2 Providers through same pfSense system (Multi-WAN)



  • Hi everyone,

    I have a strange problem that I cannot seem to correct. We currently have 2 Internet connections from the same provider. One connection is a 5 IP static block and the other is a 1 IP dynamic block at 10x the speed of the static WAN. Both connections have different gateways and are also separately wired from the demarcation point.

    I have configured the static IP one as WAN and OPT1 as the dynamic gateway. I have made the static gateway the "default".

    What I am trying to do is route some clients from the LAN through one gateway and the rest though the other. This is not a load balancing setup or failover setup. I want the WAN circuits to be independent and not have packets switching between them. I have create advanced outbound NAT rules to handle what I want on top of LAN rules for the client IP's that must go through each gateway and interface.

    This is not working properly at all. The internet connection speed and reliability has dropped considerably for both connections now. Another strange side effect is that when I go unplug the modem from 1 modem, the clients that were set to go through it now start going through the other gateway… I don't understand this as I have no pools, groups or rules defined to allow this... not sure how it is just auto switching gateways...

    I have tried removing and re-adding the interfaces and rules from scratch numerous times and all have the same horrible results.

    This seems like such a simple thing to me and I am certain everything is configured correctly but I am stumped why this is working so poorly. Note, I have connected to both modems (Bridged btw) directly and each connection is very fast.

    Also, if I take one interface away and revert to time when we just had 1 gateway the performance issues are still there... like a gremlin got into some rules I don't see. I cannot return the system to its peppy self now and I am puzzled as to why.

    So in a simple overview. Got 2 WAN connections. One LAN IP of 192.168.1.5 needs to go through one and 192.168.1.10 needs to use second WAN. There should be no load balancing or failover. How are you supposed to handle this scenario?

    Thanks for any help.



  • Forgot to mention that one connection is staid IPs and the new one is Dynamic (DHCP). So I set the gateway manually for one and the other is dynamically set. I have verified it is indeed set and correct.



  • I have one rule that does that.  All addresses on the LAN go out one gateway, which for me is my DHCP WAN gateway.  I have a legacy server on that subnet, so I assigned it to use the other gateway with the static IP.  That's all I needed to do.

    See the enclosed screen shot.

    ![Screen Shot 2013-03-07 at 1.16.44 AM.png](/public/imported_attachments/1/Screen Shot 2013-03-07 at 1.16.44 AM.png)
    ![Screen Shot 2013-03-07 at 1.16.44 AM.png_thumb](/public/imported_attachments/1/Screen Shot 2013-03-07 at 1.16.44 AM.png_thumb)



  • Sounds like you def have WAN failover configured.

    I assume if you do a direct connection to one connection or the other you get full speeds?


Log in to reply