Failover Wan / Reach all WAN routers Webinterface
-
Hello all,
We have a Pfsense in use with a failover configuration (1x coaxial, 1X DSL, 1x LTE) which also works well.
Currently I am trying to find a way to access the web interface of the 3 routers on the WAN port.
I have already tried firewall rules which send the traffic through the appropriate gateway, with an outgoing 1:1 Nat and with a virtual IP address on the interfaces and associated NAT entries.
The following setup is active:
LAN1 (192.168.147.1/24) -> Pfsense ETH1
WAN1 (192.168.3.1/24 Fritz.Box) -> Pfsense ETH1 192.168.3.2
WAN2 (192.168.4.1/24 Fritz.Box) -> Pfsense ETH2 192.168.3.2
WAN3 (192.168.6.1/24 Fritz.Box) -> Pfsense ETH3 192.168.3.2I can reach the LAN1 router via Lan, the other 2 routers are always in timeout, also a ping is not possible.
As soon as the failover changes to WAN2 I can reach it via webinterface but the other two are not reachable anymore.I am at my wit's end and need help
How can I make the webinterface of the WAN routers reachable via LAN?Greetings Manuel
Translated with www.DeepL.com/Translator (free version)
-
@themanuleinxd said in Failover Wan / Reach all WAN routers Webinterface:
LAN1 (192.168.147.1/24) -> Pfsense ETH1
WAN1 (192.168.3.1/24 Fritz.Box) -> Pfsense ETH1 192.168.3.2
WAN2 (192.168.4.1/24 Fritz.Box) -> Pfsense ETH2 192.168.3.2
WAN3 (192.168.6.1/24 Fritz.Box) -> Pfsense ETH3 192.168.3.2You cannot have the same IP on 3 network ports. (?)
And WAN1 and LAN1 are connected to the same network port on pfSense?
Some typos here?
Regarding you issue, you probably looking for this docs article: Accessing a CPE/Modem from Inside the Firewall.
-
Hello viragomann,
yes those were typos unfortunately, it should read (Copy&Paste the Lines :D):
LAN1 (192.168.147.1/24) -> Pfsense ETH0
WAN1 (192.168.3.1/24 Fritz.Box) -> Pfsense ETH1 192.168.3.2
WAN2 (192.168.4.1/24 Fritz.Box) -> Pfsense ETH2 192.168.4.2
WAN3 (192.168.6.1/24 Fritz.Box) -> Pfsense ETH3 192.168.6.2I will try the helpdesk article
thanks a lot!