pfBlockerNG 3.1.0_7 prevents dual WAN failback
-
I am new to pfSense and not sure if I am doing anything wrong. I have dual fail-over WAN setup. pfBlockerNG seems to block the setup to fail back after the main WAN recovers. I tested it few times and it's consistent.
With pfBlockerNG disabled, pfSense fails back to the main WAN in less than a minute, right away when I see it reporting that default gateway is default again. With pfBlockerNG enabled, pfSense restores default gateway as fast, however traceroute never reports failing back to the default WAN.
-
What parts of pfBlockerNG-devel are you using? For instance if you have DNSBL, and you just disable that does it fail back?
Edit: are you saying it used to work and broke in _7?
-
@steveits Just tried with DNSBL disabled, same result. I did not configure MaxMind. Let me know if you want me to try some specific configuration.
_7 is the first version I use. The WAN failover recovers when I disable pfBlockerNG completely on the general settings. I disable pfBlockerNG and tracerute shows default WAN again.
I am using SG-3100. -
@mikst Does it fail back if you browse to the System/Routing page? (rather old bug I thought was fixed)
What does Status/Gateways show when it isn't working?
You're sure it's not just an open state for the traceroute? (i.e. try other targets)
-
@steveits The Gateway status shows the right default gateway but traceroute still shows the fail-over WAN.
It does not fall back by just going to the Routing page. Traceroute starts showing the default WAN the moment I turn off pfBlockerNG.