• No route to specific public subnet

    4
    0 Votes
    4 Posts
    502 Views
    V
    @nicklas-0 Since your router sends packets destined to B to the ISP gateway, it's on the ISP to route them forwards properly. And since A and B are within the same ISP network, it might be one of his devices where the packets get stuck.
  • Routing network over a site to site vpn

    4
    0 Votes
    4 Posts
    569 Views
    V
    @cerberus2022 IPSec can be set up in one of two modes. The more common mode is "policy-based IPSec", where you have to configure a phase 2 for each subnet pair you want to connect. However, if you have your subnets sequentially (10.26.1.0/24, 10.26.2.0/24, 10.26.3.0/24) you can also embrace all using a suitable larger mask. This mode can be used on most IPSec capable devices. The other mode is "routed IPSec", where you get a virtual gateway IP, to which you can route the respective subnets to the other site. The only drawback of IPSec is, it cannot be used to forward public traffic to a server at the other site, if you intend to do that.
  • Dynamic URL routing from WAN to LAN

    5
    0 Votes
    5 Posts
    617 Views
    bingo600B
    @gregorywest said in Dynamic URL routing from WAN to LAN: Is it possible for PFSense to take the incoming URL and use it to route traffic to a particular server? What I am looking for is external WAN clients hitting the firewall with something.myurl.com routed to server2, and other clients coming into somthingelse.myurl.com to be routed to server3. Both of these routes might or might not be using the same IP Ports, so using 'port forwarding' would not work. Is something like this even possible? Do you have (or can order) multiple "Public ip addresses" for the firewall : And then assign different ip's to : something.myurl.com and somthingelse.myurl.com Would make your life much easier. Remember that w. some of the mentioned programe. Ie. FTP the client might not even xfer the url , just resolve locally , and connect to that "remote ip". /Bingo
  • pfsense on an mpls network

    pfsense firewall routing
    1
    0 Votes
    1 Posts
    543 Views
    No one has replied
  • How to allow Wan to Wan Port forwarding?

    6
    0 Votes
    6 Posts
    1k Views
    P
    I do this with HAproxy - it also supports keeping the original source IP to the destination, I can also terminate SSL/TLS and change ports along the way - very versatile :)
  • can merge speed of 2 wan or more.

    5
    0 Votes
    5 Posts
    658 Views
    noplanN
    @jenskiebee Bonding can be realized in combination with pfS as today only by a" bonding box" In front of pfS.... Oh boy I can tell you... A f@#&* pain in the ass Sometimes its working sometimes not the speed u get a total other ballgame And a 100+50 is not Givin you 150 its more about a 125 or less I got 2x100 and the best shot was 160... So now we use loadbalance and everyone is happy except the inner nerd ;)
  • Policy based routing stop working

    7
    0 Votes
    7 Posts
    1k Views
    P
    @marvosa Thanks a lot! Now I understood
  • Mikrotik Pfsense Radius Ghost Script Entegresi

    2
    0 Votes
    2 Posts
    347 Views
    H
    @halil o kadar konu açıyoruz 1 allahın kulu dönüş yapmıyor .
  • FRR to learn routes from only one wan from another box

    Moved
    1
    0 Votes
    1 Posts
    151 Views
    No one has replied
  • Multiple gateways on the same address space

    4
    0 Votes
    4 Posts
    555 Views
    senseivitaS
    UPDATE I just hit a tiny snag, it turns out URL aliases can be update once a day at the soonest, unlike DNS based resolution. So, I can either (A) hack some cron job to force updates, although I think these would be resolved quicker because of pgBlockerNG that stores its rules there as well and has a timer to reload them or option B is to set a DNS record or delegation for it. Active Directory delegates DNS Service Discovery (_dns-sd._udp.x.x. awesome way to ditch Avahi) to a macOS-based BIND9 server with dnsextdit's perfect for the job. :D
  • Wan -> pfsense -> Wan possible?

    wan squid proxy virtualbox
    1
    0 Votes
    1 Posts
    683 Views
    No one has replied
  • Firewall with gateway set seems to be ignore.

    4
    0 Votes
    4 Posts
    532 Views
    V
    @webstaff The question is, if your WAN really is going down or if only the monitoring IP does not respond to ping. However, since both WANs with different monitoring IPs are effected, I assume there is something odd with your connection or with pfSense. Possilby it helps to check System > Advanced > Miscellaneous > Skip rules when gateway is down to avoid that the policy routing rule is omitted when the gateway monitoring is failing.
  • Multi-Wan OpenVPN client routing

    4
    0 Votes
    4 Posts
    664 Views
    V
    @freak4915 To avoid DNS leaks when using the VPN you have to route the DNS traffic over the VPN. There are two possibilities to to that: Either forward the DNS requests of the respective devices you route over the VPN to a public DNS server, which you route over the VPN as well, or use the DNS resolver on pfSense and direct its whole DNS requests over the VPN. However, the firest one will not work with DoT and none of them works with DoH. For the first method, simply add a port forwarding for DNS traffic to a public server and add a policy routing rule to direct DNS requests to the destination server over the VPN. For the second, restrict the DNS Resolvers outbound interfaces to the VPN gateway group and care that all your devices use pfSense for DNS.
  • 100% packet loss

    1
    0 Votes
    1 Posts
    232 Views
    No one has replied
  • Cannot load ISP router page

    11
    0 Votes
    11 Posts
    1k Views
    N
    Thank you all for your suggestions, it seems the problems is gone byitself. Hence, I did not poke around as it started working and did not want to break anything as I am all new to pfSense.
  • pfSense behind ISP Router

    16
    0 Votes
    16 Posts
    9k Views
    Bob.DigB
    @gertjan said in pfSense behind ISP Router: The last (4) rule is an explicit "block everything" Since when is this needed?
  • HAProxy with OpenVPN over tcp/443 on pfSense

    7
    0 Votes
    7 Posts
    4k Views
    M
    @johnpoz thx
  • 2 Separate pfSense sharing same WAN subnet

    11
    0 Votes
    11 Posts
    783 Views
    johnpozJ
    Didn't say it didn't have a "modem" in it.. But that is a horrible term to use for something that is more than a modem.. Its not a "modem" its a gateway.. Sniff on pfsense2 wan when you try to access one of your forwarded ports from pfsense1 - do you see the traffic? If so then it would work. Just like any other port forward.
  • Configure PPPoE Wan Interface on Netgate doesn't works

    3
    0 Votes
    3 Posts
    601 Views
    T
    @viragomann This is what I see in my deciso (old firewall) on the netgate (new) I don't see anything ! But I have find the problem ! I need to go in Interfaces/PPPs/Edit and select "Link interface(s)" Now it works !! [image: 1627309282711-image.png]
  • only one PPOE can be working

    2
    0 Votes
    2 Posts
    375 Views
    michaeleinoM
    any help or suggestions here!?
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.