Default route switching does not seem to work
-
I have an Alix Board working as a pfsense firewall. The pfsense version is 2.0.1-RELEASE (i386) built on Mon Dec 12 19:00:03 EST 2011 FreeBSD 8.1-RELEASE-p6.
The firewall is connected to the internet via pppoe. Recently I added a G3 stick as failover, following the instructions in "Multi-WAN_2.0". This works like a charm. The stick connects via PPP, uses dial-on-demand (to recognize adding and removing it) and pings the DNS-server of the GSM-provider to check its state. When the pppoe-link goes down (by switching it off in the GUI or removing the cable) everything works as intended… the traffic from LAN gets routed to the PPP interface and everything coming from LAN works fine. The "Allow default gateway switching"-tab (under System->Advanced->Misc) is checked. I verified this by looking at the backup-xml, there is a "<gw_switch_default>" entry.
Unfortunately, the "default gateway switching" doesn't work, breaking tunnel functionality via OpenVPN-clients. With the pppoe-link running, there is an entry "default aaa.bbb.ccc.ddd UGS 0 4212 1492 pppoe0 " in the routing table. The Openvpn-clients use this gateway entry to connect to their servers. When the pppoe-link goes down, the default-entry in the routing table disappears and the tunnels stop working. Adding a default gateway to the g3 (ppp)-link manually (via shell command) works, the tunnels start working again, using the G3 link. This should be the funtionality of the "Allow default gateway switching" switch and should happen automatically!
I'm reading the forum for clues about this for hours now, but can't find anything I could have done wrong. Any ideas?
Martin</gw_switch_default>
-
It doesn't work on PPP*, known issue with a ticket open and one of the reasons it's off by default.