On 11 February 2017 at 08:48, PiBa <[email protected]> wrote: > Make sure that 'internal' traffic is not pushed out over the gatewaygroup > to the WAN interfaces. > So create pass rules above the pbr>gatewaygroup rules, to allow internal > trafffic to just take the regular routes.
Ahh.. that sounds like a likely cause of my trouble. Thanks. Admittedly after only looking for about two minutes, I don't immediately see how to implement your solution, though. Gateway groups and firewall rules are managed in separate places in the UI, so it's not clear to me how to get firewall rules "above" the gateway group rules. I'll be out most of the day but I can play with that some more tonight and tomorrow to see if anything pops out at me. Thanks for your help, Matt _______________________________________________ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
