Two gateways, how to split smtp.



  • I have just setup two internet connections, with pFsense as our gateway with one WAN.  We set this up to trial a new fibre optic internet connection while maintaining our existing wireless connection as a fallback. So I have WAN (192.168.1.2)- and the first router, our wireless GW1(192.168.1.1) and the second router on GW2(192.168.1.3). There's a hub on the GW1 router that allows me to somply plug the fibre router in.

    I then simply swapped the GW on the WAN interface, then all traffic started going out the GW2 - so I thought. All web traffic went out OK, and our incoming web traffic to our internal web servers was OK, and authentication for our SSO worked too. But our remote access didn't work until I changed the Default gateway. Once I did that, all worked….

    Except we had a problem with the fibre ISP not allowing smtp relaying (from our photocopiers to Gmail). As our first ISP was OK, I tried ot create a firewall rule to push SMTP traffice out GW1, instead of the now default GW2. But it's not working.

    I have a firewall rule on the LAN interface with proto TCP, source *, port * Destination [ipaddress of ISP1] Port 25, Gateway GW1, Queue none, no schedule. But traffice is not redirected out the GW1, it is still going through GW2.

    I am using WinMTR to trace packets. I set the rule to pass all proto's to ipaddress of smtp.isp1, but it will not route via GW1. I have tried all sorts of combinations of firewall rules on both the WAN and LAN. I've tried rebooting between changes, but it's still refusing the split the traffic.

    Have i set this right ?

    pFsense 2.0.2-RELEASE (i386)
    built on Fri Dec 7 16:30:38 EST 2012
    FreeBSD 8.1-RELEASE-p13