1
23.7 Legacy Series / Can't get "default" option working for gateway on firewall rules
« on: January 17, 2024, 10:24:14 pm »
Hi all,
First of all I will start with I'm 99% sure this is a self inflicted issue by me but for love nor money can I find the root cause of what I have done.
For some reason the only way I can get internet traffic to route out of my VLANs to the WAN is by manually setting the WAN gateway on each rule rather than using the default option.
I know it hasn't always been like this since the router did briefly work without this configuration when I was doing the initial setup however I appear to have done something between now and then that has broken something.
The config so far is:
WAN4GW - Set as default upstream with highest priority and weight
WVPN - Used as a gateway for one of the VLANs with an outbound NAT rule to specify that traffic from VLAN75 net goes out via the VPN address
Outbound NAT policy for VLAN15 to allow for UPnP
Hairpin NAT on VLAN35, VLAN10, VLAN15 and WAN to allow for access to two web servers
When I look in gateways I can seet that WAN4GW is up and under routes the destination is set as default next to its IP albeit the VPN is higher in the list
I've tried completely disabling all policies relating to NAT and VPN, removing the VPN entirely, setting the gateway back to default on all routes, rebooting the firewall etc and nothing seems to work.
It's not a super big issue since if I specify the gateway manually on each rule as WANGW4 it does work, I'm just concious that it should work even without this so I'm concerned that I've messed something up further into the router config.
Any help would be appreciated
First of all I will start with I'm 99% sure this is a self inflicted issue by me but for love nor money can I find the root cause of what I have done.
For some reason the only way I can get internet traffic to route out of my VLANs to the WAN is by manually setting the WAN gateway on each rule rather than using the default option.
I know it hasn't always been like this since the router did briefly work without this configuration when I was doing the initial setup however I appear to have done something between now and then that has broken something.
The config so far is:
WAN4GW - Set as default upstream with highest priority and weight
WVPN - Used as a gateway for one of the VLANs with an outbound NAT rule to specify that traffic from VLAN75 net goes out via the VPN address
Outbound NAT policy for VLAN15 to allow for UPnP
Hairpin NAT on VLAN35, VLAN10, VLAN15 and WAN to allow for access to two web servers
When I look in gateways I can seet that WAN4GW is up and under routes the destination is set as default next to its IP albeit the VPN is higher in the list
I've tried completely disabling all policies relating to NAT and VPN, removing the VPN entirely, setting the gateway back to default on all routes, rebooting the firewall etc and nothing seems to work.
It's not a super big issue since if I specify the gateway manually on each rule as WANGW4 it does work, I'm just concious that it should work even without this so I'm concerned that I've messed something up further into the router config.
Any help would be appreciated