Routing Public IP from pfSense through second pfSense instance



  • Hello,
    I have an interesting setup, where my LAN subnet is behind a pfSense firewall (firewall1), to which one ISP is connected on the WAN interface. There is a second pfSense firewall (firewall2), also connected to a different internal subnet and to another ISP. The two instances are connected via a physical interface.
    I am able to route private IPs from firewall1, through firewall2 to their destinations. For example, on firewall1 I am able to route 192.168.2.x via firewall2, and from firewall2 to other geographic locations, connected via VPNs.
    My problem is routing a public IP from firewall1 via firewall2 to the Internet. For example, from firewall1, I am unable to route 8.8.8.8 via firewall2, and on to the Internet via the second ISP.
    UPDATE:
    Firewall1 is version 2.2-RELEASE (i386)
    Firewall2 is version 2.2.2-RELEASE (amd64)
    Any help?  :-\



  • @walls6176:

    My problem is routing a public IP from firewall1 via firewall2 to the Internet. For example, from firewall1, I am unable to route 8.8.8.8 via firewall2, and on to the Internet via the second ISP.

    If the other routes work this will work in the same way. However, I think you'll have an asymmetric routing issue, if you do that.
    To resolve, you have to add an outbound NAT rule for that traffic.


Log in to reply