Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    What are these rules and why we need them for load balancing??

    Scheduled Pinned Locked Moved
    Routing and Multi WAN
    2
    5
    1.7k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      thenewguy1979
      last edited by

      Just read the guide from here:

      http://doc.pfsense.org/index.php/MultiWanVersion1.2

      But I do not understand the purpose of the first 2 rule for the LAN routing. Are they really needed? And what do they do? On some other load balancing guide they even omit these rules for DMZ1 and DMZ2.

      Are these rules simply to route any packet from Lan to the correct WAN1 or WAN2 port? But would'nt that defeat the purpose of load balancing? I just don't understand these 2 rules. Thanks
      MultiWANrulesFirst.png
      MultiWANrulesFirst.png_thumb

      1 Reply Last reply Reply Quote 0
      • GruensFroeschliG
        GruensFroeschli
        last edited by

        Reread the link you posted:

        Rule explanation - DMZ 1 and DMZ 2

        These rules make sure that any traffic to the modem / router, (or other machines that are connected to this subnet if you are not using bridge mode), go down the right WAN connection. Without these rules you will find strange things happening when you try to access your modem / router.

        These rules should always be top of the rule list as you do not want earlier rules to route this traffic elsewhere.

        We do what we must, because we can.

        Asking questions the smart way: http://www.catb.org/esr/faqs/smart-questions.html

        1 Reply Last reply Reply Quote 0
        • T
          thenewguy1979
          last edited by

          Okay in Laymen terms, these 2 rule will allow me to access my modem from the LAN PC connected to my PFsense box. Is this correct? If I don't need need to access my modems from behind my pfsense box then I don't need these 2 rules?

          Okay this is how my setup look like

          Modem 1 –----->
                                            Pfsense ------->  LAN PC
          Modem 2 -------->

          1 Reply Last reply Reply Quote 0
          • GruensFroeschliG
            GruensFroeschli
            last edited by

            @thenewguy1979:

            Okay in Laymen terms, these 2 rule will allow me to access my modem from the LAN PC connected to my PFsense box. Is this correct? If I don't need need to access my modems from behind my pfsense box then I don't need these 2 rules?

            Correct :)
            The rules also make sure that you can access anything on the same subnet as the modems and the WAN interfaces.
            If you dont have anything there, no need for these rules.

            When i set up multiWAN however i dont set up two rules.
            I create an alias containing all the directly to the pfSense attached subnets.
            Then i create a single rule with as destination this alias.
            As gateway i would set default
            –> default means the routing table of the pfSense itself will be used to determine where the packet has to be sent out.
            And not set an IP as gateway directly.

            We do what we must, because we can.

            Asking questions the smart way: http://www.catb.org/esr/faqs/smart-questions.html

            1 Reply Last reply Reply Quote 0
            • T
              thenewguy1979
              last edited by

              Thank you. I have nothing there at the moment so these 2 rules are not needed now. Perhaps when I need to established DMZ or server then I would look back into them.

              1 Reply Last reply Reply Quote 0
              • First post
                Last post