Access to the internet

Derelict

1. For internet access the destination should be any.

You should also be passing IPv4 any protocol, not just TCP.

2. You don't need any rules on WAN1 or WAN2 unless you want to pass connections FROM the internet INTO pfSense (you are running servers that internet users need to access).

lfreez

@Derelict:

1. For internet access the destination should be any.

You should also be passing IPv4 any protocol, not just TCP.

2. You don't need any rules on WAN1 or WAN2 unless you want to pass connections FROM the internet INTO pfSense (you are running servers that internet users need to access).

thanks Derelict for your quick response.. now I changed like you said but still both networks using same gateway for access to the internet

what about floating rules is that necessary??

Derelict

No.

Firewall–> Rules-->LAN

1.added 2 rules for my 2 networks

Eg-  LAN 1
Action            - pass
Interface          - LAN
Protocol          - TCP
Source            - type    - network
                        address  - 10.238.56.0/24
destination      - type    - single host or alias/network/wan1 net/wan1 address/wan2 net/wan2 address
                        address  -
advance features --> Gateway - WAN1

Eg-  LAN 2 same as above

Can you do screenshots of both Firewall > Rules pages for both LAN interfaces?  Both System > Routing > Gateways?

lfreez

yes I can

lfreez

here are that screenshots -

Derelict

Might be just me but those are mostly too low-resolution to read.

lfreez

sorry

KOM

What's LANGW, a gateway group?

lfreez

@KOM:

What's LANGW, a gateway group?

you mean….  System: Gateways --> LANGW

that is my LAN

Derelict

Yeah those images aren't any good either.  Just attach the images using the attachment tool in the forum posting form.  Works great.  Not sure why people insist on doing something else.

Derelict

Nope.  Still just thumbnails for me.  Dont have time to deal with why multiple browsers don't display postimg correctly.  Post them so people can see them.


Derelict

Not for me they're not.  Even after clearing cache 4 of 5 are still thumbnails.


Derelict

Current Firefox, Current Safari, Current Chrome.  Dude needs to post so people can read it.

Derelict

No proxies, bro.  (IE11 in a Windows 7 VM for good measure.  Same result.  Images 1,3,4,5 thumbnails.  2 is legible.)

Unless it's ISP shenanigans but that would be a first here.

Same results on Firefox and IE on Windows 7 VM in a datacenter on a completely different ISP.  Maybe it's you who needs to force-reload.

doktornotor

Are you having your days, or what? Get some sanitary products, perhaps, and go vent those issues elsewhere. Images re-attached for convenience of Mr. Derelict Asshole.

Derelict

I'll be sure to include quotes next time so you can't delete the context when you're proven to be going off in your typical abrasive fashion but are totally wrong.

NOTHING pisses me off more than being told I'm wrong by some nonsensical blowhard when I know (and can prove) I'm right.

Derelict

Ugh.  So OP is trying to MultiWAN by using two different IP subnets on the same LAN segment.  Instead of laying into me why don't you lay into that in your usual manner.

Or is there an L3 switch/downstream router we weren't told about?

OP what is LANGW?

lfreez

@Derelict:

Ugh.  So OP is trying to MultiWAN by using two different IP subnets on the same LAN segment.  Instead of laying into me why don't you lay into that in your usual manner.

Or is there an L3 switch/downstream router we weren't told about?

OP what is LANGW?

yes there is L3 switch and routing between these networks are working fine.
10.238.81.0  network that pfsense server exist
10.238.56.0  users VLAN1
10.238.59.0  users VLAN2

LANGW is LAN  network (10.238.81.0) that pfsense server exist