So I though I would be clever and build small computer to run pfSense to replace the router in my house. Now that it is done and running, I realize how little I actually know about networking
. I have included some pictures of the build, and have a few questions about how to set it up. I realize I may be better suited asking these questions in a pfSense specific forum, but I know people here use this software, so I thought I would ask here first. Plus [H] always seems more helpful than the application specific forums.
First, the specs:
Motherboard: JetWay J7F4K1G5D
HDD: Transcend TS8GSSD25S-S 8GB Solid State
Case: Jetway JC-101 Case
Extras:
![](http://img65.imageshack.us/img65/6510/motherboardvb1.th.gif)
Motherboard with memory installed
![](http://img511.imageshack.us/img511/8084/casehddrv1.th.gif)
Case with SSD
![](http://img171.imageshack.us/img171/8156/assem1xw1.th.gif)
Installing the motherboard. So far, so good...
![](http://img81.imageshack.us/img81/8021/assem2pz4.th.gif)
After cramming everything into the case. It is more cramped than I thought it would be.
![](http://img88.imageshack.us/img88/101/togetherop0.th.gif)
Slamming the top shut makes it look better.![Smile :) :)](data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7)
I would include pictures of it setup and running, but it is embarrassingly messy right now.
Anyways, I have a few questions:
I wanted to set up two different networks with different IP ranges (192.168.1.X and 192.168.2.X for example) I was able to set this up, but I cannot get both connections to access the WAN interface (and therefore the internet). Do I have to do something special to get this to work? I set up the LAN interface (the default internal interface) to range 192.168.1.0/24 and I made the add-in NIC interface called 'secure' with the range 192.168.2.0/24. I have tried setting up pass-all rules in the firewall screen for all the interfaces, and I cannot connect the 'secure' connection to the internet. I can access the web interface from the 'secure' subnet, and I can access computers on the LAN subnet, but I cannot access the internet.
I am also trying to figure out the firewall settings. I currently have it set up like this (note: I changed this from the setup for the previous question so I don't piss off my roommates and break the internet. Please ignore this setup in the context of the previous question)
... and it works. Now, I am not complaining, but I don't understand why. There are no other pass rules on any of the other interfaces, and from my (albeit limited) understanding, this rule is allowing traffic originating from the LAN to get to anywhere. However, there is no rule allowing traffic from the internet to get back to the LAN. I was under the impression that the firewall was set up to default-deny any traffic, so shouldn't it be blocking any traffic coming from the internet onto my LAN interface?
Also, since installing the firewall, the network has seemed inconsistent. However, I am not sure if it is my computer, the router (with DHCP off) attached to the firewall, the firewall itself, or my ISP (Charter). Is there any software that can test the network latency or something and let me know how long it is taking traffic to get various places on my network.
I realize this is probably basic networking knowledge, so feel free to tell me to go read about it somewhere. But, if you would, please point me in the direction of something that a non-networking-expert could understand. I tried some Googling, but all I could find was either too basic, or too technical.
Damn, this is probably the longest post I have ever made here. I feel like I should include another picture here to reward all those that actually read all the way through this.
So, for your viewing (or laughing at me) pleasure, I present to you my current network setup.
![](http://img528.imageshack.us/img528/67/setupjg6.th.gif)
First, the specs:
Motherboard: JetWay J7F4K1G5D
- 1.5GHz VIA C7
- 2X Realtek 8110SC Gigabit LAN
HDD: Transcend TS8GSSD25S-S 8GB Solid State
Case: Jetway JC-101 Case
Extras:
![](http://img65.imageshack.us/img65/6510/motherboardvb1.th.gif)
Motherboard with memory installed
![](http://img511.imageshack.us/img511/8084/casehddrv1.th.gif)
Case with SSD
![](http://img171.imageshack.us/img171/8156/assem1xw1.th.gif)
Installing the motherboard. So far, so good...
![](http://img81.imageshack.us/img81/8021/assem2pz4.th.gif)
After cramming everything into the case. It is more cramped than I thought it would be.
![](http://img88.imageshack.us/img88/101/togetherop0.th.gif)
Slamming the top shut makes it look better.
I would include pictures of it setup and running, but it is embarrassingly messy right now.
I wanted to set up two different networks with different IP ranges (192.168.1.X and 192.168.2.X for example) I was able to set this up, but I cannot get both connections to access the WAN interface (and therefore the internet). Do I have to do something special to get this to work? I set up the LAN interface (the default internal interface) to range 192.168.1.0/24 and I made the add-in NIC interface called 'secure' with the range 192.168.2.0/24. I have tried setting up pass-all rules in the firewall screen for all the interfaces, and I cannot connect the 'secure' connection to the internet. I can access the web interface from the 'secure' subnet, and I can access computers on the LAN subnet, but I cannot access the internet.
I am also trying to figure out the firewall settings. I currently have it set up like this (note: I changed this from the setup for the previous question so I don't piss off my roommates and break the internet. Please ignore this setup in the context of the previous question)
![firewallsetuplv5.gif](http://img293.imageshack.us/img293/4073/firewallsetuplv5.gif)
... and it works. Now, I am not complaining, but I don't understand why. There are no other pass rules on any of the other interfaces, and from my (albeit limited) understanding, this rule is allowing traffic originating from the LAN to get to anywhere. However, there is no rule allowing traffic from the internet to get back to the LAN. I was under the impression that the firewall was set up to default-deny any traffic, so shouldn't it be blocking any traffic coming from the internet onto my LAN interface?
Also, since installing the firewall, the network has seemed inconsistent. However, I am not sure if it is my computer, the router (with DHCP off) attached to the firewall, the firewall itself, or my ISP (Charter). Is there any software that can test the network latency or something and let me know how long it is taking traffic to get various places on my network.
I realize this is probably basic networking knowledge, so feel free to tell me to go read about it somewhere. But, if you would, please point me in the direction of something that a non-networking-expert could understand. I tried some Googling, but all I could find was either too basic, or too technical.
Damn, this is probably the longest post I have ever made here. I feel like I should include another picture here to reward all those that actually read all the way through this.
![](http://img528.imageshack.us/img528/67/setupjg6.th.gif)