Trying to setup GRE tunnel between two pfSense boxes (both running 2.0RC1).
FW “A” is a single pfSense box.
FW “B” is a pfSense HA cluster.
No NAT exists between their WAN interfaces; both have public IP addresses.
On “A”:
Interfaces→(assign)→GRE, create GRE tunnel with
Parent: WAN
Remote: B’s WAN VIP
GRE local: 10.0.0.1
GRE remote: 10.0.0.2/24
Interfaces→(assign)→Interface assignments,
Created OPT1 on GRE
Interaces→OPT1
Type: static
MAC/MTU/MSS: blank
IP Address: 10.0.0.1/24
Gateway: none
Private network blocking: both OFF
Firewall→Rules→OPT1
Create new allow-all rule for testing.
On “B”, almost the same thing except the Parent interface is WAN VIP and the
GRE local/remote #s are reverse. OPT1 is configured as 10.0.0.2/24.
With the GRE tunnel created but OPT1 not yet assigned an IP address, netstat(1)
shows a local link route for 10.0.0.1 & 10.0.0.2. After I create OPT1 and
assign it an IP address, the route vanishes!
Am I doing something really obviously wrong here?
(I’m trying to use GRE so I can run a routing protocol; apparently OSPF and
IPSec tunnels don’t really work together in pfSense.)
Thanks,
-Adam Thompson
[email protected]
