Dual WAN on ESXi 5.5 - need help with interface address & gateways!



  • Please help.  Pfsense has become my nemisis.  After dealing with about 6 different hardware conflicts and numerous install issues (burn't 5 CD's & tried 3 HD's and 3 USB sticks before an install worked - then I just decided to move to ESXI and it worked on the first try..)  Now I'm just kind of lost in figuring out the final details of this config.

    I'm stumped on figuring out how to setup my interfaces and gateways. I have a cable and dsl connection. My cable setup has a static IP, a modem address of 192.168.100.1 and my DSL setup is a modem/router which by default is 192.168.254.254 but I've managed to get it set to 192.168.2.1 for the internal address and 192.168.2.254 for the admin page.

    I'm running pfsense on an ESXi server, it has 2 onboard and a 4 port NIC.  I think I have the NIC's setup correctly in VMware but I'm not totally sure as I've never assigned physical NICs to a VM before.
    (I'm probably going to be teaming the 2 LAN NIC's and DMZ NIC's)

    This is how the interfaces are setup on the command line - these addresses have been changed but the interface name and the NIC #/ID is still the same. When I was using this config I could ping from everything but the DMZ (it wasn't setup)

    Here is the interfaces page.  I edited out the IP address because I think it was showing my static IP.  It does show that I am gpulling the address via DHCP with this setup.

    Dashboard view:

    Gateways - I don't know why WAN1Calbe isn't working - I have that NIC set to DHCP and I don't think I can set a gateway.

    The DNS's for the gateways:

    Gateway Groups - WAN1Cable is offline… IDK what I need to do

    Firewall Rules - Looks good to me

    System Gateways - Looks fine IMO - but what do I know..

    So what I want to do is set my LAN address range 192.168.1.1-192.168.1.254. with the router address as 192.168.1.1  .    I can change the address of my DSL modem to 192.168.1.254 (Which I think would be alright, but I don't know how the router would act on the unit being on the same network).

    Here is my router config from the cable modem.

    Here is the config of my DSL modem:

    If anyone could maybe shed some light on the following:
    1. What whould I set my WAN2_DSL modem/router IP address to?  (I can disable the internal LAN address on the device, which I think might be best..?) What should the gateway be?
    2. What should I set my WAN1_Cable interface to (cable modem address is 192.168.100.1) and what gateway should I use?
    3. I want to set my LAN address to 192.168.1.1 but again I don't know what gateway to use.

    What I found really strange is that above you see in 3 images above, that the WAN connection (Internet port)  is set to DHCP and is pulling an address that is my external IP (static) I believe, yet when I set pfsense NIC to DHCP I don't pull the same IP address.

    I want to thank anyone for any help they can provide on this.  I think all the issues with install really frazzled me and I'm psyching myself out here.



  • Hi Grepawking,

    Your ESX interfaces configurations looks ok.
    Please provides a screenshot of the config of yours WAN interfaces from pfsense. Cable and DSL.

    On my experience, I would recommend to use cable with DHCP or better the static PUBLIC IP if you really have it one assigned by your ISP (really DHCP leased by mac address). Is better the static IP, because the 192.168.100.1 of the cablemodem you see is properly the IP of the modem. But when is connected to the ISP, it makes a DHCP rely and will assign the public IP directly to your interface (in this case your WAN1CABLE interface).

    For the DSL, you could try to achive the same. Get the public IP of DSL the service on your pfSense WAS2DSL interface. To do this, try to find at the DSL router config the Bridge mode and not the routed mode.
    By doing this, your DSL modem/router will be used only as modem (layer 2, not 3) and just that. You will need to configure the pfSense WAN2DSL as a PPPOE interfaces and set up the username and password of the DSL connection there. The pfSense itself will dial the PPPoE connection and will receive the Public IP there.

    After that, you could have total control on pfSense and using both modems as simple gateways. After that, you could make use of WAN load balancing, failover, NAT, etc.

    Please, post your interfaces configs to check that.


  • Rebel Alliance

    Why do you have a GW on the LAN interface ?

    Usually you don't want/need an GW on LAN


Log in to reply