Multi-Wan Same Gateway

  • Hello,

    I'm looking for recommendations on my current setup and if there's a better/more suggested way of doing what I'm wanting.

    Through my ISP I have 4 Static IP's. Most of the traffic is on the one, however we have multiple web based applications that require HTTPS to them externally. To accomplish this I've added the additional static IP's on my pfsense using OPT1 and OPT2 and created the additional firewall https rules associated with these seperate interfaces. Everything is working fine, however would Virtual IP's be a better way of accomplishing this? Keep in mine this is virtualized on VMware. To get the firewall to see these OPT1 and OPT2 interfaces I just added additional network cards to the VM and configured them with my WAN port on the server.

    I also want to note that pfsense complained about adding these additional static IP's on OPT1 and OPT2 as the gateway address is obviously the same as the main WAN interface.

  • Looks like possibly Virtual IP's is the better way of accomplishing the goal. Can anyone confirm this would be the better way?

  • This is a on a manged fiber connection. Would there be any possible implications to using virtual IP's instead? The documentation states this may not work if the ISP requires an interface with a mac address, which Virtual IP's do not, correct?

  • I would strongly suggest using Virtual IP's within 1 x WAN interface on pfSense.

    You can then forward HTTPS (TCP 443) traffic from each virtual IP address to a different host / IP Address internally :)

Log in to reply