Dual WAN success story



  • We just got a new wireless link at work and I figured while we had 2 connections I should really test out the multi-wan feature that I helped architect.

    At any rate, just as I thought it would, it started working out of the box ;)

    So if anyone is having multi-wan problems please speak up as it works for me.  I'm pulling 2600KB a sec from my ISP via wireless which is the 2nd WAN and is on OPTIONAL3.    Oh, I should add that we run full CARP + PFSync as well..  Both links are using static ips.

    So it's a pretty complicated setup and works great.

    Just wanted to share the experience a bit as its pretty damn cool!(TM)



  • Humm if one of your WAN goes down (e.g. someone unplug the Ethernet cable between router and the DSL modem), will your system failover traffics to the other link?

    How about if only the Gateway of DSL modem is down (e.g. DSL modem A is running, but ISP gateway of that DSL modem is down)???

    I ask these as I know the "monitor" function of pfSense dual wan isn't working now. Thanks.

    All I want is some cheap (well cheap in price only… I trust the quality of pfsense coding) alternative to those Xinicom dual WAN router which does WAN failover. I've read several tutorials about pfSense, but they are meant for
    1. spread out traffic from different application to different WANs
    2. have two pfSense boxes running, so in case one box crash, the other will take over (CARP / pfSync)

    Both doesn't look like Dual WAN failover to me.



  • I believe the monitoring option works now, I am not using it however.



  • @sullrich:

    I believe the monitoring option works now, I am not using it however.

    Wow that's fast… I was still editing my first post above, haha.

    Hum... humm... then I should double check. My friend told me it doesn't work yet. He was actually installing pfSense 1.0 Beta yesterday, while I was just sitting back and making blind suggestions. I'll take a look of his installation tomorrow.

    Just wonder, where did you get the news of "monitor" is working now? Mailing list? Or? Thanks.





  • !!!
    Sure thing. Will spend time to actually install / test tomorrow.

    Will post results. Thanks.



  • Hello,

    I was using pfSense for some months. Every feature works very well, including the VPN server and the bandwidth limiter. Now I was trying to use the load balance features. The outgoing load balance is my next goal.

    I read your post about your succesfull i this matter. My ISPs provided static IPs adresses. The primary WAN is 1 Mbit/s static conection. The second WAN is a 256 Kbps Frame Relay with a /29 CIDR.

    I created the pool in LoadBalance using Gateway as type. Add the routers IP as Monitor IP and LAN IP as IP. The NAT rules are created, wiith advnaced uotbound nat checked. I keep the default rule, as noted in another post. The outgoing load balance works. There is any way to add a fault tolerance to this setup?

    thanks in advance.

    Luiz Maia Neto

    @sullrich:

    We just got a new wireless link at work and I figured while we had 2 connections I should really test out the multi-wan feature that I helped architect.

    At any rate, just as I thought it would, it started working out of the box ;)

    So if anyone is having multi-wan problems please speak up as it works for me.  I'm pulling 2600KB a sec from my ISP via wireless which is the 2nd WAN and is on OPTIONAL3.    Oh, I should add that we run full CARP + PFSync as well..  Both links are using static ips.

    So it's a pretty complicated setup and works great.

    Just wanted to share the experience a bit as its pretty damn cool!(TM)



  • If the Monitor IP for a link is not reachable any more the link will be temporarily excluded from the pool until it is reachable again. Or are you talking about a backup link that it switches to if all links are dead?



  • Hi All,

    I have been attempting to successfully configure Dual WAN connections to my PF Box. I have tried unsuccessfully for 4 months using every possible combination that I can find in the Forums and in Tutorials and WIKI and think of and I have not been able to get Dual WAN to route traffic correctly. Even in the Dual Wan configuration, only WAN1 passes traffic in both directions.

    Setup:
    LAN 1 IP: 192.168.1.1 (Default)
    WAN IP:  172.16.10.0
    ROUTER1 IP: 172.16.10.0 ADSL: STATIC IP
    OPT1 IP: 182.165.20.0 (WAN2)
    ROUTER2 IP: 182.165.20.0 ADSL: STATIC IP

    The PFSense Box is NOT running as pppoe.

    ROUTER1 & ROUTER2 Configured to authenticate and NAT. If either are connected directly to a PC or Network, Traffic flows perfectly. With every attempt WAN2 ROUTER2 does not pass traffic through to ISP. I can ping the Router2 Ethernet Address, but not the ROUTER STATIC IP when WAN is disconnected.

    If WAN is connected to ISP and WAN2 is connected I can Ping the ROUTER2 STATIC IP and when doing a tracert its path goes through WAN1 and ISP account and back tracks to the ROUTER2 on the Internet side. If the ROUTER1 is Disconnected ROUTER2 Ethernet IP Can be pinged but No traffic is transferred and the Statci IP is unreachable. I looked at the Firewall Log but nothing unusual shown.

    For one brief moment after a new install Beta2, I was able to ping and tracert ROUTER2 Direct without going out to the internet. But as soon as I disconnected ROUTER1, ROUTER2 was unreachable. After a restart, neither Router1 or 2 passed traffic and a format and reinstall was necessary to enable traffic flow.

    I know that I must be missing something during the configuration that others are doing out of habit and not thinking to record the action. I have followed everything exactly and still dual wan / load balancing does not work for me.

    I dont know if others are having as much trouble as I am settinh up Dual Wan, but I would dearly like to see incorporated into PFSense a wizard to suit multiple config setups. EG: Select MultiWan, Failover, Carp, Load Balance etc during the initial setup so that it becomes fool proof and in the end a fully configured PFBox as the users needs. Just enter the details of the IPs of LAN / WAN / OPT1 / OPT2/ ETC and GW's and if it requires Load Balance.

    What am I doing wrong. CAN someone Please HELP?

    Kindest Regards,

    Craig Roy.


Locked