What version of pfSense are you using?  When I set up my 1.2.3 configuration I used a tutorial that I can't find right now.  You might want to check this out: http://doc.pfsense.org/index.php/Multi_WAN_/_Load_Balancing  I didn't use this one but it looks similar. and I just found this for 2.0 which I'm going to get started on in the morning: http://forum.pfsense.org/index.php?topic=28121.0 Regards, Michael

@Padua: Yes, the bridge is already working perfectly, because I can access the rl0 LAN Wireless LAN to OPT1 RL2. That's because there's a default rule that allows LAN access to anything.  Easiest solution is to go to the Firewall rules and make a copy of that rule, changing the source interface to OPT1. Depending on what you want to accomplish, that may not be your best solution, though.

OK. Thanks.

Unfortunately, you can't do failover for IPsec in that way.

Hi, thanks a lot for your help, but when i did it, it didn´t work, I don´t know if because I use three connections of internet in the LB, and your solution it would work with two connections only, i mean, with the failover if one connection fails, the other works, but I have three and the failover is configuring if one connection fails the others two works. I still have two connection where the session can be established, and for that the page doesn´t login in.

If you have both WANs on both firewalls, and proper CARP VIPs on both WANs, then yes it works fine.

please help. how to set up dual wan with different isp…  the one ppoe and the other one is dynamic..

Hi, I am not to sure, how you have to set up fireall rules in 1.2.3 because, like you mentioned, I am using 2.0 RC-1. But in the rule you have to set: protocol: tcp/udp source port: any source address: any (or LAN Subnet) destination port: HTTPSall destination address: any GATEWAY: WAN1 Failover OR WAN2 Failover But I would add the IPsec (500), ESP (4500), OpenVPN (1194) and PPTP (1723) ports to your Alias httpsall, too. You could have a look at wikipedia and VPN and find out, which method is using which port and then add it to https. Like your alias is looking at the moment, ther will be no difference for VPN connections than without an Alias.

There are plenty of tutorials and documentation on the forum and the doc wiki (check my sig).

Hi, i've got the same issue but i'm afraid there is no solution for the moment…. Edit : The only way we find it's to kill process apinger and reload it with script. Myke.

Without doing BGP and sharing the same IPs between both ISPs, what you want isn't really feasible. Some people will put a really low TTL on their DNS and switch the DNS entries when a WAN goes down, but that isn't really reliable in most scenarios. Some clients/places will cache DNS longer than desired even with a low TTL, so you may still have downtime.

I'm using the Netopia DSL modems which have an "IP passthrough"  feature meaning the modem handles PPPoE or PPPoA and assigns the WAN (public) IP to pfSense. There's a small glitch with this, but in the big picture it's working great. One issue I might suspect with your setup is you need to change your DSL modem subnet. Say the default is 192.168.1.254/24… you can't have both DSL modem connected to the same pfSense with the same subnet, so change one to e.g 192.168.2.254/24... even if you use the IP passthrough like I describe.

The motherboard has a Broadcom NetXtreme Gigabit Ethernet based NIC. So I'll use that for the LAN side. The dc5700 has two PCI slots and one PCIe slot. I figured that it would be simpler to just pick up two inexpensive PCI based, single port NICs rather than purchase a substantially more expensive dual port PCIe card. That way I can purchase a third for a backup in case one goes down and I've still spent less than the dual port card. I am looking at Intel desktop adapters rather than server adapters. Considering that these are going to go directly to the ethernet ports on the routers, I don't see any reason to go expensive. I won't be teaming, setting up any VLANs, etc. Can pfSense make use of cryptographic accelerators like the ubsec driver found at http://www.freebsd.org/cgi/man.cgi?query=ubsec&sektion=4&manpath=FreeBSD+8.2-RELEASE? We do want to setup a number of VPNs.