Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Routing rather than Gateway Group?

    Scheduled Pinned Locked Moved Routing and Multi WAN
    4 Posts 3 Posters 165 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • X
      Ximulate
      last edited by Ximulate

      Rather than using Gateway Groups for failover, is there any reason to NOT use policy routing? For example:

      System >Advanced >Miscellaneous > Enable Skip rules when gateway is down

      Firewall >LAN

      1. Source:*, Destination: ! RFC1918, Gateway: PrimaryWAN
      2. Source:*, Destination: ! RFC1918, Gateway: FailoverWAN
      Bob.DigB 1 Reply Last reply Reply Quote 0
      • Bob.DigB
        Bob.Dig LAYER 8 @Ximulate
        last edited by

        @Ximulate said in Routing rather than Gateway Group?:

        is there any reason to NOT use policy routing?

        Double the work.

        X 1 Reply Last reply Reply Quote 0
        • X
          Ximulate @Bob.Dig
          last edited by

          That was the only reason I could think of at the moment, but at least in my use case I think policy routing might be easier to manage

          Before I dive-in to rewriting my rules, I just wanted to make sure I wasn't overlooking something

          V 1 Reply Last reply Reply Quote 0
          • V
            viragomann @Ximulate
            last edited by

            @Ximulate said in Routing rather than Gateway Group?:

            but at least in my use case I think policy routing might be easier to manage

            Why?

            You can specify the failover group as the default gateway. So it is used by any device behind pfSense as well as by pfSense itself.
            Policy routing rules have to be defined on each interface on the other hand.

            The meaning of policy routing is to direct traffic from certain sources or to certain targets to a specific gateway.
            If this is, what you want, you can go with it. Otherwise I'd prefer a gateway group as the default.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.