is a pleasure to help!

let's see if I can explain it better.
I gave him two options:
1) use the Endian Static IP
There were two distinct networks: pfsense-Endian and Endian-LAN

2) Do not use the WAN and put the two network interfaces in the green zone
Then their workstations and Endian would be in the same LAN pfsense. Vc atruibuiria a LAN ip of the Endian (green zone), but their workstations have pfsense as the gateway.
For this to work you must connect the pfsense in one of the interfaces and other interface endian endian switch connected in your LAN, so that all traffic from LAN to LAN getaway (pfsense) would be to bridge the green zone.



Jonathan Lessa



2012/4/28 Eduardo Mendes <eduardo.mendes@gmail.com>
Jonathan and Farzan,

Thank you both for replying it. 

Turns out, there is a bug on Endian 2.5.1 where it is redirecting the traffic to the default gateway even though all the machines involved are on the same subnet. I tried to reproduce the problem on 2.4.1, but this version works like a charm. I opened bug 0004342 to track this issue. 

Jonathan,

Thanks for your idea as to use it as a static ip and not a Gateway. You mean that I should configure both networks with the same ip range? 

http://bugs.endian.com/bug_view_advanced_page.php?bug_id=4342 

Thanks,

-Eduardo


On Sat, Apr 28, 2012 at 4:42 AM, Jonathan Lessa <jonathanlessa@gmail.com> wrote:

Have tried to leave the Endian Static IP and not as GATEWAY?
If you want to leave the endian "transparent" between your workstations and pfsense, Endian can try to leave without WAN and configure two ethernet interfaces on the same bridge, Endian to assign an IP network and configure it the default route as the pfsense.
So you will have all traffic passing through the bridge, which allows you to apply rules of proxy and firewall, but the gateway for your workstations would be the pfsense and not the Endian. Since there must be structured as follows: Cable Modem ---> pfSense -> ([eth0] Endian [eth1]) -> LAN Switch

Jonathan Lessa



2012/4/27 Eduardo Mendes <eduardo.mendes@gmail.com>
Hello all,

I'm doing some tests in my lab and found a very weird problem. I have two servers: one has pfsense and it is my gateway to the internet. The second one is a Endian Community 2.5.1 configured as a gateway. PFSENSE is the only one with two networks: one is connected to my lan and the other one is my cable modem. 

The problems is every time I add the pfsense ip as the default gateway in Endian, pfsense starts to block traffic that comes from endian to my workstation(from where I am accessing endian web interface). I send a packet to endian. Endian replies it, but it replies through its default gateway - pfsense.  Hence I lose access to endian web interface. If I restore endian to its factory configuration, or if I delete the default gateway, I get the access back.

My question here is why endian, when configured on gateway mode, is sending all the traffic through its default gateway - pfsense - if both endian and my workstation are on the same network? Have anyone had luck configuring a endian, as a gateway, behind a pfsense? 

-Eduardo.

------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
Efw-user mailing list
Efw-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/efw-user




--
Att.:
Jonathan Lessa


------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
Efw-user mailing list
Efw-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/efw-user



------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
Efw-user mailing list
Efw-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/efw-user




--
Att.:
Jonathan Lessa