Hello to all,
I am new to pfsense, so I do everiting by the book. I have two ISP that come
and several computers (my LAN network) that benefits from the ISP. The two
ISP - give me IP from DHCP (or static - can work bout ways). One I call BTK
- 192.168.1.2/24 from ADSL router that have IP 192.168.1.1/18. The second
give me IP by DHCP true cable modem - motorola SB4200 (now I use ethernet
adaptor not USB). My LAN is IP is 192.168.0.11/24. I install pfsense
1.2from live CD on one of computers that I want to use like getaway.
So I have:
LAN - vr0 (192.168.0.11/24)
WLAN - rl0 (192.168.1.2/24) getaway=192.168.1.1 DNS - 212.39.90.42
OPT1 - rl1 (DHCP - some address from 85.130.0.0/18) getaway(by DHCP)=
85.130.0.1 DNS - 217.9.224.2
I allow DHCP to LAN in first wizard. start address - 192.168.0.15/24 and end
address - 192.168.0.254
I plug the cables and enable the OPT1 interface.
Register DHCP leases in DNS forwarder
Register DHCP static mappings in DNS forwarder
Diagnostics - Ping
from WAN to 192.168.1.1 - OK
from WAN to 69.64.6.21 - OK
from OTP to 85.130.0.1 - OK
from OTP to 69.64.6.21 - NO
ping form one of internal computers (behind pfsense) to 69.64.6.21 - OK
Services - Load Balancer
Setting - Pool1
Pool name - LoadBalance
Description - Round Robin load balancing
Type - Gateway
Behavior - Load Balancing
Port - Unused
1st IPMonitor - 212.39.90.42
1st Interface name - WAN
2st IPMonitor - 217.9.224.2
2st Interface name - OPT1
Setting - Pool2
Pool name - WAN1FailsToWAN2
Description - WAN 2 preferred when WAN 1 fails
Type - Gateway
Behavior - Failover
Port - Unused
1st IPMonitor - 217.9.224.2
1st Interface name - OPT1
2st IPMonitor - 212.39.90.42
2st Interface name - WAN
Setting - Pool3
Pool name - WAN2FailsToWAN1
Description - WAN 1 preferred when WAN 2 fails
Type - Gateway
Behavior - Failover
Port - Unused
1st IPMonitor - 212.39.90.42
1st Interface name - WAN
2st IPMonitor - 217.9.224.2
2st Interface name - OPT1
Sticky connections - enable
Firewall - Rules, LAN tab
Rule - Load Balance
Position in rule list - Last
Action - Pass
Disabled - Unchecked
Interface - LAN
Protocol - any
Source - LAN subnet
Source OS - any
Destination - any
Log - no
Schedule - none
Gateway - LoadBalance
Description - Everything else gets shared out
Rule - WAN
Position in rule list - top
Action - Pass
Disabled - Unchecked
Interface - LAN
Protocol - any
Source - LAN subnet
Source OS - any
Destination - network 212.39.0.0/24
Log - no
Schedule - none
Gateway - 192.168.1.1
Description - Make sure DMZ 1 traffic goes to right interface
Rule - OPT1
Position in rule list - top-1
Action - Pass
Disabled - Unchecked
Interface - LAN
Protocol - any
Source - LAN subnet
Source OS - any
Destination - OPT1 subnet
Log - no
Schedule - none
Gateway - default (there is no 85.130.0.1 from dropdown list)
Description - Make sure DMZ 2 traffic goes to right interface
Rule - HTTPS
Position in rule list - top-2
Action - Pass
Disabled - Unchecked
Interface - LAN
Protocol - TCP
Source - LAN subnet
Source OS - any
Destination - any
Destination port range - HTTPS
Log - no
Schedule - none
Gateway - WAN2FailsToWAN1
Description - Route https through one working connection
Rule - SMTP
Position in rule list - top-3
Action - Pass
Disabled - Unchecked
Interface - LAN
Protocol - TCP
Source - LAN subnet
Source OS - any
Destination - any
Destination port range - SMTP/S
Log - no
Schedule - none
Gateway - 192.168.1.1
Description - Route SMTP to the ISP that handles it
Apply rules
From I have internet (ping to 69.64.6.21) to internal computers (behind the
pfsense), but when I unplug WAN cable I don't have internet.
I use this document to do this:
http://doc.pfsense.org/index.php/MultiWanVersion1.2
I think that I do everything by the book, but I do not have Internet when I
unplug the WAN cable.
Please help me to configure that router. Thank you in advance.
--
честността не е порок
