I’m currently using a Netgate firewall, and my gateway is currently showing as “Offline, packetloss” (See pic below). I’m wondering if this is because something with Dynamic DNS is not being updated correctly. I went ahead and setup the CRON package to check if my IP has been updated and it seems like it’s working as my interface WAN matches my IP found in the Dynamic DNS service. The IP address that is under WAN DHCP is different and doesn’t match my interfaces or dynamic DNS IP. Is this why it says Status Offline, Packetloss?
The cron package checks every 5 minutes for a new IP. Should I decrease the number of checks?
You don’t have to use a cron job to check for DDNS. Pfsense supports a multitude of registrars out of the box. You can find this under service—>dynamic DNS and this might solve your problem.
Or you can run a trace route to find the next hop in your network to determine your gateway IP.
its my gateway that doesn’t have the correct IP. My interface IP is correct. Should I just kill this service? How do I update the gateway IP? My gateway IP is correct its just that I have this Offline, Packetloss 100% status.
I just deleted it as it didn’t match my current IP.
Ah, yes. My wan IP address is .28.242 but my gateway address is .28.1. How do i correctly configure my gateway so that i dont see that Offline, Packetloss error?
So under interfaces I see I see my WAN as the .28.242 then under gateways i have .28.1
if you ping from the wan interface using the pfsense ping tool, is this where you see packet loss? if it is, either your cable modem is hosed (I think you said you did a reboot), the cable between the PFsense and cable modem or an ISP issue.
if you want to eliminate PFsense as the issue, unplug the wan from your PFsense, plug it into a PC (make sure the firewall is on) and the PC is set to dynamic and see if you have packet loss.
no , your WAN address is provided by the ISP. The gateway is an ISP piece of gear at some other location. ICMP (which ping is part of)is a low priority protocol, so if there is high CPU, high traffic, networks will drop ICMP before other traffic. Packet loss is TYPICALLY a bad cable, most times. however if the packet loss is between your cable modem and your the gateway, you need to contact your ISP. I would set a computer to DHCP, unplug the PFsense wan and plug the cable modem into the PC. See if you can replicate the packet loss. if you can, then i would call the ISP.
Edit- sorry still working on first cup of coffee. if you are configured with DHCP and the PFSense box can not ping the gateway, you need to contact the ISP.
Okay. So, there is an issue on the ISPs end? My internet is working though. My firewall cannot ping the gateway address. Is it possible there is just something that is configured incorrectly on my end?
well my ISP is telling me there is no issue on their end at all, but my gateway is still saying Offline, packetloss. Although they are escalating it to some higher team level.
Instead or monitoring the gateway , which in your case isnt pingable, monitoring 8.8.8.8 will ping 8.8.8.8 instead of the gateway. The point of this is if the monitored IP stop pinging, its assumed, your route / Internet is down. This is used if you have more than 1 ISP so the firewall knows one is down and to send traffic to the other one. If you have an internal monitoring server (SNMP) an alert can be sent to tell you its down.
