I need some help with PFsesne and dual WAN set-up
-
Does the firewall rule I set out above look correct for what I wanted to achieve?
-
@enigma27 Yes. Its fine.
You need to clear states after such changes to take effect. -
OK all sorted now. thank you.
-
this is not sorted and I cant work out why this is happening.
Loaded my Pc up this morning.. firewall rule still running so that this PC goes through the BT gateway.. run a speed test and says im on BT and am getting the full speed...
But downloading from steam and chrome on this PC and I am still using the sky connection and it taps out and SKYs max speed.
Any idea why this is??
I just downloaded something on another machine with the same firewall rule just pointing to its IP address and it downloaded on the BT connection at full speed.
So why is steam and chrome deciding to ignore my routers firewall policy? i have cleared states.
was working fine last night
-
@enigma27 post a screenshot of your firewall rules.
-
This is the simple rule i set-up to send traffic of the BT WAN for my main PC that although on whats my ip and speedtest both show my BT connection Steam and chrome are using the SKY connection to download... last night it was working fine
-
See this is strange.. I just restarted my PC and now steam is using the BT connection to download again.
-
Ok this is happening again.
Just tried to download a game from steam and its using the SKY WAN connection and ignoring the firewall rule above for my PC to use the BT WAN
But if i check my IP and do a speed test on the same PC it says i'm on the BT connection.
if i go into states and filter by my PC IP it shows no established connections through the SKY WAN
so confused
Restarting steam doesn't seem to make a difference.
doing an IPCONFIG /Renew on this PC makes no difference.Here is a screenshot of my rules... are they in the right order?
-
@enigma27 How about ipv6? I see a lot of traffic going out.
You can't policy route ipv6 the same way.
Try disabling ipv6 from your pc interface and see if it works as expected -
OK so started a download on steam this morning and again it was using the slower sky connection.
So i paused steam and left it open... I then turned off IPV6 on both WAN connections and the DHCPv6 Server & RA to disabled and restarted the stem download and its back to using the BT connection.
So if steam uses IPV6 and the firewall rule only works on IPV4 protocol could that be the issue?
in the firewall rule says the following
Leave as 'default' to use the system routing table. Or choose a gateway to utilize policy based routing.
Gateway selection is not valid for "IPV4+IPV6" address family.I did have IPV6 set-up for both WAN connections but the system default is the SKY connection. It seems you cant set-up a rule and designate a specific gateway that covers both IPV and IPV6 based on the note above.
-
@enigma27 You can't policy route ipv6 the same way it is done in v4
Just because it can't be natted.Keep ipv6 disabled.
p.s In theory you could have both ipv6 ranges assigned to your pc and then manipulate routing tables, but this has to be done at the workstation level
-
@netblues said in I need some help with PFsesne and dual WAN set-up:
@enigma27 You can't policy route ipv6 the same way it is done in v4
Just because it can't be natted.Keep ipv6 disabled.
will this cause any issues in the future though? or are we still a long way off IPV6 becoming the norm?
Also just to be clear when i disable IPV6 do I disable the DHCPv6 Server & RA option?
-
@enigma27 You can just disable it at your workstation.
You won't have any issues until you are either behind cgn or not assigned an ipv4 address