Different path for returning traffic

Sipher · Aug 20, 2021, 8:45 AM

Hi All, I've posted same thread in the wrong group and hope to find some answer here.

I've below BGP running on pfSense + FRR box,
- BGP neighbor 1 advertised a default route to me as it is my lSP to Internet.
- BGP neighbor 2 is a private peering center, local ISPs exchange data here with a cheaper cost/Mbps link. receiving ~10K routes here.

Issue:
- incoming/outgoing traffic from Client A to Server 1 all go through BGP neighbor 1 (default route), even I have best BGP route path to Neighbor 2 when 「sh ip route "Client A IP"」, is it possible to send returning traffic to Client A via Neighbor 2? (Because Neighbor 2 cost per Mbps is cheaper)

Setup on "PfSense + FRR"
1. all interface are bound with public IPs.
2. already disabled outbound NAT

Item pending to test
1. remove manual added default gateway to Neighbor 1 on next maintenance window, and use the one from BGP instead. (dunno if this would help)
2. Disable packet filtering

PfSense 2 is just a firewall box, shouldn't have any issue relate to this topic.

thank

Sipher · Aug 23, 2021, 1:33 PM

@sipher
issue solved from the original post, just disable "reply-to" from the FW rule.

https://forum.netgate.com/topic/165849/how-to-enable-asymmetric-routing-on-pfsense-frr?_=1629724281949