First post.
![Laughing :lol:](./images/smilies/icon_lol.gif)
I'm testing CG in a setup where CG would be in between clients and a pfSense based router.
The clients' LAN is 192.168.100.0/24. In this LAN, CG has IP 192.168.100.2 (internal interface) and will be the default gateway for these clients.
CG's external interface is 192.168.110.2 and is connected to pfSense with address 192.168.110.1.
CG has 192.168.110.1 as its default gateway.
CG's SNAT is turned off. Also the IP firewall is turned off.
On pfSense, there is a static route: 192.168.100.0/24 via 192.168.110.2.
But from pfSense, I cannot ping 192.168.100.2 or any other client in 192.168.100.0/24. Using tcpdump, I can tell that pfSense did put it on the right interface, aiming at 192.168.110.2, but there is no response.
CG log tells me it is blocking it (Internal rule "Policy"). The firewall is off. I tried to add "allow any any" rules to no effect. Should not matter because firewall is off but nevertheless...
Any thoughts? I just want CG to be a router. No NATting, no firewalling.
Thanks,
Marc.