2 WANs 2Lans How can It do this?
-
I need to set up my pfsense box as follows
2 Wans and 2 Lans, so that I can I have one network use the one WAN and the other the second Wan, totally separate from one another.
And I do not need fail-over or load balancing.
Any help or hints will be appreciated
David
-
Just modify the default rule for each LAN interface (and any custom pass rules if you've created them) to use the gateway the corresponds to the ISP you want them to use.
DNS traffic and any other traffic originating at the firewall will go out the main WAN interface, but anything coming from the LANs will go out the interface you select in the rule that matches and allows the traffic.
If you wanted to get fancy, you could create two failover pools, one with each ISP as primary as the other as the failover gateway. Then use the created 'virtual' gateways in the rules, and your two LANs will fail over to the other WAN if one of them ever goes down.
-
Thanks for the info, and I will try to do this.
David
-
not sure, but I cannot get traffic to route outside the network.
Any suggestions or samples?
-
not sure, but I cannot get traffic to route outside the network.
Any suggestions or samples?
I'm having a similar problem. I have two LAN's and two WANs.
If I use automatic outbound NAT generation things seem to work, but I have no idea where its routing the traffic from WAN2.
Currently I can't access WAN2 properly from LAN1, the NAT for WAN2 is ignored for LAN1 access.
I've tried a few things:
Disable Automatic Outbound NAT: makes it so I can access WAN2 from LAN1 properly, but makes it so no traffic from LAN2 makes it out.
Change LAN2 rule to use WAN2 as gateway: Also causes outgoing traffic from LAN2 to stop.I've even tried to combine them, same effect either way.
-
Or do I just setup another pfsense box? Don't really want to if I can avoid it.
Any type of assistance will be appreciated.
Thanks
-
Or do I just setup another pfsense box? Don't really want to if I can avoid it.
Any type of assistance will be appreciated.
Thanks
I've had a little more success in setting up the dual wan/lan config. If you disable the automatic outbound nat, and setup advanced outbound nat for the second LAN interface (only the LAN interface is done by default), that should help.
Then setup the LAN2 rule(s) to use WAN2 as the gateway.
That should do it, unless you have a more involved setup like I did where an upstream bridge was causing those settings not to work.
I've since setup a second pfSense box though, and it seems to work fine.
-
Sorry about the late reply.
It sounds like you're not changing the outgoing rule. You need both the NAT rule (or just use AoN) and a firewall rule on the LAN interface that sends matching traffic out your second WAN. The NAT rules are just there to perform NAT on traffic leaving those interfaces coming from the specific networks, while you need the firewall rules to actually direct the traffic there in the first place.
If you want to load balance you need to set up the round robin pool in the load balancer and use that as your the 'gateway' in your firewall rule instead of one of the WANs, but I'd suggest that you get it set up such that you can route traffic manually out either interface and that's working properly before you try and get load balancing/failover going.