Solved: New pFsense user, SMB share is not accesible anymore. What I did wrong?

#1

Being the first post here I want to thank Tom for shared knowledge and all the tricks and tips, videos and all that.

To the matter at hand: I’ve built a pFsense box and it is running great, but running pFsense I wasn’t able to see the shared folders that I have on my LAN and can’t access Webmin.
Some details: previously, I had a DDWRT router and everything was running smoothly. I was able to access the shared SMB folder from our CentOS server and also using Webmin to address server maintenance. Some computers in out LAN are running Windows 7. and some computers are running various distros (Manjaro, Mint)

After I set up the pFsense box I managed to have basic internet aces, but I can’t see the shared folder in the LAN nor I am able to access the Webmin panel for server maintenance.
But I am able to ping the server, but that’s about it.
I know that I have to create some rules, but this is where I need some guidance.
What rules I have to create, what ports, what protocols and in what order?
I can post pics with my setup and actual rules for more details.
Thank you in advance for your time and knowledge!

#2

Is this CentOS box on a different vlan? Or is there a local firewall running on the CentOS box that might be blocking traffic from the same subnet?

#3

is this a flat network? no vlans everything on one subnet 192.168.1.0/24?

common ports needed SMB/CIFS, UDP 137/138 , TCP 139/445

webmin port 10000.

#4

Hello and thank you for quick responses.
The internal network is structured like this:
www -->pfsense–>switch–>8 computers.

pFsense box has a WAN of 192.168.1.1 and from it, LAN goes with 192.168.10.1/24 network. I can browse the Internet from all computers on the LAN, I can ping other computers, but I can’t browse the LAN for shared folders, nor access the CentOS server.
CentOS server has 192.168.10.99 IP and I can ping it from any computer from the LAN.
No VLANs, nothing fancy.

Here is the setup

#5

#6

#7

i remember pfsense being pretty annoying about this type of stuff. do you see anything that says bypass firewall rules for traffic on the same interface. Do you see any shares on any pc?..im also hesitant to blame the firewall since it looks like you have it wide open.

#8

Since they’re on the same /24 subnet, traffic from any of your LAN machines 192.168.10.xxx to the centos box 192.168.10.99 doesn’t need to go through the PFsense router - no special rules needed. The switch should be handling it. Dumb question - the centos box is connected to the switch as well, right?
I would suggest checking that you can ping your other machines from the Centos box and double-check that the centos box has a proper ipconfig setup. Can you run something else, like iperf from the client machines to the centos box to verify that basic networking connections will work?

#9

Hello and thanks for all your input.
Some updates:

After a few layman thinking and logical elimination, it was obvious that the culprit wasn’t pFsense. It was simply me, forgetting about some details about failban on the CentOS server who was set up in a way to create a block rule after a very few unsuccesfull logins.
More so, the NIC on the server was replaced and network connection sometimes acted up.

After a few considerations and simplifying what I really need,I ended up installing OpenMediaVault, set it up on the network and workgroup and everything now works as before.
Now, the pFsense box runs and just runs and runs.
Plan is to get hardware parts for an FreeNAS with ZFS in mind and shrinking the pFsense box to an ALIX or Netgate device.
Thanks again to everyone and will stay in the forum. I can offer advice on hardware repairs.
Cheers!

1 Like