Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    1. Home
    2. Tags
    3. bgp
    Log in to post
    • All categories
    • D

      PFSense IP Block - Wireguard
      WireGuard • bgp ips routing • • dennism14

      6
      0
      Votes
      6
      Posts
      126
      Views

      V

      @dennism14
      Does your home router have a public IP that is it accessible from outside? If he doesn't it won't work with BGP or forwarding naturally.
      In this case you can only go with VPN.

    • T

      Option to disable wireguard adding routes (Table = off)
      WireGuard • frr wireguard route default route bgp • • trunet

      5
      0
      Votes
      5
      Posts
      408
      Views

      T

      @cmcdonald thank you for the explanation. indeed the problem was my frr configuration, all is working fine now.

    • R

      Can propagate routes into AWS but don't receive updates back
      FRR • frr bgp aws tgw vpn tunnel • • rebelboy1988

      3
      0
      Votes
      3
      Posts
      143
      Views

      M

      @rebelboy1988 I would remove the route-map from the neighbor command so you have no filter applied and then see if you are getting routes. If not then the problem is with the AWS peer.

    • T

      FRR BGP routes not updated during CARP HA failover
      FRR • frr bgp failover • • TO2020

      1
      0
      Votes
      1
      Posts
      198
      Views

      No one has replied

    • F

      How to set SPD's/traffic selectors in IPsec?
      webGUI • web gui ipsec bgp • • fonzane

      1
      0
      Votes
      1
      Posts
      221
      Views

      No one has replied

    • S

      Different path for returning traffic
      FRR • bgp frr • • Sipher

      2
      0
      Votes
      2
      Posts
      400
      Views

      S

      @sipher
      issue solved from the original post, just disable "reply-to" from the FW rule.

      https://forum.netgate.com/topic/165849/how-to-enable-asymmetric-routing-on-pfsense-frr?_=1629724281949

    • A

      FRR BGP, IPsec VTI multi site and remote gateway routing
      FRR • frr bgp vti static route • • AlexM 0

      3
      0
      Votes
      3
      Posts
      405
      Views

      A

      Update 2:
      Added an alias for RFC1918 networks and configured an outbound NAT rule with RFC1918 as source and any destination on all pfSenses.
      This solved what seemed like a routing problem but turned out to be a NATing problem.
      However I'll probably have issues if/when I have multiple WAN connections.
      Still would like to hear if there are any best practices.

    • S

      AWS VPN BGP - Routing
      General pfSense Questions • vpn ipsec virtualip desperate bgp • • stev

      23
      0
      Votes
      23
      Posts
      2163
      Views

      M

      P.S. I take it back - you may need firewall rules for IPSec to allow BGP traffic. You can create them from the firewall logs if you see blocked BGP traffic on IPSec.

    • B

      Google Cloud to pfSense VPN with BGP Dynamic Routing
      IPsec • ipsec vpn google cloud bgp dynamic routing • • block24

      7
      0
      Votes
      7
      Posts
      2357
      Views

      B

      Thanks Pablo. Good to have in case we ever move to an HA setup with Google VPN. For anyone else that reads this, my posts were for the Classic Google VPN setup (non HA).

      One note I wanted to add, in the BGP settings in my instructions above, don't change the setting for "Redistribute connected networks" to Yes. When set to Yes this advertised our WAN network to Google and caused issues with hitting public facing servers we had in Google. Since we only have a few networks locally, I just manually defined those along with the BGP network 169.254.10.0/30 in the fields below that setting.

      The other option may be to change the setting to Yes and somehow mark it to ignore the WAN network, but I haven't looked into that.

    • H

      Trying to connect Pfsense to AWS VPNGateway via OpenBGPD and OpenBGPD seems to be inactive.
      IPsec • pfsense openbgpd bgp vpn aws • • higgintop

      1
      0
      Votes
      1
      Posts
      189
      Views

      No one has replied