Routing Public IP from pfSense through second pfSense instance
-
Hello,
I have an interesting setup, where my LAN subnet is behind a pfSense firewall (firewall1), to which one ISP is connected on the WAN interface. There is a second pfSense firewall (firewall2), also connected to a different internal subnet and to another ISP. The two instances are connected via a physical interface.
I am able to route private IPs from firewall1, through firewall2 to their destinations. For example, on firewall1 I am able to route 192.168.2.x via firewall2, and from firewall2 to other geographic locations, connected via VPNs.
My problem is routing a public IP from firewall1 via firewall2 to the Internet. For example, from firewall1, I am unable to route 8.8.8.8 via firewall2, and on to the Internet via the second ISP.
UPDATE:
Firewall1 is version 2.2-RELEASE (i386)
Firewall2 is version 2.2.2-RELEASE (amd64)
Any help? :-\ -
My problem is routing a public IP from firewall1 via firewall2 to the Internet. For example, from firewall1, I am unable to route 8.8.8.8 via firewall2, and on to the Internet via the second ISP.
If the other routes work this will work in the same way. However, I think you'll have an asymmetric routing issue, if you do that.
To resolve, you have to add an outbound NAT rule for that traffic.