Multiple IPs for Monitor IP Under Gateways

CloudNode

Hello; Recently I have been experiencing WAN failover to my backup WAN this week. When i checked my Bell modem, there are no indications of anything being down from the ISP.

I have been researching and have found that sometimes the default gateway used by the ISP limits the amount of pings if there is higher than normal traffic and as a result, my wan fails over to my 2nd wan as it marks it down.

I noticed that there is a Monitor IP section where I can enter an IP of my choice to monitor and only fail over if that is down. But i wanted to know if I can use 2 IP's for be even more sure. I have tried to use 8.8.8.8, 1.1.1.1 but it did not like that.

Wondering if there is a way to accomplish this and also what are others using for their IP to monitor. Thank you

SteveITS

@CloudNode Pretty sure it’s just one. pfSense adds a route for each IP.

You can however adjust thresholds for what an outage is, in the monitoring settings.
https://docs.netgate.com/pfsense/en/latest/routing/gateway-configure.html#advanced-gateway-settings

CloudNode

@SteveITS Thanks, I have reading that you would need to setup a new gateway if I wanted to monitor another IP for the same interface?

For example, below I have my main WAN interface that I have 8.8.8.8 set as my Monitor IP and then below that i have my 2nd WAN with is LTE failover. So if i wanted another as my WAN_PPPOE (main) interface to have a 2nd set of eyes to monitor 1.1.1.1. Would I need to created a 3rd gateway?

SteveITS

@CloudNode Each gateway needs a unique monitoring IP. You can’t create extra gateways, they need to function.

CloudNode

@SteveITS I have not saved but wont something like this work? Each gateway has its own monitoring IP

Example
Primary Gateway:
Interface: WAN
Gateway: 192.168.1.1
Monitor IP: 8.8.8.8

Secondary Gateway:
Interface: WAN
Gateway: 192.168.1.1 (same as primary)
Monitor IP: 1.1.1.1 (different monitor IP)

3rd Fail-Over Gateway:
Interface: WAN_LTE
Gateway: 192.168.2.1
Monitor IP: ...

viragomann

@CloudNode
I don't expect, that pfSense lets you create two gateways with exactly the same IP.

I ran traceroute to a remote site and picked the first IP of the listed ones, which is outside of my ISPs network and is responding to pings and used it for monitoring in the gateway settings.

CloudNode

@viragomann I was first using my first hop as my gateway monitor IP but as of last week looks like my ISP is having some issues and the ping on that not the best and causes my backup LTE to kick in and out.

I just changed it to 8.8.8.8 which should be fine but i wanted to get a 2nd set of eyes on it to make sure the internet is REALLY down before it goes to LTE. Is it really not possible to have such a check where there are 2 IPs to monitor and once both are confirmed down to switch to LTE gateway?