Upgrade from monowall

Alan87i

I have 2 networks running monowall. One is here,and one at the neighbors down the road. the 2 are set up with the third lan card OPT1 on a different subnet from the to separate lans.
I have a static route set in each monowall so I can access lan servers from either network with out going through the wan. Both wans are from the same ISP.

I want to try out pfsense on a box laying here and have a few questions.
Is it possible to set this up so I can access the internet from either Wan from either lan?  Say I have a  20 users on one lan and 5 on the other, Can I set 4 or 5 of the 20 to use the static route and the gateway WAN of the other Lan?

Also Can I import my nat settings from monowall cfg to the pfsense cfg and upload it?
Thanks

GruensFroeschli

Yes to all questions.

Alan87i

Great I have it installed on a PC and uploaded my monowall config.
It all seems to be there.

Can I ask for some tips on getting  PC's from one lan to use the internet through the Static route instead of their default gateway.

Set up I have now
Router 1
Wan Cable modem
Lan Subnet address 192.156.0.25
Opt 1 subnet address 192.168.15.1 
Static route  192.168.25.0/24  192.168.15.2  witch is the other box still running monowall.

Router 1
Wan / cable modem
Lan subnet address 192.168.25.1
Opt1 subnet 192.168.15.2
Static route 192.168.0.0/24  192.168.15.1

Server access works fine through the static route and I can get a WHS client from the .25.1 subnet to connect to the .0.25 network after adding the WHS address to it's lmhosts file.
My knowledge on advanced networking sorta drops off a cliff right there.
Thanls
Allan

GruensFroeschli

To force traffic over the neighbors network you dont need static routes, but policy routing.
Search the forum for this term since there are several threads explaining it.

But are you sure you just want to force traffic to the other side?
Dont you want loadbalancing?

Alan87i

@GruensFroeschli:

To force traffic over the neighbors network you dont need static routes, but policy routing.
Search the forum for this term since there are several threads explaining it.

But are you sure you just want to force traffic to the other side?
Dont you want loadbalancing?

Yes load balancing might be the way to go.  But will it work with my setup both having the wan connection from the same ISP  different Ip address's of coarse. But both wans have the same dns and gateways. On the wan side I'm not sure.
I'm hoping today to swap out 1 m0nowall box with a Pfsense box and test it out making sure my settings so far have took.
If I enable loadbalancing  do I still get the functions of my static route I have now ?

And one more question that has been driving me crazy and I can't find a post about it as of yet.
A lot of settings mention Setting the DOMAIN  setting on the system general settings page. What am I suppose to put there?  Having absolutely no clue what the proper value should be on either of the two systems. I assume they should not be the same.
I'm ordering the book in a few minutes. Time for this farm boy to educate him self a bit more.

Thanks for the help
Allan

Alan87i

@GruensFroeschli:

Yes to all questions.

I did upload my monowall config . A tip for anyone reading this .
In my m0nowall config I had a configuration partly setup for ipsec and a vpn  but the service was disabled.  Pfsense would not load the filters because of this and displayed an error. I manually removed theses settings from the config file and reloaded it. That seems to have done the trick.