2 gateways with the same wan
-
Do you have a second account with your ISP and you have two connections, not just two gateways?
I don't have a multi-WAN config, but you can go to System - Routing and add additional gateways. You can create gateway groups that will handle failover. Finally, you use firewall rules to control which gateway traffic goes to. Just be careful to not end up with an asymmetrical routing problem.
-
@KOM:
Do you have a second account with your ISP and you have two connections, not just two gateways?
I don't have a multi-WAN config, but you can go to System - Routing and add additional gateways. You can create gateway groups that will handle failover. Finally, you use firewall rules to control which gateway traffic goes to. Just be careful to not end up with an asymmetrical routing problem.
I explain you, is only one subnet, if a put gateway1 in a machine that machine will have a internet conection fo 100mbps, if I put the gateway2 that machine only will have 3mbps, the only change is the gateway, the subnet is alwaays the same, I already have the gateways in Routing, I have in default the gateway with 100mbps, but I dont know exactly how make the rules for do the range of each gateway, u can give a example? I had thought it could be done in System\Routing\Static Routes but I think this is only for one IP not for a range
-
but I dont know exactly how make the rules for do the range of each gateway
Under a firewall rule's Advanced options, you will see a Gateway picklist that lets you select which gateway that rule's traffic goes out on. Create aliases for your two groups and then use that aliases as the Source in your LAN rules.
-
@KOM:
but I dont know exactly how make the rules for do the range of each gateway
Under a firewall rule's Advanced options, you will see a Gateway picklist that lets you select which gateway that rule's traffic goes out on. Create aliases for your two groups and then use that aliases as the Source in your LAN rules.
hello there,
I have almost same isssue than topic starter… Except I want to use 2nd gateway for specific subnet (actually for DMZ).
So I use default gateway for LAN interface, and in firewall rule for DMZ interface I put in advanced options to use my 2nd gateway of wan, but when I go on internet, my traffic still outbound from 1st default gateway, as servers from LAN does.I have AUTOMATICLY NAT option. Should I change it?
-
@KOM:
but I dont know exactly how make the rules for do the range of each gateway
Under a firewall rule's Advanced options, you will see a Gateway picklist that lets you select which gateway that rule's traffic goes out on. Create aliases for your two groups and then use that aliases as the Source in your LAN rules.
I think this rule affect the routing gateway , I need affect the upstream gateway (The one in the WAN configuration)
-
I think this rule affect the routing gateway , I need affect the upstream gateway (The one in the WAN configuration)
What do you mean by routing gateway vs upstream gateway? All gateways are upstream.
I have AUTOMATICLY NAT option. Should I change it?
No idea. Start your own thread and post screenshots of your DMZ rules and multi-WAN config if you want someone to help you.
-
@KOM:
I think this rule affect the routing gateway , I need affect the upstream gateway (The one in the WAN configuration)
What do you mean by routing gateway vs upstream gateway? All gateways are upstream.
I dont think so,I will try to explain you with this diagram
-
I'm sorry but your network diagram is even more confusing to me. Why do you have 4 routers and 4 PCs? What are all these things connected to?
-
-
Tell me about it. It's starting to make my head hurt.
-
@KOM:
Tell me about it. It's starting to make my head hurt.
is the same pfsense with 4 different configurations, and the pc with the result of that configurations
-
WTF does upstream gateway 2, routing gateway 1 mean???
Its gibberish…
When they asked you to draw, they meant how your connected to what gateway 1 and gateway 2 is..
-
WTF does upstream gateway 2, routing gateway 1 mean???
Its gibberish…
When they asked you to draw, they meant how your connected to what gateway 1 and gateway 2 is..
my ISP provide me 2 gateways, in my pfsense I have 2 network cards (WAN and LAN), I have the 2 gateways configured in pfsense, my diagram only show what happen with that 4 configurations (exchanging the gateways between upstream default and routing gate way), I only have one pc in the pfsense LAN for see the results
-
And what is the point of giving you 2 gateways on the same connection?
-
And what is the point of giving you 2 gateways on the same connection?
I explain it, in the third post
-
that doesn't explain the POINT of it.. You only have 1 connection??? If the connection is down then both gateways would not be reachable!! So does their gateway 1 go down while you still have a connection?? WTF???
And while on this second gateway you only get 3mbps from a 100mbps connection.. that is not really a failover or backup ;)
So they gave you this 2nd gateway and said use this is a backup? Because our primary router goes down??
I see zero point to this sort of setup.. Point to the gateway that gives you 100mbps and call it a day.. If your internet goes down - try changing over to the other.. Does that work?? If so call the the ISP and say WTF!!!
-
1. You are Wrong, I Dont know how is the ISP configuration but sometimes the 100mbps is down, then I can change the most important pc to another network (only changing the gateway)
2. I dont want failover, I know 3mbps is not enough for a network, is only for a few machines
3. Yes
4. Yes that Work, my ISP provide me from a fortinet, I cant see anything of that configuration and obvious I cant change anything of that
Then you can help me, with the configuration that I want?
-
I should have purchased more popcorn…
1. You are Wrong, I Dont know how is the ISP configuration but sometimes the 100mbps is down, then I can change the most important pc to another network (only changing the gateway)
Wonderful. So, perhaps the ISP could implement a failover on their own infrastructure, instead of suggesting their customers to configure similar WTFs?!
-
I don't think what you are trying to do is possible without another NIC, and at this point I am stepping back.
-
Well you could create 2 VLANs on your WAN and keep on messing with this nonsense, but I'd rather switch ISPs.
