Yup. BGP in that case should be handled by a router that doesn't care what interface a packet arrives on because it is not maintaining firewall states.

ISP1 ISP2 + + + + BGP ROUTER + | | + FIREWALL

@dotdash said in Dual WAN Failover with 1 WAN port, is it possible?:

@pfrickroll said in Dual WAN Failover with 1 WAN port, is it possible?:

I even tried plugging it in in WAN port on pfsense with and turn on DHCP but nothing says "unknown". When i connect laptop into LAN port on hotspot everything works fine.

If it doesn't work on the physical WAN port then there's something wrong besides the vlan configuration. Not sure why it would work on a laptop but not on the firewall. Maybe try setting wan to dhcp, connecting wan to the hotspot, and rebooting pfsense. If you can get that to work, then try it on the vlan'd switch port.

The router just died today. Power LED keeps blinking and all LAN ports don't respond. I didn't even use it yet, going to return it.

Maybe, but the traffic shouldn't be handled by the modem anyway as it's local trafic. Maybe the old one did this, but in my opinion the pfSense should deliver the traffic at the camera system without any interaction of the modem. Am I correct?

Ruud.

@flighteven said in IPV4 Multicast not enable on 2.4.4-RELEASE-p2:

netstat -gs

Even though the command says no support. It's working fine! IGMPProxy and PIMD both work.

Hey all. Quite a few hours of mucking about and I got it workin!
Thanks for the help. Amazing.

Solved... Outbound rule was missing :)

@johnpoz said in Does anyone have a link to a good site for Multi WAN:

osed to public inter

Sorry I think it is just a bridge and on the HV1 and HV2 is untangle running as firewall if I remember correct.

Did anyone get running LAG with a Technicolor TC4400 cable modem? I got it running but the speed is much worse than without.

@kom face palm

I think I could add DHCP to OPT1 and move the WIFI router to a bridge setup behind OPT1. I may be short on IP addresses for the guests...

I may be able to move the WWW over to OPT1 with the wifi... I'll sketch that out.

Thanks

@derelict When I initially set it up as discussed in the link that dotdash posted it actually worked but then the gateway went down and I swapped onto the new Netgate routers and haven't been able to get it back up. Are you saying that the method discussed in the link is not actually viable?

Thought this may work but it didn't.

System -> Advanced -> Networking

Untick Reset all states if WAN IP Address changes

Mar 13 09:01:22 check_reload_status Starting packages Mar 13 09:01:22 php-fpm 83439 /rc.newwanip: pfSense package system has detected an IP change or dynamic WAN reconnection - 10.8.0.32 -> 10.8.1.52 - Restarting packages. Mar 13 09:01:20 php-fpm 83439 /rc.newwanip: Creating rrd update script Mar 13 09:01:20 php-fpm 83439 /rc.newwanip: Ignoring IPsec reload since there are no tunnels on interface opt13 Mar 13 09:01:15 php-fpm 83439 /rc.newwanip: 83439MONITOR: NORDVPN_US2896_VPNV4 is available now, adding to routing group NORDVPN 10.8.1.52|10.8.1.52|NORDVPN_US2896_VPNV4|0.09ms|0.027ms|0.0%|none Mar 13 09:01:12 php-fpm 83439 /rc.newwanip: Removing static route for monitor fe80::4afd:8eff:feaa:a4d1 and adding a new route through fe80::4afd:8eff:feaa:a4d1%pppoe0 Mar 13 09:01:08 php-fpm 83439 /rc.newwanip: IP Address has changed, killing states on former IP Address 10.8.0.32.

0_1552414734279_pfSense-Layer-3-Switch.png

@shar0119 said in Subnet /23 into many /29:

Please note that I can't create a new interface for each of the /29 because the machine cannot have so many network cards.

That is why you would use vlans..

So this /23 is routed to you?

When you say gateway 888.777.666.121?? You mean assign pfsense interface with first IP in the subnet /29 off your /23 that is ROUTED to you??

Are we talking public space Here - or is this something your trying to do in rfc1918 space? Having a hard time figuring it out - since have never seen anyone that has clue one to how IP works use 888.777.x.x since those are clearly not valid IP ranges.. To show something as public 1.2.3.0/23 would told me ok public that he is trying to hide, etc.

If pfsense wan IP is using /23 mask of this 888.777.666.0/23 network... Then its not routed to you.. And you can not just create a lan side interface that overlaps that network like 888.777.666.120/29