OPNsense Forum

Archive => 18.7 Legacy Series => Topic started by: naltalef on January 22, 2019, 05:41:12 pm

Title: [SOLVED] MultiWan force gateway down
Post by: naltalef on January 22, 2019, 05:41:12 pm

Hi.
I need to know if it's possible force to down a single gateway used in a group.

I know the option "mark gateway as down" but in my test this only exclude it, from default gateway switching, but not change the pf rules.

Let me explain. I have a group gateway with 2 Tier1 single gateways. Trigger Level: Packet Loss o High Latency

For example a pf rules looks like (pfctl -sr)

pass in quick on igb3 route-to { (igb1 x.x.x.1), (igb0 y.y.y.1) } round-robin inet proto tcp from <proxy> to ! <priv_nets> port = http flags S/SA keep state label "USER_RULE: Acceso HTTP/HTTPS hacia Internet"

If I disable igb1 interface, the rule correctly change to:

pass in quick on igb3 route-to { (igb0 y.y.y.1) } round-robin inet proto tcp from <proxy> to ! <priv_nets> port = http flags S/SA keep state label "USER_RULE: Acceso HTTP/HTTPS hacia Internet"

I would like the same behavior if I mark the gateway asigned to igb1 as down. Is it possible ?

I appreciate your advice

Regards
Norberto

Title: Re: MultiWan force gateway down
Post by: franco on January 22, 2019, 06:05:36 pm

Hi Norberto,

Disable gateway at the top of the settings?


Cheers,
Franco

Title: SOLVED Re: MultiWan force gateway down
Post by: naltalef on January 23, 2019, 04:01:03 am

Hi Franco.

Yes, you're right.

The simplest solution sometimes is not the first to be found!

Many thanks for your help.
Norberto

Title: Re: MultiWan force gateway down
Post by: franco on January 23, 2019, 07:13:07 am

great  :)


Cheers,
Franco