Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Can't get WAN failover to work, without breaking local routing

    Scheduled Pinned Locked Moved Routing and Multi WAN
    2 Posts 2 Posters 548 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mitch2k
      last edited by

      Hi,

      I have setup a second WAN interface (which is connected to a local hotspot via WLAN). I have setup the second WAN interface as a tier 2 in a group.
      I can ping to an internet adres from both interfaces.

      I have tried adding a rule (see screenshot) for outbound (not LAN net) traffic to go via the WAN group. This works perfect. When I bring down the primary wan, it failovers to the WLAN.
      But, with this rule, my local routing breaks. I can't connect to any other local IP's in another subnet (via virtual IP's) anymore. Since I have put in 'not lan net', I would presume it would ignore the local LAN traffic.

      (in the screenshot I have disabled the rule)

      What do I have to set in the rule to get the failover to work AND not to break local routing.

      thanks!

      virtip.png
      virtip.png_thumb
      ![fw rules.png_thumb](/public/imported_attachments/1/fw rules.png_thumb)
      gwgroups.png_thumb
      ![fw rules.png](/public/imported_attachments/1/fw rules.png)
      gwgroups.png
      gateways.png_thumb
      gateways.png

      1 Reply Last reply Reply Quote 0
      • DerelictD
        Derelict LAYER 8 Netgate
        last edited by

        https://doc.pfsense.org/index.php/Bypassing_Policy_Routing

        Chattanooga, Tennessee, USA
        A comprehensive network diagram is worth 10,000 words and 15 conference calls.
        DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
        Do Not Chat For Help! NO_WAN_EGRESS(TM)

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.