Route some traffic (bittorent) to second WAN interface
-
Hi,
new to pfSense, I want to know if it's possible with pfSense to route some traffic (based on application type, for example all Bittorent traffic, so Layer 7) to a second WAN interface? So pfSense Router with 2 WAN connection, able to route some traffic to WAN1 and other traffic to WAN2.
Hope I explained correctly… :) -
If you have UPNP enabled, it should use both WAN interfaces with Bittorrent. This is dependent on which torrent app you're using.
You will not be able to tell BT or pfSense which transfers to use over which WAN port. Bittorrent will use both to open up connections and do transfers.
-
Not sure I understand, why the client (BT client) would use both WAN connections if the router (pfSense) will route all the request through only one WAN interface ?
-
Actually, thinking back, I am incorrect.
My issue was due to the PC being on two LAN connections with two different WAN gateways, and that in turn allowed the BT client to route out both WANs.
So you could achieve this by creating two LANs with each WAN being the gateway for the corresponding LAN.
-
me too still be to pfsense but i think it should be possible.
I know it can be done on mikrotik, so why not on pfsense?it's done using Policy Based Routing PBR, I think you start googling on that.
https://doc.pfsense.org/index.php/What_is_policy_routing -
You can't do application-based policy routing. You can do port/IP-based policy routing.
-
well on mikrotik you can use mangle to identify the traffic.
I don't know if it is applicable here with pfsense somehow, and btw I really want to know the answer to your question since I will do the same with my firewall :)
I will keep my eye on this thread.Best of luck
-
Identifying BitTorrent traffic is a lost cause. The only time it really works is when you have some generic BT client like Blizzard Updater or something that follows the defaults. Beyond that, it's a mix of encrypted TCP and UDP traffic going to random ports.
-
I know you can do routing based on IP/port but it's there a Layer 7 routing available (on pfSense or other product) ?
My Asus router has a (real time?) traffic analyzer that can identify if the traffic was made by BitTorrent, Web, Streaming, etc… How does it do it ? -
I know you can't do any routing based on IP/port but it's there a Layer 7 routing available (on pfSense or other product) ?
My Asus router has a (real time?) traffic analyzer that can identify if the traffic was made by BitTorrent, Web, Streaming, etc… How does it do it ?You can absolutely do routing based on IP/port. It's done all the time with pfSense.
Set a static IP and static IP port for your BT client and create policies. Done.
-
I know you can't do any routing based on IP/port but it's there a Layer 7 routing available (on pfSense or other product) ?
My Asus router has a (real time?) traffic analyzer that can identify if the traffic was made by BitTorrent, Web, Streaming, etc… How does it do it ?You can absolutely do routing based on IP/port. It's done all the time with pfSense.
Set a static IP and static IP port for your BT client and create policies. Done.
Sorry, it was a (big) typo on my sentence, I meant to say that you CAN not CAN'T :D
-
I was thinking more about this and unfortunately can't test it, but you could conceivably set up a floating rule and put both WANs in a load balancing group and that might achieve what you want to do.
Normally I'd test before I'd recommend it, but I don't have a second WAN anymore.
-
Set a static IP and static IP port for your BT client and create policies. Done.
Well, this I don't think is gonna work, from my knowledge BitTorrent traffic goes out to random ports, you can set a static port (or range of ports) for the (outside) clients to connect to you.
-
If it's just one client, load balance all traffic from that client.