4. MultiWAN with one internet connection and one internal network

MultiWAN with one internet connection and one internal network

  • P

    Hello,

    In our PfSense router (FreeBSD 8.3-RELEASE-p11, pfSense 2.1-RELEASE(amd64)) we have a working MultiWAN set up as follows:
    Interface WANZLDNET (connection comes directly from modem) with an external IP 82.176.103.*** via DHCP
    Gateway WAN with 82.176.103.254 as Gateway IP and 8.8.4.4 as monitor IP

    Interface WANXS4ALL (connection comes from Fritz Box, the Fritz Box handles the telephony/VOIP network) with IP 192.168.178.65 via DHCP
    Gateway GW_OPT1 with Gateway IP 192.168.178.1 (IP address of that router) and monitor IP 8.8.8.8

    These two are in the gateway group "MultiGateWay", the WANZLDNET has the highest priority.

    There's also a LAN connection to our internal network (192.168.0.) and the following firewall rule:
    ID: -; Proto: IPv4    ; Source: LAN net; Port: *; Destination: *; Port: *; Gateway: MultiGateWay; Queue: none; Schedule: -; Description: Default allow LAN to any rule;

    Yesterday we experienced big issues with our provider (of the WANZLDNET interface/WAN gateway). We've set up the failover right away and we got it working, we had our internet from the WANXS4ALL interface/GW_OPT1 gateway. However, after the connection was up again it didn't switch back to the WAN gateway automatically. PfSense showed us that the connection was up, then down, then up then down and so on. Our provider said that the connection should be all right and we verified this by connecting a laptop to the modem directly and downloading some file. It was actually up all the time.
    Anyone have an idea/solution about the up and down status of the link that was actually up all the time?

    Apart from that we'd like to be able to reach the Fritz Box from the LAN network. I've tried the IP of the router (192.168.178.1), the IP address of the Interface although that brings me back to the log-in screen of PfSense (which I understand). The Interface WANXS4ALL has under the DHCP client configuration the Alias IPv4 address 192.178.0.1/32, I've tried that too.
    Any idea on how to reach the Fritz Box?

    Thanks in advance.

    0
  • P

    Anyone have a clue for this one?

    0
  • T

    Not sure about the up/down stuff, but for the destination you need to make an alias of your internal networks, make a rule before your gateway failover one with the destination being that alias, and pass all traffic. Trying to pass traffic to your internal network through your failover group will usually not work out well.

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy