Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Gateway manually selected in firewall rule not enforeced? (preferential only)

    Scheduled Pinned Locked Moved Firewalling
    3 Posts 2 Posters 404 Views 2 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C Offline
      CyberMinion
      last edited by

      Hello,

      I have an interface with a pretty simple set of rules. Outbound WAN access is allowed through one rule only. On that rule, I defined a specific (virtual) gateway for it to use. As long as that gateway is online, it does just that--all traffic is routed through that gateway. However, when that gateway goes down, it fails over to the firewall's main gateway, and allows traffic to flow through there.

      Shouldn't that traffic be blocked, if the selected gateway is unavailable? How can I cause this rule to only process the allow rule through the specified gateway? I want all traffic either going through that gateway, or being blocked outright.

      Thank you!

      fb61212a-0cf0-4e6b-884b-dc3130c978b2-image.png

      S 1 Reply Last reply Reply Quote 0
      • S Offline
        SteveITS Rebel Alliance @CyberMinion
        last edited by

        @CyberMinion hi, I think you’re looking for https://docs.netgate.com/pfsense/en/latest/multiwan/policy-route.html#enforcing-gateway-use

        Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
        When upgrading, allow 10-15 minutes to reboot, or more depending on packages, and device or disk speed.
        Upvote 👍 helpful posts!

        C 1 Reply Last reply Reply Quote 1
        • C Offline
          CyberMinion @SteveITS
          last edited by

          @SteveITS said in Gateway manually selected in firewall rule not enforeced? (preferential only):

          https://docs.netgate.com/pfsense/en/latest/multiwan/policy-route.html#enforcing-gateway-use

          Yes, that is exactly what I needed! I guess I just don't know how to do research...

          I tried adding a block rule for the default gateway, but I couldn't get it to hit that rule. I didn't know about the checkbox in System>advanced. It works perfectly.

          Thank you!

          1 Reply Last reply Reply Quote 1
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.