Help with Multiple WAN setup.
-
this is really getting frustrating now. I can't see any reason why FTP isn't working. I set up the LAN rule as you said, and i've enabled the FTP helper under "interfaces>WAN>FTP helper"
When you say set the destination to 127.0.0.1, should that be of type "network" and CIDR /24? Also you didn't mention, but where should I be opening the FTP port in this rule, at the source or the destination, or do I not need to?
I also have rules set up in in Firewall>NAT>Port forward and set it to autocreate rules in firewall>Rules>WAN, i've attached screenshots of these.
EDIT: I did a quick check in my "diagnostics>show states" and when I try to make an ftp connection i'm getting these errors
tcp 127.0.0.1:8021 <- 80.79.129.2:21 <- 192.165.0.30:2077 CLOSED:SYN_SENT
tcp 127.0.0.1:8021 <- 80.79.129.2:21 <- 192.165.0.30:2078 CLOSED:SYN_SENT
tcp 127.0.0.1:8021 <- 80.79.129.8:21 <- 192.165.0.30:2079 CLOSED:SYN_SENTDo you have any idea what could be causing this?
-
ftphelper has to be enabled at interfaces>lan (it is by default) and not on interfaces>wan (this is only needed if you provide ftp services to the public). The rule to destination 127.0.0.1 (single host or alias) has to be created on top of the lan firewallrules.
-
hoba, I have to thank you for your help with this.
I changed the rule to "single host or alias", do I need to change the port range anywhere to FTP? I've also attached a screenshot of my "Interfaces>LAN" tab to show that the ftphelper is enabled (its enabled when there ISNT a tick in the box right?)
So just so i'm clear, for FTP to work with load balancing. I need this LAN rule, FTP enabled at the LAN interface and also a rule in my NAT>Port forward for FTP, with "Auto-add a firewall rule" enabled. Is this correct?
I found this recent mail thread which seems to say that FTP does not work at all for load balancing in pfSense, has this since been changed?
-
Your screenshots look ok now. Does it work? If not please upgrade to the latest snapshot. there was some ftp logic changed one day ago.
The mail just states that it can't make use of loadbalancing but it will work on multiwansetups using only WAN for ftp-ing.
-
Ok that REALLY scared me. I updated to the latest firmware update and I lost all access to the internet, when I checked on the pfSense main page it was telling me it was using version 1.0.1 from the 29th October 2006. Lucky for me i'd kept a copy of the 28th February update, when I updated back to the original again I got internet access back.
I think there might be something wrong with the latest snapshot, it appears to be one of the original 1.0.1 releases rather than an update.
Also, and this is very weird, before I updated I couldn't get FTP access at all, now that i'm back using the same version as before I now have FTP access??? Nothing has changed, I just updated to the same version i've been using all along,
-
You have to redo any load balancing queues after updating as the format has changed.
-
You have to redo any load balancing queues after updating as the format has changed.
What do you mean? All my load balancing and firewall rules are still in place and the load balancing is still working, the "status>RRD Graphs" show that the traffic is still going out over both connections
EDIT: Also my HTTPs is working now as well? Very weird. Btw I have no rules set up in Firewall>NAT (neither portforward, 1:1 or outbound) for FTP or HTTPs is this normal? Also another thing i'm noticing, when i'm downloading just one torrent it is using BOTH WAN connections? I know this is happening because my download speed is over 6Mb/s, which is greater than either of the WAN connections on their own. I thought this wasn't possible?
-
I have some homework for you. Search the forum and the available docs. This thread has already 5 pages and you are asking still questions that have already been covered in this thread or the docs that have been posted. No offense but the answers are all there already.
-
I am, believe me, i've been searching and reading for the last week, i'm presently completely reading through faq.pfsense.com.
The thing is my problem obviously wasn't just a simple misplaced rule, I had everything in place and it wasn't working, its only working now after doing a firmware update of the same version i'm using now. Which is very odd. I'd like to troubleshoot this but I don't even know why it would not be working in the first place.
Either way, you have been more than helpful on this, the reason I posted so many screenshots was so that if anyone else runs into these problems, when they do a search they will find this thread and be able to see what changes to make. I have load balancing working now, and seem to have the hang of getting ports working thanks to your help.
If I have any further questions i'll do a lot more research first before I post any more threads so I can be a lot more specific about what problems i'm encountering.
-
Leimrod, congrats! Lesser people would have given up 3 pages ago!
-
Leimrod you made my day! I was struggling to get this multi WAN thing setup. I had results with the dual WAN but I have 3 DSLs now and am getting another 2 in the next few days. Went through your posts and lo, I am on a 3 DSL loadbalanced network and everything works. Now I will try to get my uTorrent to work but if it does not, I will put a direct link to it on one of my DSL routers and have it done ;-)
Thanks to all mods who helped Leimrod and indirectly helped everyone else :)