DNS and Multi WAN issues (still)



  • Hey guys, I have asked this a few times, and well now I really need it to work.

    I have a Dual WAN setup like this:
    Wan1 - Linksys router (10.10.10.1) -
                                                    - pfsense
    Wan2 - Linksys router (10.10.11.1) -

    Both linksys routers get their address via DHCP.  Pfsense is set static on both interfaces, (10.10.10.2 & 10.10.11.2). 
    In System->general my DNS servers are 10.10.10.1 and 10.10.11.1, and the override button is not checked.
    I have setup two static routes, Interface WAN, Network 10.10.10.1/32, Gateway 10.10.10.1 (doen't seem right to me…) and Interface WAN2, Network 10.10.11.1/32, Gateway 10.10.11.1.  Also tried Network 10.10.10.0/24 and 10.10.11.0/24, that didn't work either.

    If I turn on the DNS forwarder with a rule saying use my loadbalancer pool I get no DNS whatsoever.  But if I change the gateway to my default gateway my DNS comes back. 
    I have read, and read, and asked, and read and I can not figure this out.
    Does anybody have any ideas?  Did I miss any information needed? Please help.

    Thanks
    -Eric

    -edit-
    Forgot to say, if I try to use Diag->ping www.google.com it works, when the static routes are 10.10.10.0/24 and 10.10.11.0/24



  • FAQ.

    You need to add static routes for each dns server to forward the requests out the correct pipe.



  • Is that not what I did?
    the DNS servers are 10.10.10.1 and 10.10.11.1 (the linksys routers do dns forwarding…) and the static routes are interface wan, network 10.10.10.1/32, gateway 10.10.10.1 and interface wan2, network 10.10.11.1/32, gateway 10.10.11.1.

    Is there something wrong with this?



  • In your special case you can remove the static routes for the dns servers as they are directly in the subnet of your WAN interfaces. Does it work then?



  • Ive got the same problem I guess. When I switch from Cable to ADSL connection, I lost DNS resolving….

    Ping works but no resolving...

    I tried to put DNS server in /var/etc/nameserver_dc0, it changes nothing...

    OK Some Explanation ???

    ADSL = dc0 ----> /var/etc/nameserver_dc0 (I guess its for ADSL DNS servers)
    CABLE = fxp0 ----> /var/etc/nameserver_fxp0 (I guess its for CABLE DNS servers)

    When CABLE goes down (fxp0) it should use ADSL (dc0) ?? So why resolving is not working even if in these 2 files, dns servers are written ????

    I tried with the version 1.0.1 and now with BETA4 but its still the same ...............

    I would be very grateful if someone got an idea.



  • @lothar:

    Ive got the same problem I guess. When I switch from Cable to ADSL connection, I lost DNS resolving….

    Ping works but no resolving...

    I tried to put DNS server in /var/etc/nameserver_dc0, it changes nothing...

    OK Some Explanation ???

    ADSL = dc0 ----> /var/etc/nameserver_dc0 (I guess its for ADSL DNS servers)
    CABLE = fxp0 ----> /var/etc/nameserver_fxp0 (I guess its for CABLE DNS servers)

    When CABLE goes down (fxp0) it should use ADSL (dc0) ?? So why resolving is not working even if in these 2 files, dns servers are written ????

    I tried with the version 1.0.1 and now with BETA4 but its still the same ...............

    I would be very grateful if someone got an idea.

    I answered this earlier in this thread.  You need to add 1 dns server from each isp and then create the static routes manually in the GUI.

    You should never edit files in the filesystem.. They are all auto generated.



  • Can u tell me what does it looks like ? the static routes ???

    Ty very much for uR help. PLiZ pliZ PliZ :D





  • TY so much, it works :D U r just a genius TYTYTYTY



  • @hoba:

    In your special case you can remove the static routes for the dns servers as they are directly in the subnet of your WAN interfaces. Does it work then?

    I will attempt to try this later on tonight.
    Thanks hoba



  • hey everyone
    I have got my network setup as i described earlier, except i have use ISP dns servers, not my linksys routers,  and all is working properly on the LAN, however, if i try to loadbalnce on an OPT interface, I lose DNS resolution.  DNS forwarder is turned on.
    My static routes are fine, traceroute shows proper gateway, netstat -rn shows both dns servers properly.  and like i said everything works on the LAN interface but not the OPT.  Any ideas on that one?



  • @eric:

    hey everyone
    I have got my network setup as i described earlier, except i have use ISP dns servers, not my linksys routers,  and all is working properly on the LAN, however, if i try to loadbalnce on an OPT interface, I lose DNS resolution.  DNS forwarder is turned on.
    My static routes are fine, traceroute shows proper gateway, netstat -rn shows both dns servers properly.  and like i said everything works on the LAN interface but not the OPT.  Any ideas on that one?

    What version? This sounds a lot like a multi-WAN NAT bug that was fixed in 1.2, if you're not running 1.2b1 you should.



  • i am using version 1.2-BETA-1-TESTING-SNAPSHOT-04-30-07



  • ok i updated to 1.2-BETA-1-TESTING-SNAPSHOT-05-02-07 and i'm still having issues.  no DNS on any OPT interface..



  • nobody have any ideas on what might be wrong? ???



  • Must be a configuration issue. It's working fine here and for a lot of other people. Try to rebuild from scratch following closely the documentation.



  • OK I have rebuilt from scratch now like 10 times following the guide to the word, and still having the same issue.  DNS resolution does not work on the OPT interfaces with the DNS forwarder turned on when the gateway is set to the load balancer.  If i set the gateway to the default then DNS works fine.  On the LAN interface DNS works fine with the load balancer.. I don't know what to do.  Its driving me crazy.

    I am at a total loss for what to do.  It seems like this should be working. I have even gone to the lengths of replacing all hardware, except for my 4 port NIC.  That NIC has the LAN and 3 OPT interfaces



  • Eric, post your configs. Preferably screen shots of your loadbalancer and lan rules. Your network diagram with ip addresses would also be useful in case of misunderstanding.



  • OK, screen shots of LAN rules, OPT rules, LB rules, LB status, gliffy diagram of layout, config file with passwords errased

    anything else? i'll be happy to post, i would really like this to work properly.

    Thanks guys
    -Eric

    PS, files to big to upload all of them.. so i posted them on my local webserver.

    http://artknapp.ca/lanrules.PNG
    http://artknapp.ca/lbrules.PNG
    http://artknapp.ca/lbstatus.PNG
    http://artknapp.ca/optrules.PNG
    http://artknapp.ca/pfsense.png
    http://artknapp.ca/config-router.artknapp-20070509032355.xml


Log in to reply