OPNsense Forum

Archive => 19.1 Legacy Series => Topic started by: FraLem on April 11, 2019, 07:57:49 am

Title: MULTIWAN ON Opn 19.1
Post by: FraLem on April 11, 2019, 07:57:49 am

Hi there,

after doing it at least 10 times trying anyting I could think of, I have not manage to set up MULTIWAN as failover.

The configuration simply does not take the gateway group into account.

Attached my very basic configuration following https://wiki.opnsense.org/manual/how-tos/multiwan.html

Any suggestion would be appreciated.

Title: Re: MULTIWAN ON Opn 19.1
Post by: mimugmail on April 11, 2019, 10:38:43 am

What do you expect? The default gateway of the system itself hasn't to do anything with the gateway balancing via Firewall rules, as this would override the default gateway.

Don't forget a DNS exception for LAN clients when quering the firewall as DNS.

Title: Re: MULTIWAN ON Opn 19.1
Post by: gentec-eo on April 11, 2019, 03:20:34 pm

Hi Everyone!

I'm new to OPNSense and followed the same MultiWan Howto (https://wiki.opnsense.org/manual/how-tos/multiwan.html (https://wiki.opnsense.org/manual/how-tos/multiwan.html))

I had some success trying failover  (whatismyip.com gave me the correct GW ip on failover test).

Then, I noticed that for some unknown reasons the Group GW AND Firewall rules seems to have no effects.
Although I disabled everything (rules and all GW) I still have access to Internet as long as I keep this Floating rule (attached as well)

> in first_match  IPv4 * Lan * * * GrpGW

I'm trying to replace TWO old Centos GW/VPN with only one OPNSense and getting this MultiWan up and running is the first step for us.

I searched for a few days trying to get it right ... But Google did not help for now!

Any ideas ?  Or explanations?

Maybe its doing what it is supposed to do, and I just don't get it!


Tks :)

Title: Re: MULTIWAN ON Opn 19.1
Post by: FraLem on April 11, 2019, 04:11:33 pm

Thanks for the reply,
I just expect to keep traffic flowing in case a WAN interface goes down.
I just set a ping going to www.google.com and shut down the WAN1 on the remote test router. Ping stops, no trace of flowing through WAN2 .

Am I missing anyrhing here?

Rgds

Title: Re: MULTIWAN ON Opn 19.1
Post by: gentec-eo on April 11, 2019, 04:28:54 pm

I'm still testing some Firewall rules … But for now my guest is that we have rules problems ! :)

I will update when I succeed!  8)

---------

I moved my Floating rule to the Lan interface, and had some success! :)

Now I will enable more specific rules on each GW interface ...

Title: Re: MULTIWAN ON Opn 19.1
Post by: mimugmail on April 11, 2019, 05:13:12 pm

Quote from: FraLem on April 11, 2019, 04:11:33 pm

Thanks for the reply,
I just expect to keep traffic flowing in case a WAN interface goes down.
I just set a ping going to www.google.com and shut down the WAN1 on the remote test router. Ping stops, no trace of flowing through WAN2 .

Am I missing anyrhing here?

Rgds

If you stop the ping and start a new one it will work. Firewall has the old state active to broken WAN, new ping will work

Title: Re: MULTIWAN ON Opn 19.1
Post by: FraLem on April 11, 2019, 06:39:55 pm

I have tried to start new ping from the Opnsense machine, but unfortunately it doen not forward traffic to WAN_2.

Could it e related to the Outbound NAT rule?

Rgds

Title: Re: MULTIWAN ON Opn 19.1
Post by: FraLem on April 11, 2019, 08:56:35 pm

Finally I got ir working. Launching a new ping as the first one failed brought light to the subject.

Any ideas on how to get into the details of load balancing?

By the way, a big applause for the suggestion.

Thks & Rgds