Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    pFsense 2.3.2 Ignoring gateway settings on multi wan

    Scheduled Pinned Locked Moved Routing and Multi WAN
    4 Posts 2 Posters 451 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mezamon
      last edited by

      Hello,

      I have 2 wan connection and I am currently using pFsense 2.3.2. I can connect internet via wan1 without any problem but i want to specify for some users wan2.

      I add a rule on Firewall > Lan like below;
      alt text

      And also Outbound rule like;

      alt text

      But my client can't reach internet via wan2 it still use wan1. Also after while my whole network internet connection is being down and I am disabling Wan2 rule on outbound which i've add and internet comes back.

      My Gateway like below;
      alt text

      Can you help me about this?

      1 Reply Last reply Reply Quote 0
      • jimpJ
        jimp Rebel Alliance Developer Netgate
        last edited by

        1. Upgrade. That version is very, very old and has a number of known issues.

        2. What little you have shown looks OK but there isn't enough info to tell for sure.

        A few things you might look at:

        • Make sure the client isn't hitting a proxy, such as the squid package. Otherwise it will appear to access the web however the proxy does, not how your rules state.
        • Make sure the client actually has the address you put in the rule, since the rule shows 0/0 it means it's never been hit. So either that is freshly after a ruleset reload, the client may not be using that IP address, or it isn't hitting pfSense as its gateway
        • Show the gateway status of WAN2_DHCP. If that's down, it would act as if the rule isn't there.

        Remember: Upvote with the ๐Ÿ‘ button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • M
          mezamon
          last edited by

          Hi @jimp ,

          Yes you are right we are also using Squid for logging. Does it matter or should i do configuration on Squid side?

          1 Reply Last reply Reply Quote 0
          • jimpJ
            jimp Rebel Alliance Developer Netgate
            last edited by

            If you use squid then the client traffic can't be directed out a second WAN with policy routing rules. There may be a way to fix it in the squid configuration, but that's a topic for a new post in the Cache/Proxy category.

            Remember: Upvote with the ๐Ÿ‘ button for any user/post you find to be helpful, informative, or deserving of recognition!

            Need help fast? Netgate Global Support!

            Do not Chat/PM for help!

            1 Reply Last reply Reply Quote 1
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.