Hi Chris or anyone who will help me... I have followed the instructions and have partly succeded.
This is my setup: fxp1 = Lan (this is used for management only) fxp0 holds the following: vlan0 = Lan_1 vlan1 = Lan_2 vlan2 = Lan_3 vlan3 = Wan vlan4 = Wan_2 vlan5 = Wan_3 All these interfaces are connected to one physical port on a switch. Here it is supplied with the xDSL- and Lan-connections. I have made 1 rule for every LAN that will allow all traffic to leave through its dedicated WAN (gateway). I have tried with different rules to prevent Lan_1 users from leaving through Wan_2 and Wan_3, and the same for Lan_2 and Lan_3, but nothing seems to work. If I for instance make these rules on the Lan_1 interface: Lan_1 -> any destination -through- Wan_2 [BLOCK] Lan_1 -> any destination -through- Wan_3 [BLOCK] Lan_1 -> any destination -through- Wan [ALLOW] Then no traffic gets through. I completely loose contact with the router, allthough I can still get an ip through dhcp. What rules will I have to make to strictly separate the three networks? Kind regards Anders -----Oprindelig meddelelse----- Fra: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] På vegne af Chris Buechler Sendt: 17. april 2008 08:07 Til: [email protected] Emne: Re: [pfSense Support] triple wan to triple lan On Thu, Apr 17, 2008 at 2:03 AM, Anders Dahl <[EMAIL PROTECTED]> wrote: > > I have one machine and 3 xdsl-connections. I want each of them being a > gateway for it's own LAN. Shouldn't that be possible!? Sure. > I have succesfully created multiple WANs with one LAN, and thougt that it > would be just about the same setup, but of cause with different "manual > outbound nat" and firewall rules. > But I can't make it work. > Don't use manual outbound NAT, the automatically generated rules are fine no matter how many WANs you have. Disable it, it's much simpler that way. Then just define the appropriate WAN as the gateway in the firewall rules on each LAN interface. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
