Multiple WANs acting strangely



  • I have two internet connections, one is Verizon Business DSL and the other is a USLec T1.
    Both have large Static IP ranges.
    The DSL is very fast and the T1 is slower (it also has phone lines on it)

    Which ever connection I have plugged in to the pfSense WAN port works fine.
    The other which is plugged in to the OPT1 has problems.
    For example, I can ping www.google.com from the WAN, but not from the OPT1 (no matter which connection it is using).
    When I set up load balancing, every other connection will not work, and woe to the network if sticky connections is on (half the computers will not have internet until the states table is reset, when a different set of computers will not have internet)

    Has anyone else had this experience? Any suggestions?

    I have set up Load Balancing and Fail-overs as directed by the setup instructions.



  • Honestly: is everyone blind?
    This is like the 5th time this week alone that someone didn't read the note at the bottom of the ping utility saying:
    THIS TOOL WILL NOT WORK WITH MULTIWAN !

    And please dont tell me you cannot figure out how to ping an internet line to check if it's up
    (hint: create a static route pointing to the second gateway for the IP you want to ping, or ping from behind the pfSense and force to secondary gateway via policy routing, hell connect another computer and do the ping from there)

    It seems i got up with the wrong leg >_<
    /rant

    Anyways, trying to help you ;)
    What are the monitor IPs of your balancing pool?
    What is the status of these monitor IPs?



  • @GruensFroeschli:

    Honestly: is everyone blind?
    This is like the 5th time this week alone that someone didn't read the note at the bottom of the ping utility saying:
    THIS TOOL WILL NOT WORK WITH MULTIWAN !

    And please dont tell me you cannot figure out how to ping an internet line to check if it's up
    (hint: create a static route pointing to the second gateway for the IP you want to ping, or ping from behind the pfSense and force to secondary gateway via policy routing, hell connect another computer and do the ping from there)

    Exactly what I did. All of the pinging was done through the computer.

    Anyways, trying to help you ;)
    What are the monitor IPs of your balancing pool?
    What is the status of these monitor IPs?

    The status for everything in the load balancing status is up (green).
    Despite that, it is obvious that something is not working because when I force all connections through OPT1, I can not ping or et on the internet.
    I am using IPs on routers that my company uses at a colo.

    I should also add that when I set up 1:1NAT, I can get in to the network over the internet on both WAN and OPT1.
    The problem is only for traffic going out on OPT1.



  • Can you show a screenshot of the firewall rules for when you try to force it to OPT?
    Do you use advanced outbound NAT rules?



  • New developments: I only have this problem when sticky connections is on, otherwise, it works fine.


Log in to reply