Default GW on WAN not reachable after adding GRE OPT1
I'm having this strange issue with latest pfsense setup. I have pfsense with WAN and LAN and server in LAN network. In that setup everything works OK. But when I add GRE tunnel - OPT1 interface is added my default GW is not reachable anymore, so DNS queries, ntp, browsing etc … is impossible from internal side. NAT rules from internet works fine. Any ideas. It's enough to disable OPT1 to get access to the internet.
I've tried with previous version of pFsense and i figure out following:
traffic from internal network to outside stop working when I add this static route, which has remote GRE ip address for gateway,
to explain it a bit more (ip addresses are not real in following example)
WAN on my side 184.108.40.206 (IPSEC)
GRE on my side 220.127.116.11
WAN on provider side 18.104.22.168 (IPSEC)
GRE on provider side 22.214.171.124
I'm having both ipsec and GRE on same FW, provider does not, so ipsec needs to be established first for GRE to work
problem here is that as soon as I enter this static route like
10.20.40.64/27 via 126.96.36.199 (remote GRE) on my pfSense firewall
my default GW is not reachable anymore, so DNS queries, ntp, browsing etc … is impossible from internal side.
traffic from outside still works, ipsec and GRE are up, but's it's really annoying, I can't even update my windows server behind pfSense,
any ideas, anyone?