1LAN/2WAN: Failover won't work if WAN is down, OPT1 is up
-
Thank you GruensFroeschli, sorry I did not see the note. I actually get this in the pfsense log about static route "kernel: arpresolve: can't allocate route" follow with the "address is not on the local network". I am not sure if I am doing the right thing for static route.
-
still wont work :(
Load Balance OK
When OPT1 Fails OK
When WAN Fails NO INTERNETHere's my latest config:
-
In pic4 untick allow dns servers list…
in pic2 I would change the order of the monitor ip's (Servers/Gateways) as this
in pic1 to be sure, you do know that the only active rule is the opt1_failto_wan?
-
in pic1 to be sure, you do know that the only active rule is the opt1_failto_wan?
Hi Perry,
You mean that only Opt1_failto_Wan is the only rule being triggered by my current config?
Should I just delete the firewall rules?
-
You mean that only Opt1_failto_Wan is the only rule being triggered by my current config?
correct
Should I just delete the firewall rules?
That I can't say, it's your setup :)
-
You mean that only Opt1_failto_Wan is the only rule being triggered by my current config?
correct
Should I just delete the firewall rules?
That I can't say, it's your setup :)
Ok I figured my firewall rules are illogical. I deleted everything in LAN firewall except the one that uses the Load Balance as gateway.
Now it's working! (load balance and failover)
I can now proceed further.
One thing I noticed though, the Failover's reaction time is rather slow?
-
Thanks guys, it works for me as well although I did not setup load balance just failover, so I remove the load balance and retain the two failover setting. However I having problem when I use squid as transparent proxy once the WAN1 fails and the WAN2 take over it won't connect to any website although it connect when I remove the transparent proxy setting.
Is there any additional setup needed?
Thanks in advance.
-
I've read that Squid is not working in Mulit-WAN failover, is there other option?
-
new info about this problem? anybody could make work failover + squid?
thks -
new info about this problem? anybody could make work failover + squid?
thksI've decided to have 2 pfSense machines to simplify configuration:
1 pfSense machine to run Multi-WAN Load Balancer
1 pfsense machine to run Squid and Traffic Shaper
[LAN] –- [pfSense Squid+Traffic Shaper] –- [pfSense Load Balancer] === internet
This way, i'll only have 1 LAN 1 WAN for the squid/traffic shaper pfsense box, which simplifies the config.
-
If its any consolation, this will be unnecessary in 2.0, but for the time being your solution is valid.
-
@submicron:
If its any consolation, this will be unnecessary in 2.0, but for the time being your solution is valid.
i'm really excited about 2.0!
Hopefully when 2.0 comes out, my little 1.2.3-based "proof of concept" project will be highly appreciated by the management and i'll have budget approval for better hardware (VLAN-capable switches!)
-
sir do mind if i get a screenshot of ur config,i follow this set up but still my fail over is not working but my load balance is ok
