I have a DSL connection that is being shared with me, and in order to have some security and my space to experimenting I have a pfsense running without a NAT and everything is working great.
Up to the point when I have setup freenas and I want to make the ftp port available from the wan interface.
But first things first, here a little description of my network topology:
The network of which the dsl router is connected to my pfsense fw (via wlan bridge) has the subnet 10.0.0.0/24 (wan side) and the lan side is 10.0.1.0/24
I started off with creating a fw rule that should pass all ping types from the 10.0.0.0/24, and I did that by creating a rule on the wan interface that allows from wan_network to lan_network all icmp subtypes.
Next thing is that I connected my laptop to the dsl router and added a route that should divert all 10.0.1.0/24 subnet addresses to 10.0.0.2 (pfsense fw) and started to ping 10.0.1.1, the lan interface from pfsense.
The result was that I get 100% packet loss and the ping command on my laptop showed me the following:
From 10.0.0.1: icmp_seq=1 Redirect Host(New nexthop: 10.0.0.2)
I also did a pacet capture on the wan inferface:
09:58:20.081556 IP 10.0.0.129 > 10.0.1.130: ICMP echo request, id 17808, seq 11, length 64
Where the lan interface didn’t capture any packets from 10.0.0.129 which is my laptop connected to the DSL Router btw.
Let me know if you need some more details to help me out with solving this issue