Proxy and VPN : how to setup 2 different gateways ?



  • Hello,

    2 months ago, i posted in this forum about a problem i have.

    http://forum.pfsense.org/index.php/topic,18428.msg94857.html#msg94857

    Unfortunately, never had answers  :-\

    So, i decided to post a new topic in routing/multiwan category, hoping to find some solutions  ;D

    Let me explain my needs :

    I have 2 gateways : let say GW1 and GW2 (on the same LAN)

    Behind GW1, one pfsense box (1 WAN + 1 LAN) is connected and it's WAN goes out by GW1.

    I enabled VPN IPSEC on this pfsense box, and it's working like a charm.

    So :

    ROADWARRIOR –-> VPN IPSEC ---> GW1 ---> PFSENSE ---> LAN (of course, arrows can be reverted  :)).

    But now, i need to add PROXY on this pfsense box.

    For bandwith purposes, i need the LAN users go out by GW2.

    But, as pfsense is setup, the traffic goes out like this :

    LAN ---> PFSENSE ---> GW1 (as default wan goes out by it) ---> OUTSIDE

    But, i don't know how to do this :

    LAN ---> PFSENSE ---> GW2 ---> OUTSIDE

    Do i need to add a second WAN eth card, to enable AON, to modify squid settings, etc ?

    If someone could describe how to setup this, i would be relieved  ;D

    Hoping someone has a solution,

    Sincerely,

    XZed



  • Any idea  :-[ ?

    Thank you,

    Sincerely,



  • To answer your question briefly

    1. Yes, you need to install a second ethernet card for your second GW

    You are not clear about which traffic will go thru which GW.  Is the GW1 only to be used by VPN users? Will all LAN users go out thru GW2 only or they will go out either GW (1&2)?



  • @fernandov:

    To answer your question briefly

    1. Yes, you need to install a second ethernet card for your second GW

    You are not clear about which traffic will go thru which GW.  Is the GW1 only to be used by VPN users? Will all LAN users go out thru GW2 only or they will go out either GW (1&2)?

    Let me thank you for your answer  ;D (so long awaited !!!)

    The two gateways will be only used for the right service :

    GW1 ONLY for VPN

    GW2 ONLY for proxy navigation

    Hope you could help me more  :)

    Sincerely,


Log in to reply