Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    netgate 4100 routing issue

    Scheduled Pinned Locked Moved Routing and Multi WAN
    3 Posts 2 Posters 576 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      ap4376
      last edited by

      Hello,
      we are having issues with traffic going to a static route we created.

      static route has been created for ip (x.x.x.x) . meaning all traffic for ip (x.x.x.x) will redirect to gateway (z.z.z.z).

      when we run a tracert traffic is going to the correct gateway but when we use our application that needs to flow through that gateway the software freezes and jams up.

      when we change the gateway to (z.z.z.z) directly on the pc side the application works and there is no freezing.

      this make me think there is something on the pfsense side that is blocking or dropping certain packets .

      can anyone help on this matter would be appreciated

      thanks!!

      keyserK 1 Reply Last reply Reply Quote 0
      • keyserK
        keyser Rebel Alliance @ap4376
        last edited by

        @ap4376 said in netgate 4100 routing issue:

        Hello,
        we are having issues with traffic going to a static route we created.

        static route has been created for ip (x.x.x.x) . meaning all traffic for ip (x.x.x.x) will redirect to gateway (z.z.z.z).

        when we run a tracert traffic is going to the correct gateway but when we use our application that needs to flow through that gateway the software freezes and jams up.

        when we change the gateway to (z.z.z.z) directly on the pc side the application works and there is no freezing.

        this make me think there is something on the pfsense side that is blocking or dropping certain packets .

        can anyone help on this matter would be appreciated

        thanks!!

        Since you can enter the route directly on the PC (while testing), the PC must be on the same IP network (z.z.z.z) as the gateway to x.x.x.x. But as I understand it the PC has your pfSense - another gateway on z.z.z.z - as the default gateway right?

        If that’s the case you have a assymetric routing setup. Packets destined for x.x.x.x passes pfSense, but replies never does (goes directly from the x.x.x.x gateway to the PC.
        pfSense is a statefull firewall, and to keep pasing traffic to x.x.x.x, is must see the replies also.

        You can disable this behaviour by going to SYSTEM -> Advanced -> Firewall & NAT and tick the bypass for “static route filtering”
        Then it ignores the firewall rules and statefullness for trafic going to x.x.x.x

        Love the no fuss of using the official appliances :-)

        A 1 Reply Last reply Reply Quote 1
        • A
          ap4376 @keyser
          last edited by

          @keyser

          Awesome this worked! thanks for the help and quick response!

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.