Some wireless clients periodically report no internet access

By The Dark Knight
in Smart Home, Network & Security

 Share

Recommended Posts

Veteran

The Dark Knight

Posted
  • Author
Posted

So I've moved my Pi-hole on to a new dedicated VLAN and have temporarily setup an allow all rule on the interface. I've created more rules that only allow specific movement of traffic based on what made sense to me. I'll actually be surprised if the proposed rules I've set are correct! Sorry, still learning all this! ;)

 

pihole-vlan.thumb.png.ee6063a8e6857fe68065096c3b0437b1.png

 

Also, what should the NAT Redirect rule look like now? Previously there was an invert match on LAN only. Should I leave it like that? I basically want Pi-hole to handle DNS for my primary LAN only. Other networks are using Cloudflare.

Veteran

The Dark Knight

Posted
  • Author
Posted

By the way, my original problem has now gone away completely. Turns out I was having that issue because I changed something somewhere. No idea what though! A fresh setup of pfSense, and all is well again! :)

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

where are those rules?

 

You have an any any rule? at the top - any other rules below that mean nothing.  And rules are placed on the interface where traffic would enter pfsense.. If you want to allow lan to your pihole vlan then the rule would be on your lan interface not your pihole interface.

 

Yes your port forward would be on your lan interface and sure !lan address still works.

 

Rules are evaluated on interface where traffic enters pfsense from the network the interface is attached too.  First rule to trigger wins, no other rules are evaluated.

Veteran

The Dark Knight

Posted
  • Author
Posted

I created these rules on the new Pi-hole interface. Yes, I did make the any to any rule but that was meant to be temporary. Unless that is the only rule required? I created the other rules thinking it could be locked down for specific movement of traffic. Wanted you to vet them before I enabled! I already have a LAN to any rule (the default one). And yes, do know that rules are evaluated from the top. :)

 

Cool, so will change the NAT Redirect rule accordingly!

 

Thanks BudMan for all your help! :happy::beer:

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

Well if that is on your pihole interface then the dest pihole net is never ever going to be used.. Since the interface would never see such traffic..

Veteran

The Dark Knight

Posted
  • Author
Posted

Oh ok. So I'll delete them and only keep one Allow to Any rule on the interface then. And of course the NAT Redirect rule.

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

well you can for sure lock it down if you don't want the pihole vlan to create traffic to your lan - but since its really just a vlan to allow for the redirections of the dns I wouldn't think there are any security concerns.

This topic is now closed to further replies.
 Share
Go to topic listing

  • Posts

    • Epic Games says Unreal Engine 6 will help developers "build content faster" using AI models

      By +pmrd · Posted

      As a game dev, today was really depressing.
    • Prime Early Deal: Amazon Echo Dot Max drops to its lowest price ever

      By Fiza Ali · Posted

      Prime Early Deal: Amazon Echo Dot Max drops to its lowest price ever by Fiza Ali While Prime Day 2026 is officially kicking off next week, Amazon has started offering Prime Early Deals already. Particularly, the newest model of Amazon Echo Dot Max, unveiled in September 2025, is now selling at its lowest price yet with a 35% discount on its original MSRP. The device features a two-way mono speaker system comprising a 0.8-inch tweeter and a 2.5-inch woofer that should deliver sound across a claimed frequency range of 53Hz to 16kHz. It offers Wi-Fi 6E support (802.11 a/b/g/n/ac/ax) alongside Bluetooth 5.3 with Low Energy, including A2DP for audio playback and AVRCP for device control. The device also operates as a smart home hub, with built-in support for Zigbee, Matter, and Thread Border Router functionality. Furthermore, Amazon Sidewalk is included to help extend connectivity beyond standard Wi-Fi range by leveraging shared network infrastructure. Under the hood, it is powered by the AZ3 processor with an integrated AI accelerator. It also features Omnisense technology, enabling ambient intelligence capabilities such as presence detection, temperature monitoring, and tap gesture control. There are also additional built-in sensors that include ambient light, temperature, and an accelerometer. When paired with a compatible eero router, it can also help extend Wi-Fi coverage by up to 1,000 square feet, supporting speeds of up to 100Mbps and up to 10 devices on the 5GHz band. Setup is handled via the Alexa app, available on Android, iOS, Fire OS, and web browsers. In terms of privacy, it includes a microphone mute button, wake word activation, and options to review and delete voice recordings. Accessibility features cover adaptive listening, adjustable speech rate, audible request tones, and read-aloud support. Lastly, the device is backed by a one-year limited warranty, with optional extended protection available as well. Amazon Echo Dot Max (newest model): $64.99 (Amazon US) - 35% off Good to know This Amazon deal is U.S. specific, and not available in other regions unless specified. We only use first-party seller links (at the time of article publishing); ensure that you purchase from a first-party seller link only. Check out Today's Deals on Amazon | or our recent tech deals. Become a Prime member (for Students or SNAP) via Neowin Get Prime Access - Prime for half price (for qualifying Medicaid, EBT, SNAP) Subscribe to Prime Video, Audible Plus, Music Unlimited or Kindle Unlimited via Neowin As an Amazon Associate, we earn from qualifying purchases.
    • Mozilla highlights Firefox Nova 2026 redesign and more upcoming features with new roadmap

      By noobient · Posted

      That's what happens when aesthetics take over UX.
    • Mozilla highlights Firefox Nova 2026 redesign and more upcoming features with new roadmap

      By noobient · Posted

      That's not what I meant:) I like the tabs being above the URL bar, but previously the tab selection started from the top of the screen (y=0). So I could just quickly push my mouse up and done. Now I have to actually aim it just slightly below the top, because the tab is now a few pixels below the top. In other words, previously I only had to aim with my mouse horizontally, now I have to both vertically and horizontally. Super annoying.
    • The official Funny Pictures thread

      By +primortal · Posted

  • Recent Achievements

    • One Month Later
      Vincian earned a badge
      One Month Later
    • First Post
      Jocimo earned a badge
      First Post
    • Week One Done
      suprememobiles48 earned a badge
      Week One Done
    • One Month Later
      Windows Guy earned a badge
      One Month Later
    • One Month Later
      Prasann earned a badge
      One Month Later

  • Popular Contributors

    1. 1
      +primortal
      501
    2. 2
      +Edouard
      160
    3. 3
      PsYcHoKiLLa
      86
    4. 4
      Steven P.
      67
    5. 5
      ATLien_0
      64
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!