Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Multi-LAN, one Gateway Troubles

    Scheduled Pinned Locked Moved General pfSense Questions
    2 Posts 2 Posters 1.7k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C Offline
      cthielen
      last edited by

      Sorry if this is the wrong section!

      We are trying to set up a multi-LAN setup - we have 5 /24 subnets and would like them all to go through the same pfsense machine. We have opted to use pfsense 2.0beta4, downloaded in Sept 2010 (roughly).

      We are using a Dell server with 6 NICs on it. We set up the first NIC as the WAN, giving it the static ip 1.2.3.4 (making up IPs here ..) and setting it's gateway to what the ISP gave us, 1.2.3.5. This works, and from the pfsense box (say, in a shell session), we have full Internet access.

      We then set up another interface on a different NIC as the subnet, 2.2.2.0/24. We gave it a static IP of 2.2.2.254 and set it's gateway to 1.2.3.4, the static IP of the first interface which routes to the ISP. This works fine as well. I should note we do not use any NAT, e.g. we honestly have full /24 LANs on the Internet and need to keep it that way for reasons out of my control.

      The problem comes when we set up that third interface, 3.3.3.0/24. We give that third interface (third NIC) a static IP of 3.3.3.254 and try to set it's gateway to 1.2.3.4 as well (same as the other LAN), which would then route to the ISP, but we can't - the website throws an error, invalid gateway. I should note the Gateway dropdown has no options (except None), so we clicked "Add a new Gateway".

      I've noticed going to System->Routing->Gateways gives more informative errors. Trying to create a Gateway there gives the error "Cannot create a Gateway with an IP not on the same subnet as the interface" (not a verbatim message).

      What's going on? Why can't we have all 5 LAN interfaces point to that 6th NIC, which routes to the ISP? What am I doing wrong?

      Thanks for the help!

      1 Reply Last reply Reply Quote 0
      • jimpJ Offline
        jimp Rebel Alliance Developer Netgate
        last edited by

        If these are internal interfaces, they do not require and should not even have gateways set.

        Items inside those subnets should use pfSense as their gateway, and pfSense will use its routing table to forward them on, which if 1.2.3.4 is the gateway to your upstream, it will all route properly.

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.