Messages

1

22.1 Legacy Series / Re: Access to LAN host from vlan

« on: October 17, 2022, 01:17:16 pm »

Did you put the same rule on the vlan interfaces?
yes.

Also, show a drawing of how everything is connected
its not that serious of a network that you need a flow chart.

[PFSENSE] => [SWITCH] => [Computers,APs,Printers,etc.]

Simple. One firewall. One Switch.

2

22.1 Legacy Series / Re: Access to LAN host from vlan

« on: October 12, 2022, 12:04:33 pm »

I have taken the vlans out of group and put individual rules on them. Still no traffic.

https://drive.google.com/file/d/1U43_eoNqqj4x34QV5ACD0ogxXYQjdu7P/view?usp=sharing

3

22.1 Legacy Series / Re: Access to LAN host from vlan

« on: October 11, 2022, 01:11:23 pm »

Try this to pass traffic from Vlan 10 to 20:
On VLAN20 set a firewall rule:
action: pass
interface: VLAN20
direction: in
tcp/ip : ipv4
potocol: any
source: VLAN10 net
port: *
destination: VLAN20 net
port: *
gateway: default
That would be a firewall rule to incoming traffic from vlan10 to vlan20.

How could vlan10 ever be a source on vlan20 interface??
Reverse the source and destinations.

Ok my mistake.

here ya go. i took out all the rules on the Vlan interfaces themselves because not working anyway.

Vlan group has just a default rule setup.

no traffic is being passed between Vlans.

Where do we go from here.

https://drive.google.com/file/d/11Q0ISTmTSDEbgI9mXWPRLasFrPECVHVj/view?usp=sharing

https://drive.google.com/file/d/1cXuynNP1K-Kk6ZY0C6Tp4BDQ7T-hQSkw/view?usp=sharing

4

22.1 Legacy Series / Re: Access to LAN host from vlan

« on: October 09, 2022, 04:31:18 pm »

Well, I probably thought that because it is what the firewall is telling me. I start a ping from VLAN10 to VLAN20 and this is what it shows on the firewall.

firewall:diagnostics:sessions
dir  proto     source              destination
->  icmp     xx.xx.10.20:1    xx.xx.20.10:1
<-  icmp     xx.xx.10.20:1     xx.xx.20.10:1

I tried reversing the firewall rule as suggested it is not allowing any traffic from one vlan to the other still.

action: pass
interface: VLAN20
direction: in
tcp/ip : ipv4
potocol: any
source: VLAN20 net
port: *
destination: VLAN10 net
port: *
gateway: default

5

22.1 Legacy Series / Re: Access to LAN host from vlan

« on: October 08, 2022, 06:39:32 pm »

Vlan10 --> Vlan20
10.20 --> 20.1 = ping requests received
10.20 --> 20.10 = ping requests not received

these are the IP addresses. "xx.yy.10.1, xx.yy.10.20, xx.yy.20.1, xx.yy.20.10". x and y are the same for these.

action: pass
direction: in
protocol: ipv4*
source: *
port: *
destination: *
port: *
gateway: *

this rule is applied to both. when i get it working properly talking to each other i will make some other rules, because i will be able to tell what is affecting what things. right now it has access to internet. they just arent passing traffic between the vlans.

6

22.1 Legacy Series / Re: Access to LAN host from vlan

« on: October 07, 2022, 01:07:38 pm »

i am guessing no one has a solution to this problem.

7

22.1 Legacy Series / Re: Access to LAN host from vlan

« on: October 03, 2022, 12:11:09 pm »

only rule in play at the moment

action: pass
direction: in
protocol: ipv4*
source: *
port: *
destination: *
port: *
gateway: *

8

22.1 Legacy Series / Re: Access to LAN host from vlan

« on: October 02, 2022, 07:23:49 pm »

i tried turning off the windows firewall and it is still doing the same.

9

22.1 Legacy Series / Re: Access to LAN host from vlan

« on: October 02, 2022, 03:15:04 pm »

Is there any solution to this? I have the same kind of issue.

i have 2 Vlans I am trying to get communication to travel between but its not working. what i am trying to accomplish is remotely access devices sitting on this vlan like WAPs and network printers.

Vlan10 --> Vlan20
10.20 --> 20.1 = ping requests received
10.20 --> 20.10 = ping requests not received