Urgent help - HA with multi wan on SG-2100
-
Hi,
I need to configure two pfsense SG-2100 in HA and multi WANI have a fiber /30 with only one ISP IP + ISP gateway, how should i configure the wan ip on pf1 and pf2 please? and virtual ip? what about NAT?
the second WAN is a dsl, i have /32 public IP, or i can use the private network to assign IPs to pf1, pf and carp?
the LAN interface will be the one selected on carp configuration
pfsense 1 : 172.16.1.251
pfsense 2 : 172.16.1.252
CARP: 172.16.1.254Your help is much appreciated, thanks in advance.
-
@pfsense2090
Maybe this thread can help:
https://forum.netgate.com/topic/167420/multi-wan-high-availability-question -
@viragomann Hi, thank you for directing me to this thread, i did the configuration you have explained there, but i must have missed something because it's not working for me and i'm new with pfsense.
in the current conf i have the routers wan interfaces connected to extreme switch and tagged in same vlan "wan_vlan", the public IP can't be in this vlan so i connected the ISP cable to the pf1 wan interface but what about the communication with pf2 via switch?
1- where do i put the ISP cable?
2- when configuring the private ip in wan interfaces, should the gateway in the interface conf be the gateway public IP declared in system - routing - gateways?
3- i added the Carp VIP and the gateway
4 - do i miss some rules or NAT? anything else to check?thanks for your help! it's much appreciated and needed.
-
-
@pfsense2090
Basically you need at least 3 IPs for CARP in each network. One for each box and one CARP VIP. So you should have 3 public IPs on each WAN for proper functionality.
Though it is possible to set it up with a single public IP and use private IPs on the boxes, it might be tricky and have disadvantages.What is your DSL WAN, a PPP or DHCP? Both are not compatible with CARP. So you probably have to use another router on this line.