Re: [pfSense Support] Load Balancer Interfaces
On Wed, Aug 26, 2009 at 7:42 AM, Jesse Vollmar vollm...@gmail.com wrote: It seems like this is related to that OPT interface not having the gateway specified on it. That interface is however working and sending traffic out to my ISP's gateway. At the risk of looking like the N00b that I am, I don't see how pfsense can send traffic out on an interface that has no gateway. Respond, yes; initiate, no. Can we have a look at your routing table? db
[pfSense Support] Load Balancer Interfaces
Hello, I recently had to make some changes to one of my OPT interfaces and now I cannot re-setup the load balancing. I ended up not setting a gateway on that interface (which is used for a cable Internet connection) to get it to work with my ISP. Before making any changes, I deleted out my load balancing rules. When I go back to recreate them, the edit pool page is only showing WAN in the interface drop down. I am trying to do gateway failover using my two Internet connections. It seems like this is related to that OPT interface not having the gateway specified on it. That interface is however working and sending traffic out to my ISP's gateway. Jesse
Re: [pfSense Support] Load Balancer Interfaces
On Wed, Aug 26, 2009 at 10:39 AM, David Burgess apt@gmail.com wrote: At the risk of looking like the N00b that I am, I don't see how pfsense can send traffic out on an interface that has no gateway. Respond, yes; initiate, no. Can we have a look at your routing table? db The route for that OPT1 interface is showing up it is em2. $ netstat -nr Routing tables Internet: DestinationGatewayFlagsRefs Use Netif Expire default67.38.60.77UGS 0 455460ng0 10 link#1 UC 00em0 ... 66.188.33.xxx/30 link#3 UC 00em2 66.188.33.xxx 00:1f:e1:4b:d7:f4 UHLW10em2 1185 67.38.60.7799.23.221.xxx UH 1 4955ng0 99.23.221.xxx lo0UHS 00lo0 127.0.0.1 127.0.0.1 UH 00lo0 - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Load Balancer Interfaces
On Wed, Aug 26, 2009 at 8:57 AM, Jesse Vollmar vollm...@gmail.com wrote: The route for that OPT1 interface is showing up it is em2. $ netstat -nr Routing tables Internet: DestinationGatewayFlagsRefs Use Netif Expire default67.38.60.77UGS 0 455460ng0 10 link#1 UC 00em0 ... 66.188.33.xxx/30 link#3 UC 00em2 66.188.33.xxx 00:1f:e1:4b:d7:f4 UHLW10em2 1185 67.38.60.7799.23.221.xxx UH 1 4955ng0 99.23.221.xxx lo0UHS 00lo0 127.0.0.1 127.0.0.1 UH 00lo0 As expected, you have no gateway on em2. pfsense is able to route packets to any host on that network, which means it can reply to any incoming packet, or contact any machine on that network, but any traffic that doesn't match the exact networks in the first column, ie, 'the internet', will take the default gateway, ng0. For load balancing to work, and for any outbound connection initiated from your network to go out the em2 interface, you will have to enter a gateway. If this messes things up with your ISP then your ISP has a problem, or you're not setting things up properly. Enter your ISP's gateway on em2 and if that doesn't work we'll troubleshoot from there. db
Re: [pfSense Support] Load Balancer Interfaces
On Wed, Aug 26, 2009 at 11:19 AM, David Burgessapt@gmail.com wrote: As expected, you have no gateway on em2. pfsense is able to route packets to any host on that network, which means it can reply to any incoming packet, or contact any machine on that network, but any traffic that doesn't match the exact networks in the first column, ie, 'the internet', will take the default gateway, ng0. For load balancing to work, and for any outbound connection initiated from your network to go out the em2 interface, you will have to enter a gateway. If this messes things up with your ISP then your ISP has a problem, or you're not setting things up properly. Enter your ISP's gateway on em2 and if that doesn't work we'll troubleshoot from there. db I have entered the ISP's gateway (They actually have two due to us using multiple subnets) and when I do, pfsense can only ping that address. Packets to any other network won't go through. When I remove it, I can ping any internet host from em2. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Load Balancer Interfaces
On Wed, Aug 26, 2009 at 9:24 AM, Jesse Vollmar vollm...@gmail.com wrote: On Wed, Aug 26, 2009 at 11:19 AM, David Burgessapt@gmail.com wrote: I have entered the ISP's gateway (They actually have two due to us using multiple subnets) and when I do, pfsense can only ping that address. Packets to any other network won't go through. When I remove it, I can ping any internet host from em2. pfsense's GUI ping utility lies WRT interface selection. Try unplugging the WAN and ping some internet hosts. db
