Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
General Discussion
»
Dual WAN Setup
« previous
next »
Print
Pages: [
1
]
Author
Topic: Dual WAN Setup (Read 955 times)
rowdyrau
Newbie
Posts: 3
Karma: 0
Dual WAN Setup
«
on:
June 06, 2022, 04:39:05 am »
Hey all!
I followed the guide to do a failover and load balanced multi-wan but it is 'breaking' alot of my firewall rules.
I have a hunch that it is because both WANs are using CG-NAT and thus I have a private IP assigned to each gateway. One is in 192.168.1.0/24 and the other is 192.168.10.0/24.
I have rules setup for my most VLANs to disallow rfc1918 (other that explicitly allowed destinations or ports) and to NAT back DNS to the firewall.
When I use one WAN everything works fine, but when I assign the gateway group to the VLANs they ignore all the other FW rules. Existing states still work so I know the routing is working to get internet.
Most of my VLANs have the following rules setup
Allow to this firewall for DNS/NTP/DHCP
Deny all RFC1918
Allow all
Does anyone have a setup like this and know how to setup FW rules and NAT to work correctly with the private IP interfaces?
Thanks!
Logged
rowdyrau
Newbie
Posts: 3
Karma: 0
Re: Dual WAN Setup
«
Reply #1 on:
June 06, 2022, 05:08:08 am »
Testing a bit more and it seems like I kind of have it worked out, but the clients keep getting a dhcp response, connect, then disconnect.
The dhcp servers on the WAN side be conflicting with mine or something?
Logged
spyware-avoidance
Newbie
Posts: 8
Karma: 1
Re: Dual WAN Setup
«
Reply #2 on:
June 07, 2022, 12:16:00 am »
Do the IP blocks on the WAN side overlap with any IPs on the LAN side? if they do then you do have an IP conflict, if not, then probably you should not have any IP conflicts.
I'm going to go through the same thing in a day or so... I have always had a public IP on my WAN, but I'm going to get a second line from another ISP installed, so maybe I'll be struggling the same thing (if their documentation is complete at least).
If you notice anything or find anything with this setup, please share.
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
General Discussion
»
Dual WAN Setup