pfSense MultiWan Configuration explained: LoadBalancing and FailOver
HTML-код
- Опубликовано: 13 мар 2020
- In this video I am going over the MultiWAN setup on pfSense firewall.
PayPal Donation to support release of new videos:
www.paypal.com/cgi-bin/webscr...
Toss some BAT at us from the Brave Browser, or use our link to install it :)
brave.com/gat041
View and support us at LBRY:
lbry.tv/@gatewayittutorials 
Наука
Thanks very much, you are very good at your videos and you speak very well. Thanks it has been very helpful all the way for me
Saw one video of you in my recommendations. Glad i found it, its pretty easy to understand and follow. Please keep that up. Really helpful for beginners :) Thanks!
That's a clean explanation. Thanks :)
In OPNsense it's still the same. Just remember to Allow default gateway switching in System>>Settings>>General... You also can adjust the weight of the gateways if you got different speeds from the different ISPs.
Default gateway switching is more of a single gateway scenario, but the weight option is very useful, you're right.
I am planning to make the same video for OPNSense, just for SEO sake, not everyone knows that config is mostly the same.
I like to use Separators and copy the LAN IPv4 rule and have it above the normal LAN rule.
I have two WAN's ISP_A and ISP_B and just one LAN...
Both Gateways pings and connects but the system IP's under the ISP_B are not pinging?
any idea why? If the gateway ping then why not?
Mate if I want for an example, that my Smart TV and my moms laptops to use 1 of my 2 internets, and my Pc the other, how I can do that?
Hey, as in my video about LAN firewall rules, just assign the appropriate gateway to the desired IP. That should be sufficient.
2 things that you didn't cover and for one thing I can't find an answer at all. 1st. In System-General Setup - DNS Server Settings > there should be each WAN Gateway for each unique DNS. 2nd. In System - Routing - Default Gateway > whats the difference between options there like "default" and my gateway group that I would set up in Gateway Groups? Thanks!
Hi. Thanks for your comment.
1) Not necessarily. ISP can provide a DNS for the given interface. This option is an override of their settings.
2) If you don't setup a specific firewall rule with a gateway in it, network will use the default gateway from Routing page.
I hope that helps.
@@GatewayITTutorials #2, "the network will use the default gateway from Routing page" means it will use the gateway the one that is up and active at that moment?
@@ricknroll963 At the top of the list, active and functioning.
@@GatewayITTutorials Thank you! Would you know by chance why SIP through TCP takes longer than UDP to switch to different WAN during failovers in pfsenses?
@@ricknroll963 I assume that your PBX is trying to resume the TCP session/stream for some time before the failover or you need more aggressive TCP timeouts in pfSense.
Just an assumption. It's hard to tell without knowing your trunk provider, PBX and so on.
But in general, SIP always handles line failures/failover badly. Unless you've got custom BGP IP failover, VIPs or some other seamless failover setup.
Hello. i have an L2TP interface, and my main DSL WAN interface (PPPoE). i have a rule that routes specific devices through the L2TP interface. can i set up failover for the L2TP interface? this way, when the L2TP interface goes down, devices that were supposed to use the VPN wont lose internet connection. also, devices that didnt use the l2tp interface stay unaffected
Is this possible?
Hello.
Option 1: make a fail over wan group of these 2 interfaces, give a lower priority to the DSL WAN in it, as per video.
Option 2: make L2TP interface a default gateway and allow default gateway switching.
I'd personally go with option 1.
@@GatewayITTutorials hello again. Thanks for the reply! Option 1 won't have any effects on devices that don't use the L2TP interface right? Or the pppoe wan connection in general
@@System-br1tx with option 1 you'll have to make sure that your default gateway is DSL. If it's already set to that, everything should be fine.