Connecting two sites with failover lines using gateway groups does not work

Routing and Multi WAN
Log in to reply
  • H

    Hi @ll,

    we have two sites connected with two leased lines. I am now trying to set up an automatic failover with pfsense firewalls on both sites. In case that one line dies the gateways should be switched and the traffic should run over the failover line. Each pfsense should only take all it gets and forward it to the other site.

    What i did:

    • Configure a gateway group with two tiers on each site
    • policy route all traffic comming in at the LAN interface out to the gateway group
    • policy route all traffic comming in at the interfaces of the gateway group out to the LAN interface
    • tried different scenarios with and without upstream gateways,  with and without configured def gateway and spent some time with static routes and RIP

    It seems, that traffic containing retour packets does not get routed through the gatewaygroup (no polcy routing only kernel routing). Without routes, no answer packets are comming back. As soon as i have routes, packites comming back are routed throuth the respective interface.

    Has anybody set up similar szenario and can give me a hint?

    Thank You
    Harald

    0

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy