Re: [pfSense] Multi-Wan Setup, High Availability and Traffic Segmentation

[Espen Johansen]

VLANs ? VLAN is l2 not L3. I have no idea what you are trying to do with
VLANs in the mix. Policy routing is easy and probably what you need.

-lsf

fre. 13. nov. 2015, 23.29 skrev David White :

> I have a unique scenario:
>
> The higher ups require a multi-wan high availability setup, but assuming
> both ISPs are working, some traffic is required to use 1 ISP and some
> traffic is required to use the other.
>
> I've read in some pfSense docs on how I can setup a high availability,
> multi-wan setup, but those docs say nothing about segmenting the traffic.
>
> My idea is to setup 2 VLANS, and route 1 VLAN out of 1 gateway and 1 VLAN
> out the other, but configure them so that if 1 ISP or the other ISP goes
> down, both VLANS will go out whichever ISP is working.
>
> Is this possible?
>
> --
> David White
> Founder & CEO
>
> *Develop CENTS *
> Computing, Equipping, Networking, Training & Supporting
> Organizations Worldwide
> http://developcents.com
> ___
> pfSense mailing list
> https://lists.pfsense.org/mailman/listinfo/list
> Support the project with Gold! https://pfsense.org/gold
>
___
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https://pfsense.org/gold

Re: [pfSense] Hostname resolution of OpenVPN-connected clients

[Espen Johansen]

Bsed on your need I think you should convert to l2tp.

https://doc.pfsense.org/index.php/L2TP/IPsec

-lsf

lør. 14. nov. 2015, 03.22 skrev Vick Khera :

> On Thu, Nov 12, 2015 at 5:20 AM, Marco  wrote:
>
> > > Setting up BIND 9 to manage a dynamic zone is not very difficult.
> >
> > Do I need an additional BIND instance besides the unbound that's
> > already running on the pfSense box?
> >
>
> unbound != bind. I do not know anything about setting up dynamic zones in
> unbound. i know how to do it in bind9.
> ___
> pfSense mailing list
> https://lists.pfsense.org/mailman/listinfo/list
> Support the project with Gold! https://pfsense.org/gold
>
___
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https://pfsense.org/gold

[pfSense] Help with provider assigning multiple IP addresses over PPPoE

[C. R. Oldham]

Greetings,

My ISP provides access over PPPoE and has given me 2 static IPs via the
following configuration (public IPs sanitized)

Subnet Report
--
Subnet Size:4
Usable IP addresses:xxx.yyy.149.218
Gateway address:xxx.yyy.149.217
Subnet mask:255.255.255.252
CIDR number:/30
Broadcast address:  xxx.yyy.149.219
Network address:xxx.yyy.149.216


When I login to pfsense on the console I see

*** Welcome to pfSense 2.2.5-RELEASE-pfSense (amd64) on pfSense ***

 WAN (wan)   -> pppoe0 -> v4/PPPoE: xxx.yyy.149.217/32
 LAN (lan)   -> em1-> v4: 172.23.23.1/24

I cannot figure out how to make pfSense expose the xxx.yyy.149.218 address
to the public Internet.  I don't have any trouble adding NAT rules that
forward the .217 through to my internal network.  Can someone give me a
clue?

Exhaustive search of the mailing lists & pfSense handbook reveals similar
requests, but nothing that really addresses (ha ha) this issue, unless I
missed it.

Thank you.

--cro
___
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https://pfsense.org/gold

Re: [pfSense] Multi-Wan Setup, High Availability and Traffic Segmentation

[Kostas Backas]

We use VLANs to route more than one wan from one NIC, not for routing, but it 
can be done.

Best regards

Kostas

Sent from my iPhone

> On 14 Νοε 2015, at 06:43, Espen Johansen  wrote:
> 
> VLANs ? VLAN is l2 not L3. I have no idea what you are trying to do with
> VLANs in the mix. Policy routing is easy and probably what you need.
> 
> -lsf
> 
> fre. 13. nov. 2015, 23.29 skrev David White :
> 
>> I have a unique scenario:
>> 
>> The higher ups require a multi-wan high availability setup, but assuming
>> both ISPs are working, some traffic is required to use 1 ISP and some
>> traffic is required to use the other.
>> 
>> I've read in some pfSense docs on how I can setup a high availability,
>> multi-wan setup, but those docs say nothing about segmenting the traffic.
>> 
>> My idea is to setup 2 VLANS, and route 1 VLAN out of 1 gateway and 1 VLAN
>> out the other, but configure them so that if 1 ISP or the other ISP goes
>> down, both VLANS will go out whichever ISP is working.
>> 
>> Is this possible?
>> 
>> --
>> David White
>> Founder & CEO
>> 
>> *Develop CENTS *
>> Computing, Equipping, Networking, Training & Supporting
>> Organizations Worldwide
>> http://developcents.com
>> ___
>> pfSense mailing list
>> https://lists.pfsense.org/mailman/listinfo/list
>> Support the project with Gold! https://pfsense.org/gold
> ___
> pfSense mailing list
> https://lists.pfsense.org/mailman/listinfo/list
> Support the project with Gold! https://pfsense.org/gold
___
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https://pfsense.org/gold