From: francisco Alonso Espejo [mailto:[email protected]] Sent: Tuesday, June 16, 2009 12:25 PM To: [email protected] Subject: Re: [pfSense Support] MultiWan + LoadBalance + FailOver + Squid
Hi, Not, I've 3 Internet providers. Wan, Opt1, Opt2. Two DSL 12Mb/600k and one 4Mb/4Mb cable connection. This connect to Pfsense and Pfsense need to run LoadBalancer + MultiWAN and SQUID for LAN to get great internet access, content filter, etc. At 1.2.2 Multiwan with Squid not works. [Christopher Iarocci] Unfortunately, I can't help with the SQUID problem, other than to say I believe you are right, Squid and Multiwan do not work in version 1.2 at all. I know there are plans to support Squid better in 1.3. The forum is a better place for Squid questions because the maintainer of Squid lives there, not on the mailing list. Look here: http://forum.pfsense.org/index.php/topic,7591.0.html My VPN router connect to Switch, and i need to setup ONLY on Pfsense define route when traffic goes from LAN 192.168.10.x to external network 192.168.100.x goes from VPN Router. [Christopher Iarocci] So you are looking to have the pfSense box reroute traffic destined for the 192.168.100.0/24 network through 192.168.1.120. Should be able to set up a static route for that in pfSense. In your static route table, select the interface as LAN, the destination network as 192.168.100.0/24 and the gateway as 192.168.1.120. This will work IF the workstation traffic is destined for the 192.168.100.0/24 network which I believe from your description it is. The only thing I can see having a problem here is that you are pushing the traffic back out the same NIC card it came in. You really should use a different NIC to connect the pfSense router and the Fortigate routers. I'm not sure how many NICs your pfSense router has so I don't know if that is possible. If you have enough NICs, I would recommend using another for the connection between the routers. At the moment work with Xincom loadbalancer but Only with two WAN. 2009/6/16 Christopher M. Iarocci <[email protected]> Hi, I've this network setup 2009/6/16 Christopher M. Iarocci <[email protected]> From: francisco Alonso Espejo [mailto:[email protected]] Sent: Sunday, June 14, 2009 2:31 PM To: [email protected] Subject: [pfSense Support] MultiWan + LoadBalance + FailOver + Squid Hi to all, I try to run MultiWan + LoadBalance + FailOver + Squid. I've two DSL lines 12Mb 1,2/600Kb Wan1, Wan2(opt1) and Opt2 4Mb down /4Mb up Cable line. Running 1.2.2 I get this issues.. - Failover : Some times pfsense ping to DNS and this fail (why? internet works fine.). I replace for Router-IP and sometimes fails too.. The conection it's with a UTP Cable Router-WAN1, Router-Wan2. - LoadBalance works fine, i can define where HTTPS, SVN, SSH goes. But How configure AltQ with this configuration? bw download/upload from wizzard? 12 + 12 + 4 and 600 + 600 + 4000?. I don't know .. And i think ALTQ from wizzard only works with WAN1??. - Squid not works at the moment with 1.2.2 under Multiwan Setup.. . I find a patch but i think not works with loadbalancing.. It's 1.2.3RC1 supported? I use pfsense on a Office i need to work fine. - I've a VPN with other Router connected to my LAN. My lan works with 192.168.10.x and The router for the VPN uses 192.168.10.120. My traffic need to redirect when goes to 192.168.100.x (the remote LAN over VPN) by 192.168.10.120. How i can redirect it?. I don't want to replace my VPN router for pfsense at the moment. Thanks for all. [Christopher Iarocci] More information, maybe a network diagram and what type of VPN you are even talking about. No one can answer your last question without that info. [Christopher Iarocci] It appears you have 2 gateways. One you want regular traffic to go through, one for the VPN. Is the VPN router connected directly to the internet also? If I am assuming correctly, you want to do this: http://expertanswercenter.techtarget.com/eac/expertAnswer/0,295208,sid63 _gci1082821,00.html A quick search in Google brought that up. YMMV depending on what OS your clients have (the answer was related to Windows), but the concept is the same. Please respond to the list, not to me directly. Others may be able to help also, but can't if you send to only me. I forwarded your last message to the list for continuity. Chris
