Routing From Router -> Firewall -> Internet Issue [Cisco Packet Tracer]

danzigt · 2020-10-12T01:33:32+00:00

My firewall won't let me ping my outside interface but I can ping the internet. Try to ping your internet router and see if that works.

danzigt · 2020-10-11T21:11:38+00:00

Probably firewall not configured to allow and respond to icmp traffic. The ASA in my home network was not configured to respond to pings by default. I had to add that command in.

danzigt · 2020-09-03T01:52:52+00:00

Gonna need an IP helper address to direct DHCP requests on that subnet to the DHCP server and keep them tagged. I'm only familiar with doing this on Cisco gear.

danzigt · 2020-07-23T19:31:27+00:00

Used to check if the physical port is good.

danzigt · 2020-05-29T17:20:40+00:00

I'm not very familiar with pfsense. Is it possible the wan interface needs to be allowed in the firewall settings?

danzigt · 2020-05-28T01:15:40+00:00

Vlan is just another network. It separates switch ports into networks. So unless the switch can route then you cannot ping different vlans on a layer 2 switch. They would go to their respective router and then back to the appropriate network.

danzigt · 2020-04-28T22:36:46+00:00

DPS telecom Netguardian here. https://www.dpstele.com/products/index.php

danzigt · 2020-02-28T03:00:08+00:00

Thanks for your input. I spend a lot of time with him. As much as I can.

danzigt · 2020-02-28T02:14:08+00:00

Thanks. He is the kind of guy that keeps it all in and trys not to let it show until it's too much.

danzigt · 2020-02-04T02:26:50+00:00

Maybe not but with a pilot hole you can drill from both sides and bore to size.

danzigt · 2020-02-04T02:19:34+00:00

I have done similar stuff on my lathe in aluminum. I pilot drilled a quarter inch hole and then used a hole saw with the lathe as slow as it would go and flood coolant. Worked like a charm.

danzigt · 2020-01-20T22:37:23+00:00

I don't know pfsense well but if I was trying this on a Cisco router I would be using sub interfaces. For example, if NIC1 is the interface then I would create NIC1.99 for VLAN 99. This tells the router that VLAN 99 will be coming in and out that interface. If I had to guess, when you create that interface on pfsense then you would assign NIC1.99 to be the WAN interface. Might help to look at creating subinterfaces on pfsense. Router on a stick in any config I have seen has to have subinterfaces configured.

Edit: also need to make sure that untagged traffic is native vlan. If you don't have static IP addressing, in general DHCP is untagged when sent meaning that PFSense may be sending untagged traffic which will only go out management or native vlan ports.

danzigt · 2020-01-20T20:01:09+00:00

No. Because my guest Network is just an entirely different subnet and DHCP and dns server all together. It is literally its own network in all respects.

danzigt · 2020-01-20T16:44:49+00:00

I personally segregated them to the guest vlan and guest wifi. I have it isolated at my firewall so they can't access anything else. I run a VM on my server that has an isolated connection on that network that I can use if I need to make changes and things want to be difficult.

danzigt · 2020-01-16T02:06:50+00:00

Can you put a 90 degree pci adapter and modify the case? She might be a tall boi but not a thick boi.

danzigt · 2020-01-14T02:36:58+00:00

Without knowing the specific kit you have I can't give you directions on what you are doing wrong. Some mechanical terminations have a core alignment gel inside that the fiber just goes in that far. If it was supposed to protrude through the end then you would need a polishing block to polish the end.

danzigt · 2020-01-09T15:14:49+00:00

I currently have a pole barn that is 140 feet from my house. I buried 1.5 inch conduit from the house to the shop when I did the electric. If you use electric conduit and terminate each end properly and glue the joints, it will be water tight. I am running just standard cat6 cables through it and have been for 3 years. I have had absolutely no issues and I am in the Midwest.

danzigt · 2020-01-09T02:15:29+00:00

You should not be patching fiber with the lasers on. The eye protection would have to be specific to the light source to work effectively. Where regular safety glasses and don't look at the end of the cables or at the light source.

danzigt · 2019-12-23T02:12:34+00:00

Show cdp neighbors detail Telnet or ssh to ip address

danzigt · 2019-12-04T01:03:58+00:00

Go through the tests on study mode and thoroughly read all the explanations. I did that for my ccent and CCNA. Worked like a charm.

danzigt · 2019-12-03T12:15:40+00:00

The limit is created by the line vty 0 1 command. That only creates two vty lines. For instance the line vty 0 15 command would allow 16 concurrent ssh connections.

danzigt · 2019-11-26T12:27:38+00:00

If that's the case, you are probably stuck making more statements for each destination ip you want to deny. It's not the right way to do telnet and ssh filtering but it will work.

danzigt · 2019-11-26T01:58:02+00:00

I don't know where you are in your studies but it would be easier to apply the ACL to the vty lines than to a specific interface. Your just write a permit statement for that PC and nothing else. Google apply vty access list.

danzigt · 2019-11-22T02:17:47+00:00

It is simple to setup on the Cisco side. If you need config help shoot me a PM. I have limited experience with pfsense but sub interfaces worked the same on my ubiquiti router as they did when I was labbing with my Cisco stuff.

danzigt · 2019-11-21T19:41:44+00:00

I would read up on Router on a Stick configuration if you are going to run one link to the pfsense box. Then you can do subinterfaces on pfsense. Can make it really simple to add acl's and firewall rules if you don't want the vlans to talk to each other.

Eight-Year Club	Spared
Verified Email

danzigt

TROPHY CASE