Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Multi wan and multi lan config

    Scheduled Pinned Locked Moved Routing and Multi WAN
    13 Posts 2 Posters 4.5k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      tommyboy180
      last edited by

      While I try to find a more suitable answer for you take a look at http://doc.pfsense.org/index.php/MultiWanVersion1.2#Setting_up_the_pools
      The example shows you how to setup fail over and load balancing. You can apply the same thing in your case but with 3 WANs.

      With this example you should be able to setup fail over (WAN1 to WAN2 | WAN2 to WAN3 | WAN 3 to WAN1)
      Setup an outbound rule that forces your server to use WAN1's Gateway. This should get you started.

      -Tom Schaefer
      SuperMicro 1U 2X Intel pro/1000 Dual Core Intel 2.2 Ghz - 2 Gig RAM

      Please support pfBlocker | File Browser | Strikeback

      1 Reply Last reply Reply Quote 0
      • T
        Tolitz
        last edited by

        ok, i will try it. let you know what happens.
        thanks

        1 Reply Last reply Reply Quote 0
        • T
          Tolitz
          last edited by

          hey tommyboy,
          got the failover working now…. still have to do the LAN1 <> LAN2 access as well as having LAN2 servers be access over the internet using NAT / public IPs.
          thanks.

          1 Reply Last reply Reply Quote 0
          • T
            tommyboy180
            last edited by

            Good.
            Okay to get different trusted networks to be able to talk (Your LAN1 and LAN2) we have to make a firewall exception. Attached below are my firewall rules to get my LAN1 and LAN2 to be able to 'talk'. Let me know if this helps.

            As you can see my first rule on each network is to allow all traffic to the other network.

            lan-to-lan2.JPG
            lan-to-lan2.JPG_thumb
            lan2-to-lan1.JPG
            lan2-to-lan1.JPG_thumb

            -Tom Schaefer
            SuperMicro 1U 2X Intel pro/1000 Dual Core Intel 2.2 Ghz - 2 Gig RAM

            Please support pfBlocker | File Browser | Strikeback

            1 Reply Last reply Reply Quote 0
            • T
              Tolitz
              last edited by

              i think i got it, you just made the other lan internet traffic go to your other wan,
              thanks.
              :)

              1 Reply Last reply Reply Quote 0
              • T
                Tolitz
                last edited by

                I got the LAN2 and LAN1 to access its other.
                I am just wondering why when I am on LAN2 subnet I cannot ping the LAN2 interface (192.168.1.1) but can ping the LAN1 interface (192.168.2.1)?
                Any ideas?

                1 Reply Last reply Reply Quote 0
                • T
                  tommyboy180
                  last edited by

                  Hmm. By any chance is ICMP Protocol not included in your firewall exception?

                  -Tom Schaefer
                  SuperMicro 1U 2X Intel pro/1000 Dual Core Intel 2.2 Ghz - 2 Gig RAM

                  Please support pfBlocker | File Browser | Strikeback

                  1 Reply Last reply Reply Quote 0
                  • T
                    Tolitz
                    last edited by

                    no, my rules are any ports
                    LAN1 IP = 192.168.1.1
                    LAN2 IP = 192.168.2.1

                    when I am on LAN1 i cannot ping 192.168.2.1 (LAN2 IP) and even when I on LAN2, I cannot ping 192.168.2.1
                    but on either LAN1 or LAN2 I can ping 192.168.1.1 (LAN1 IP)

                    any ideas?

                    1 Reply Last reply Reply Quote 0
                    • T
                      tommyboy180
                      last edited by

                      Can you ping LAN2 hosts from LAN1 or is it just the LAN2 Gateway that does not respond?

                      -Tom Schaefer
                      SuperMicro 1U 2X Intel pro/1000 Dual Core Intel 2.2 Ghz - 2 Gig RAM

                      Please support pfBlocker | File Browser | Strikeback

                      1 Reply Last reply Reply Quote 0
                      • T
                        Tolitz
                        last edited by

                        LAN1 (any host) to LAN2 pfsense interface and hosts - ping ok
                        LAN2 (any host) cannot ping pfsense LAN2 interface but can ping LAN hosts.

                        Only when I am in LAN2 that I cannot ping the LAN2 gateway (pfsense interface LAN2 IP)

                        any other hosts can ping both LAN1 and LAN2 pfsense interface

                        1 Reply Last reply Reply Quote 0
                        • First post
                          Last post
                        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.