Hey all. Quite a few hours of mucking about and I got it workin! Thanks for the help. Amazing.

Solved... Outbound rule was missing :)

@johnpoz said in Does anyone have a link to a good site for Multi WAN: osed to public inter Sorry I think it is just a bridge and on the HV1 and HV2 is untangle running as firewall if I remember correct.

Did anyone get running LAG with a Technicolor TC4400 cable modem? I got it running but the speed is much worse than without.

@kom face palm I think I could add DHCP to OPT1 and move the WIFI router to a bridge setup behind OPT1. I may be short on IP addresses for the guests... I may be able to move the WWW over to OPT1 with the wifi... I'll sketch that out. Thanks

@derelict When I initially set it up as discussed in the link that dotdash posted it actually worked but then the gateway went down and I swapped onto the new Netgate routers and haven't been able to get it back up. Are you saying that the method discussed in the link is not actually viable?

Thought this may work but it didn't. System -> Advanced -> Networking Untick Reset all states if WAN IP Address changes Mar 13 09:01:22 check_reload_status Starting packages Mar 13 09:01:22 php-fpm 83439 /rc.newwanip: pfSense package system has detected an IP change or dynamic WAN reconnection - 10.8.0.32 -> 10.8.1.52 - Restarting packages. Mar 13 09:01:20 php-fpm 83439 /rc.newwanip: Creating rrd update script Mar 13 09:01:20 php-fpm 83439 /rc.newwanip: Ignoring IPsec reload since there are no tunnels on interface opt13 Mar 13 09:01:15 php-fpm 83439 /rc.newwanip: 83439MONITOR: NORDVPN_US2896_VPNV4 is available now, adding to routing group NORDVPN 10.8.1.52|10.8.1.52|NORDVPN_US2896_VPNV4|0.09ms|0.027ms|0.0%|none Mar 13 09:01:12 php-fpm 83439 /rc.newwanip: Removing static route for monitor fe80::4afd:8eff:feaa:a4d1 and adding a new route through fe80::4afd:8eff:feaa:a4d1%pppoe0 Mar 13 09:01:08 php-fpm 83439 /rc.newwanip: IP Address has changed, killing states on former IP Address 10.8.0.32.

[image: 1552414734501-pfsense-layer-3-switch.png]

@shar0119 said in Subnet /23 into many /29: Please note that I can't create a new interface for each of the /29 because the machine cannot have so many network cards. That is why you would use vlans.. So this /23 is routed to you? When you say gateway 888.777.666.121?? You mean assign pfsense interface with first IP in the subnet /29 off your /23 that is ROUTED to you?? Are we talking public space Here - or is this something your trying to do in rfc1918 space? Having a hard time figuring it out - since have never seen anyone that has clue one to how IP works use 888.777.x.x since those are clearly not valid IP ranges.. To show something as public 1.2.3.0/23 would told me ok public that he is trying to hide, etc. If pfsense wan IP is using /23 mask of this 888.777.666.0/23 network... Then its not routed to you.. And you can not just create a lan side interface that overlaps that network like 888.777.666.120/29

Never mind, I fix it forgot to give lan access to wan1 in outbound

https://docs.netgate.com/pfsense/en/latest/book/ have fun reading.