WAN interface is UP / PPoE connection working / Can reach WANs Gateway / Cannot reach the internet [solved]
-
Hi,
I recently build a simple 2 interface firewall with pfSense. I have a PPoE connection on my WAN interface. The interface connects properly and the firewall receives a public IP. WAN interface is up. I can ping and reach my WAN's gateway, but can not reach the internet. Firewall rules are default that comes with PfSense. No changes have been made there. ISP modem is configured as bridge.
I have a previous box with OpnSense. Same configuration. No problems at all. I also removed my pfSense box and connected my home router directly to the ISP modem, using PPoE on its WAN interface. Also, no problems.
What am I doing wrong?!
Thanks everyone.
Captura de tela de 2025-05-06 03-19-20.png
-
MAC address issue ?
Clone the MAC from the WAN interface used by the OpSense on the pfSense WAN interface ?
Or
Restart the ISP modem first, and then start pfSense ? -
@Gertjan As I said previously, both my OpnSense box and my home router, when connected to the ISP modem via PPPoE, works flawlessly. Two completely different interfaces and different MACs.
I forgot to mention that I removed my network card from my OpnSense box and installed on my pfSense box, so they are using the same card with the same MAC adress.
I also already tried to restart both of them. Even had my ISP modem off for 10 minutes.
Thanks for the fast reply.
-
@desert_myrrh said in WAN interface is UP / PPoE connection working / Can reach WANs Gateway / Cannot reach the internet:
What am I doing wrong?!
The WAN interface does indeed look good. But on LAN you set the IP to 192.168.100.6, subnet mask to 255.255.255.248 = /29 which gives you 6 usable IPs. Nothing wrong but is that on purpose?
I can ping and reach my WAN's gateway, but can not reach the internet
- Can you ping 1.1.1.1 from pfSense? And/or from a client?
- Can you show the gateway page (redact public IPs)?
-
@patient0 said in WAN interface is UP / PPoE connection working / Can reach WANs Gateway / Cannot reach the internet:
@desert_myrrh said in WAN interface is UP / PPoE connection working / Can reach WANs Gateway / Cannot reach the internet:
What am I doing wrong?!
The WAN interface does indeed look good. But on LAN you set the IP to 192.168.100.6, subnet mask to 255.255.255.248 = /29 which gives you 6 usable IPs. Nothing wrong but is that on purpose?
Yeap. The LAN interface is connected to a small switch. There are only 2 computers connected through cable. I usually have a policy to restrict the network size to its minimum possible size, but I can change to its default mask. At this point, I am accepting every suggestion possible.
I can ping and reach my WAN's gateway, but can not reach the internet
- Can you ping 1.1.1.1 from pfSense? And/or from a client?
- Can you show the gateway page (redact public IPs)?
No. Can't ping any IP from pfSense except the IP given to the WAN interface and its gateway IP. Computers connected also have the same behavior.
I'm not home now. When I'm back, I will connect the pfSense box again and print the gateway page to you.
-
@desert_myrrh said in WAN interface is UP / PPoE connection working / Can reach WANs Gateway / Cannot reach the internet:
Yeap. The LAN interface is connected to a small switch. There are only 2 computers connected through cable ...At this point, I am accepting every suggestion possible.
No reason to change the subnet mask, leave it the way it is. Just to check if you did it on purpose or if it was a typo.
Would be interesting to know the gateway you got when on OPnsense and the ISP modem.
Are you using pfSense CE 2.7.2 or 2.8.0-BETA?
And on a totally unrelated note: instead of the menu 'Help' you got an entry 'FW01.local.lan'. How do you manage that, custom theme?
-
@patient0 said in WAN interface is UP / PPoE connection working / Can reach WANs Gateway / Cannot reach the internet:
How do you manage that, custom theme?
System > General Set up :
-
@Gertjan said in WAN interface is UP / PPoE connection working / Can reach WANs Gateway / Cannot reach the internet:
System > General Set up :
I see, never noticed that, thank you.
-
@desert_myrrh
What Diagnostics->routes show? -
@patient0 Ok. Your suggestion nailed it. When I checked the gateway page, for some reason there was an old gateway group pointed as default.
The strange thing is I started all pfSense configuration from scratch before posting, reset the interfaces and configured both interfaces (LAN and WAN) from scratch using the terminal.
I'm not sure if I missed something or this is a bug. When you reset the interfaces using the terminal, any previous configuration should be erased. Isn't that correct or I am missing something?
Thanks everyone. You guys rock.
By the way, this is my first post. Can somebody tell me how do I close this thread?
-
The concept of closing a thread doesn't exists here.
If possible - I'm not sure, you can edit the first thread and adding the subject by adding something like [solved].edit : what is common here :
Upvote the post of the person who brought you the solution. -
@desert_myrrh said in WAN interface is UP / PPoE connection working / Can reach WANs Gateway / Cannot reach the internet:
When you reset the interfaces using the terminal, any previous configuration should be erased. Isn't that correct or I am missing something?
I don't think it will touch manually added gateways when you reset the interfaces. If they where DHCP added then yes these should get removed if you reset the interface, have not tried it yet though.
-
@Gertjan said in WAN interface is UP / PPoE connection working / Can reach WANs Gateway / Cannot reach the internet:
The concept of closing a thread doesn't exists here.
If possible - I'm not sure, you can edit the first thread and adding the subject by adding something like [solved].edit : what is common here :
Upvote the post of the person who brought you the solution.I need 5 reputation points to upvote. Just found there is a time to edit my last post. I'll wait and update later.
