Re: [pfSense Support] Multiwan suggestions before v. 2.0 ...

Wed, 10 Jun 2009 08:10:36 -0700 

It sounds like you really need BGP

ie - if you have 2 ISP's
are you using their IP Addressing ? or have you gone to ARIN and grabbed your own assignment ? 


In short - if the ISP supplies the ip addresses then if they are  
offline - (even if its by your unhooking the connection) you cannot  
route an ip range that belongs to 1 provider over another's unless  
they give you the authority via BGP to do so... )


one other note -


I grabbed a support contract from Chris - and gotta tell you - It is  
well worth its weight in Gold!


they can assist you w/ a BGP Setup in a heartbeat should you need it.


Glenn

On Jun 10, 2009, at 10:03 AM, Tebano epaminonda wrote:




> Date: Mon, 1 Jun 2009 23:13:00 -0400
> From: c...@pfsense.org
> To: support@pfsense.com

> Subject: Re: [pfSense Support] Multiwan suggestions before v.  
2.0 ...

>
> On Mon, Jun 1, 2009 at 3:59 AM, Tebano epaminonda
> <l_epa_m_ino...@hotmail.com> wrote:
> > Sorry, Guys.
> > I where discussing of limitation reported into the features of:
> >
> > Inbound Load Balancing
> >
>
> What exactly are you referring to?
>

>  
---------------------------------------------------------------------

> To unsubscribe, e-mail: support-unsubscr...@pfsense.com
> For additional commands, e-mail: support-h...@pfsense.com
>
> Commercial support available - https://portal.pfsense.org
>


Well, to be honest, basically I'm not sure, so I suppose my problem  
comes from this feature.

Here it's.

I've 2 isp with 2 different IP and routers.

So I've configured 2 pfsense in load balance and with carp between  
them (internal and external, so I always has a single IP to manage  
with routes and nats).
All works perfectly, if all ISP are working, or if I detach the WAN2- 
isp connection.



But if I try to detach the first one, no-one is able to connect to  
the external of pfsense;

the same pfsenses aren't able to connect to the internet.


I see (correctly!), into the "load balance" status that only half of  
monitored IP are reachble, but if I try to traceroute them, or  
something else, connection fails.



Like there was a rule that "link" only to default wan the outgoing  
packets, so if it fails, no-one is able to go, on neither of 2  
pfsense!


Has anyone experienced my same trouble?
Thanks to all.
Cheers.
Tebano.

See all the ways you can stay connected to friends and family
























					Reply via email to