Dual WAN and static route for traffic



  • Is it possible with the Dual WAN setup to use only one WAN connection as the default, but force only specific subnets / destinations out the other WAN connection?

    i.e. all my web traffic etc etc out WAN1 and then only my VPN connection to work out the WAN2 link?

    In the cisco world I just do a static route for the VPN subnet and let the default route take the rest of the traffic out the WAN1 connection.

    I don't want to QoS it or route it based on ports / application, just anything to x.x.x.x/xx go out WAN2, everything else out WAN1.  No load balancing either.



  • yes.

    In the cisco world I just do a static route for the VPN subnet and let the default route take the rest of the traffic out the WAN1 connection.

    On pfSense it's the same.
    If you create a static route for a VPN, traffic with the destination of the static route will go to the gateway you specified in the static route.
    All other traffic will go to the default gateway.

    Just leave the default firewallrule with as gateway * (default = pfSenses routing table).


Log in to reply