PfSense broken - Dual Wan Problems - Transparant Setup



  • Dear forum members,

    Right now, i use the 2.0-RC1-IPv6 pfsense software for some routing between two ISP's (i just used a howto that i've found here).  Today, i've changed one of my DSL providers (new one incoming) and…it seems that the dual WAN is broken.  I have tried to fix it, but it seems that i can't fix it my own.

    The old situation

    Belgacom VDSL
    30mbit down
    4.5mbit up
    variable ip

    Dommel VDSL
    30mbit down
    4.5mbit up
    fixed ip

    The new situation

    Belgacom VDSL
    30mbit down
    4.5mbit up
    variable ip
    PPPoE done by pfsense

    EDPnet VDSL
    30mbit down
    4.5mbit up
    fixed ip (85.234.217.87) + /27 ip range (213.211.130.48 / 28)
    PPPoE done by pfsense

    I've post my pfsense setup (txt-file) with this post.  Could some-one please take a look at it and let me know what i do wrong?  The problem is that when i go to eg whatismyip.com, it always uses the belgacom interface and never the edpnet interface.  Also when i download a file at full speed using the Belgacom Interface, an other download will use that interface too in stead of the EDPnet interface.  It would be nice if there was some load balancing between them (when one of the interfaces is too busy, pfsense use the other) and a failover.

    Second thing : my EDPnet interface has a fixed ip (85.234.217.87) , and a /27 ip range (213.211.130.48 / 28) as "next hop".  I want to install some VPS servers with those public ip's so i can reach them from the internet.  How do i set up pfsense to do that?  Must be something like transparent firewall, but how?

    Thanks for any answer!
    Kris De Rocker
    config-pfsense.txt



  • Nobody that can help me with this issue?



  • I've tried to paint it out for you guys…maybe it's easier to understand?

    http://bit.ly/qCvoYB



  • By any chance you have sticky connections active?



  • @ermal:

    By any chance you have sticky connections active?

    Indeed, i do!  I spend a whole day in it and well…fallback/failover is working right now!
    Only the problem for my fixed ip's still excists


Log in to reply