2 wan ip only 1 gateway no work after update



  • i have a pfsense 2.0 with two ip public 200.x.x.114/28 and 200.x.x.115/28 the gateway is 200.x.x.113. In a version 1.2.3 work perfect but after upgrade the second WAN 200.x.x.115 no work more in a  public network. i try create again the opt1 interface and gateway for opt1 but no work. i can put other ip public in a machine to try ping to opt1 200.x.x.115 and i can ping to this ip but when i pinging of other location the opt1 no work i think is a route problem but i cant resolve please help

    netstat -r

    Routing tables

    Internet:
    Destination        Gateway            Flags    Refs      Use  Netif Expire
    default            200.x.x.113    UGS        0    7759    re0
    10.0.8.0          10.0.8.2          UGS        0  163428 ovpns6
    10.0.8.1          link#16            UHS        0        0    lo0
    10.0.8.2          link#16            UH          0        0 ovpns6
    10.6.6.1          link#12            UHS        0        0    lo0
    10.6.6.2          link#12            UH          0        0 ovpns3
    10.88.99.1        link#13            UHS        0        0    lo0
    10.88.99.2        link#13            UH          0        0 ovpns4
    10.168.174.1      link#14            UHS        0        0    lo0
    10.168.174.2      link#14            UH          0        0 ovpns5
    localhost          link#5            UH          0      474    lo0
    172.16.100.1      link#11            UHS        0        0    lo0
    172.16.100.2      link#11            UH          0        0 ovpns2
    192.168.60.0      10.6.6.2          UGS        0        0 ovpns3
    192.168.173.0      10.88.99.2        UGS        0    76815 ovpns4
    192.168.174.0      10.168.174.2      UGS        0    71211 ovpns5
    192.168.175.0      link#3            U          0  1451946  nfe0
    pfsense            link#3            UHS        0        0    lo0
    192.168.254.0      172.16.100.2      UGS        0  180928 ovpns2
    200.44.32.12      200.74.197.113    UGHS        0  110393    re0
    200.x.x.112/28  link#2            U          0    62353    rl0
    200.x.x.114    link#2            UHS        0        0    lo0
    200.x.x.115    link#1            UHS        0        0    lo0
    200.x.x.116    link#9            UHS        0        0    lo0
    208.67.220.220    200.x.x.113    UGHS        0  110449    re0
    208.67.222.222    200.x.x.113    UGHS        0  110457    re0

    wan(200.x.x.114)
    lan (192.168.175.1)<                          hub gateway(200.x.x.113)
                                    opt1(200.x.x.115)



  • You do not need opt1 for second wan ip. Both are on same subnet.

    Just Create an Ip alias at wan interface and it will work.



  • i can use alias but the rules and nat over firewall work in ip of alias? i need separe rules



  • @burff:

    i can use alias but the rules and nat over firewall work in ip of alias? i need separe rules

    Set outbound nat to manual and set your rules.

    Use same network on two interfaces is not correct unless you are using bridge.



  • the rules are inbound and in the GUI in interface WAN i cant see alias for the interface wan



  • Alias are in 'virtual ip' gui tab.



  • I were using four external interfaces during 1.2.3 with the same gateway since this allows me to get 4 times the upload from my provider.

    Now with 2.0 it won't work as stated before. Is the stated solution usable on my setup as well.
    I'm using DCHP on my WAN-ports and are trying to loadbalance outbound between them.



  • alias in virtual ip work for me
    work for statick ips in dhcp mode i dont know



  • @burff:

    alias in virtual ip work for me
    work for statick ips in dhcp mode i dont know

    That was the question since I can't find any virtual dynamic IP.



  • Multiple dhcp clients on same net sounds completely unusual and routing confusing to me.



  • Reason is stated earlier but I'll explain further…

    I have a LAN provider who gives me 100Mbps download but only 10Mbps upload. They provide me with five IP-addresses through DHCP and each of the IPs each get 10Mbps of upload. Since they give me IP-addresses from a /16 net I get the same gateway on all IPs. This means if I put a firewall with five WAN-addresses and load-balance them I get 50Mbps upload. It works with 1.2.3, not flawless but it works, and I have also used Shorewall to do this job and am now asking you if I can do this with pfsense 2.0?

    I'm currently trying to provide enough bandwidth to host a couple of game servers and really need the extra 30-40Mbps I'm trying to get here.

    Sorry if I don't make any sense...


Locked