Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Two LAN interface configuration

    Scheduled Pinned Locked Moved Routing and Multi WAN
    2 Posts 1 Posters 1.4k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      antoinerscutum
      last edited by

      Hi,

      I try to dedicate one NIC to Management and another NIC to LAN and I'm having a weird trouble.

      My pfsense have then two IP from two distinct subnet :

      Management is : 192.168.0.50/24 (NIC A)
      Lan is : 192.168.1.50/24 (NIC B)

      Both of them have a distinct Gateway :
      Management GW is : 192.168.0.254
      LAN GW is : 192.168.1.254

      My computer (the client) is on another subnet : 192.168.3.20/24

      I have a route that sends 192.168.0.0/16 to the GW 192.168.1.254

      My trouble is the following :

      • I connect to my management interface : https://192.168.0.50
      • The data enters via NIC A
      • But the data comes out via NIC B

      I can be considered as "normal" because my route say so.

      However if I add a second route with 192.168.0.254 as gateway the system doesn't seem to prefer that route to the other when normaly this one represents less weight.

      How can I dedicate one physical interface to the management of pfsense and another to my LAN ?

      The goal of it is :

      • having the management still available when we manipulate the LAN
      • separate management from lan for security and system stress purpose (So I don't want the data to goes thru a subnet that isn't for him)

      Someone can help me about that situation ?

      Best regards.

      1 Reply Last reply Reply Quote 0
      • A
        antoinerscutum
        last edited by

        Bump.

        Since my last post I've tried the gateway advanced option in the firewall rules but it does not have any effect.

        Anyone know how to tell pfsense to answer always with the same interface or to tell that the management interface/console only has to work with one interface ?

        I've seen this trouble with all kind of the management protocol available : http / https / ssh …

        I've attached a quick diagram of what is happening to me. (I need the http out to be in the same interface than http in)

        Best regards

        diagram.png
        diagram.png_thumb

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.