Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Split traffic between WAN links based on type of traffic not source IP

    Routing and Multi WAN
    2
    4
    371
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • K
      Kimbie
      last edited by

      Just moved into a new house and waiting on internet being installed and its being quoted at around 25-30Mb, so in the meantime I have a 4G router which I am getting around 80-90Mb on but have around 50ms latency so not great for gaming.

      My question is, if I have both my 4G and broadband as separate WAN links configured in pfSense, can I then split traffic between the WAN links based on either traffic type or destinations if possible.

      So my PC would be on eg 10.99.1.10 and I go to Youtube the traffic will go out via the faster 4G connection, however if I am playing games such as World of Warcraft it will send the traffic out the normal broadband connection, so get improved pings but lower speed.

      I know you can do it based on source IP address so I can put my servers to go via the 4G connection, but not sure if it can be done on a specific type of traffic.

      Thanks

      johnpozJ 1 Reply Last reply Reply Quote 0
      • johnpozJ
        johnpoz LAYER 8 Global Moderator @Kimbie
        last edited by

        Its a firewall rule - anything you can define in the rule can be used to policy route. Be that source IP, destination IP, protocol, port.

        If the rule triggers, then it can send it down a specific gateway be that your wan or your 4g connection.

        An intelligent man is sometimes forced to be drunk to spend time with his fools
        If you get confused: Listen to the Music Play
        Please don't Chat/PM me for help, unless mod related
        SG-4860 24.11 | Lab VMs 2.7.2, 24.11

        K 1 Reply Last reply Reply Quote 0
        • K
          Kimbie @johnpoz
          last edited by

          @johnpoz Thanks for that, will have a look once I get my pfSense box back online from moving, would appear Blizzard list all their ports, so guessing can do it based on that.

          johnpozJ 1 Reply Last reply Reply Quote 0
          • johnpozJ
            johnpoz LAYER 8 Global Moderator @Kimbie
            last edited by johnpoz

            As long as nothing else uses that port, you can tie destion IP or Range/Netblock with that port.

            Kind of problematic if they use say 443 or 80 or any other port that some other site/service will use. So you need to use enough variables to only route that specific traffic and not traffic you don't want to go out that gateway.

            Why source IP is used - is it simple that if that changes its completely under your control. Problem with destination IP is most stuff is served via some sort of CDN these days, and IPs used could be in the 1000's or 10's of thousands - and they can change all the time.

            Same with port, they are not always unique to whatever site/service you would want to route out a specific gateway.

            While you know your source IP is what you set it to be, and won't be changing unless you change it.

            But any combination you can come up with that makes the traffic unique enough to identify can be used.

            An intelligent man is sometimes forced to be drunk to spend time with his fools
            If you get confused: Listen to the Music Play
            Please don't Chat/PM me for help, unless mod related
            SG-4860 24.11 | Lab VMs 2.7.2, 24.11

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.