Multi-Wan, Single Lan, Please troubleshoot my setup

leecoursey · Mar 7, 2012, 7:47 PM

Hello There!

We recent got two AT&T uVerse 12/3 connections. I activated both modems, set their LAN IP address ranges to 192.168.2.* and 192.168.3.* and the LAN is 192.168.1.*

I have internet access through pfSense 2.0.1, but the first Gateway always shows "Gathering Data" while the second shows "Online". The IP Address being assigned is coming through, and both connections see the modem/router obviously, so what's going on?

I have my Gateway Groups set up like:

LoadB (both connections Tier 1)
1to2 (WAN 1 is Tier 1 while WAN 2 is Tier 2)
2to1 (WAN 2 is Tier 1 while WAN 1 is Tier 2)

What am I doing wrong?

Also, in 2.0.1 how the hell do you hook up a WAP to an ethernet port and have pfSense run DHCP for that seperately from the LAN? ???

leecoursey · Mar 8, 2012, 2:29 PM

Yeah, I'm having issues. My failover works, because after getting errors from the WAN6683 connection, I pulled the plug and the failover pushed all traffic to WAN1496 so I've got to isolate what's wrong.

marcelloc · Mar 8, 2012, 3:25 PM

Do you have rules created on this second wan?

How did you connected these routers?

If you have a switch to wan or a switch with vlan you can setup this way:

pfsense wan (192.168.2.1)–-- router1 (192.168.2.2)
|---- router2 (192.168.2.3)

@leecoursey:

Also, in 2.0.1 how the hell do you hook up a WAP to an ethernet port and have pfSense run DHCP for that seperately from the LAN? ???

You mean two dhcp ranges on same interface?

leecoursey · Mar 8, 2012, 4:24 PM

@marcelloc:

Do you have rules created on this second wan?

How did you connected these routers?

If you have a switch to wan or a switch with vlan you can setup this way:

pfsense wan (192.168.2.1)–-- router1 (192.168.2.2)
|---- router2 (192.168.2.3)

See the attached image. Each AT&T provided router is connected to the pfSense box with it's own Intel Pro/1000 NIC. Same with the LAN connection. The whole thing is in a Windows domain, so the pfSense box is the gateway for the domain. DNS/DHCP are handled by the Domain Controller. I really just want pfSense to effectively manage switching back and forth between the two connections, especially when we have large uploads going.

@marcelloc:

@leecoursey:

Also, in 2.0.1 how the hell do you hook up a WAP to an ethernet port and have pfSense run DHCP for that seperately from the LAN? ???

You mean two dhcp ranges on same interface?

I have a TrendNET WEP653AP PoE Wireless Access Point that I wanted to connect to another 10/100 NIC on the pfSense box and have all traffic on that connection have seperate DHCP handled by pfSense and ONLY give access to the internet, not the LAN. Make sense?

marcelloc · Mar 8, 2012, 5:27 PM

The setup looks fine.

You do not need this * * * * * rule on wan.

On dhcp server you will see a configuration for each interface on pfsense, if you have two lans, then you can setup two dhcp ranges.

Check if form pfsense console you can ping wan2 router. As you posted pfsense could not check state for this gateway.

another thing you can try is to disable gateway monitoring on system -> routing