVGA GTX 1080 SC | 32GB Trident Z Neo 3600MHz | 1TB 970 EVO | 256GB 840 EVO | 960GB Corsair Force LE | EVGA G2 850W | Phanteks P400S

Laptop: Intel M-5Y10c | Intel HD Graphics | 8GB RAM | 250GB Micron SSD | Asus UX305FA

Server 01: Intel Xeon D 1541 | ASRock Rack D1541D4I-2L2T | 32GB Hynix ECC DDR4 | 4x8TB Western Digital HDDs | 32TB Raw 16TB Usable

Server 02: Intel i7 7700K | Gigabye Z170N Gaming5 | 16GB Trident Z 3200MHz

Link to post
Share on other sites
Posted
  • Author
44 minutes ago, 2FA said:

Use an IP from your LAN as the pfSense external/WAN connection, no need to put it in your DMZ. Make sure that not only does the pfSense have routes set up to the ISP router, but also that the ISP router has routes set up returning to the pfSense router. I suspect that is where the connection issue lies.

How would I start to set that up? Would that be in Systems > Routing? It shows the ISP router's IP in as the WAN_DHCP Gateway but I'm not sure if that's the right thing. Or is it firewall rules? I'm not sure if that is the right thing. My ISP's router only has a couple options. You can set do port forwarding or DMZ and that's about it.

CPU: Intel i5 2310 Mobo: MSI Z77A-G41 GPU: MSI 760 Twin Frozr 4GB RAM: 8GB ADATA XPG Gaming Series 


Storage: OCZ Aglility 3 120 GB SSD, 2 250GB Segate HDDs Case: Cooler Master HAF 912 PSU: Antec NEO ECO 520W


 

Link to post
Share on other sites
Posted
1 hour ago, Trouble Kelp said:

How would I start to set that up? Would that be in Systems > Routing? It shows the ISP router's IP in as the WAN_DHCP Gateway but I'm not sure if that's the right thing. Or is it firewall rules? I'm not sure if that is the right thing. My ISP's router only has a couple options. You can set do port forwarding or DMZ and that's about it.

https://docs.netgate.com/pfsense/en/latest/book/routing/static-routes.html

 

You'll need a router that set up a route to the pfSense router.

[Out-of-date] Want to learn how to make your own custom Windows 10 image?

 

Desktop: AMD R9 3900X | ASUS ROG Strix X570-F | Radeon RX 5700 XT | EVGA GTX 1080 SC | 32GB Trident Z Neo 3600MHz | 1TB 970 EVO | 256GB 840 EVO | 960GB Corsair Force LE | EVGA G2 850W | Phanteks P400S

Laptop: Intel M-5Y10c | Intel HD Graphics | 8GB RAM | 250GB Micron SSD | Asus UX305FA

Server 01: Intel Xeon D 1541 | ASRock Rack D1541D4I-2L2T | 32GB Hynix ECC DDR4 | 4x8TB Western Digital HDDs | 32TB Raw 16TB Usable

Server 02: Intel i7 7700K | Gigabye Z170N Gaming5 | 16GB Trident Z 3200MHz

Link to post
Share on other sites
Posted
  • Author
23 hours ago, 2FA said:

https://docs.netgate.com/pfsense/en/latest/book/routing/static-routes.html

 

You'll need a router that set up a route to the pfSense router.

Thanks for the reply! Looks like it was actually the network settings for the VM I was connecting to the pfSense box was trying to access the ISP router instead of pfSense. 

CPU: Intel i5 2310 Mobo: MSI Z77A-G41 GPU: MSI 760 Twin Frozr 4GB RAM: 8GB ADATA XPG Gaming Series 


Storage: OCZ Aglility 3 120 GB SSD, 2 250GB Segate HDDs Case: Cooler Master HAF 912 PSU: Antec NEO ECO 520W


 

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing Networking

×