[SOLVED] Multi WAN

[wurmloch]

Hi Julien,

I'm not sure that I understood what you described. In the doc is written to monitor an external IP (e.g. the two google dns servers) to see when one of the wan goes down. You are monitoring your gateway? Do you really have two different internet connections?

If I remember well there was a thread concerning multiwan with the same gateway, maybe to search in the forum will help.

At least have a look at my english screen shots in my German Multiwan thread, both gateways are up (green).

[Julien]

Hi Julien,

I'm not sure that I understood what you described. In the doc is written to monitor an external IP (e.g. the two google dns servers) to see when one of the wan goes down. You are monitoring your gateway? Do you really have two different internet connections?

If I remember well there was a thread concerning multiwan with the same gateway, maybe to search in the forum will help.

At least have a look at my english screen shots in my German Multiwan thread, both gateways are up (green).

Thank you for your answer.
i managed to get it configured and working fine.
the issue i had is i've created 3 LANS as group and i have created the DNS forward on the group interfaces however it didnt work.
had to created DNS and apply step 4 on the doc on each interface.
https://docs.opnsense.org/manual/how-tos/multiwan.html

thank you guys for the support

[Julien]

hi guys i am back.
i have a issue, whenever i remove the WAN2, internet remain working which is fine.
when i remove the WAN1 the connection everything goes offlie.

please advise as i am stuck here !

[wurmloch]

Julien,

_please_ give more info. Interfaces, addresses, gateways, firewall rules, failover config...

Usually I find answers in my chrystal ball but it's under repair.

[Julien]

Julien,

_please_ give more info. Interfaces, addresses, gateways, firewall rules, failover config...

Usually I find answers in my chrystal ball but it's under repair.

I like your crystal ball :)
I've configured the Multi WAN exactly as mentioned on the document.
Firewalls rules are exactly
https://docs.opnsense.org/manual/how-tos/multiwan.html
See the below screenshots.
The issue now is when I connect the second WAN2 the connection goes down, I can ping 8.8.8.8 but I can't ping www.google.com
As I believe its DNS issue.
As showed on the screenshot DNS rules is created on the LAN.
I havne't mentioned I am using VLANS. Should I create the same Rules on each VLAN ?
I am stuck here guys thank you










Thank you

[Julien]

Guys ,
any suggestions please ? i can't connect the backup line.

[PotatoCarl]

Hi
did you try to remove the "default gateway" setting on all gateways? I have configured a gateway group and as long as I have one of the WANs as "default gateway" I see the same problem here. However, wenn no gateway is default, it works fine.

I also use in all firewall rules from the LAN as gateway specifically the gateway group. Then you can pull either cable and it works well.

Cheers

[Julien]

Hi
did you try to remove the "default gateway" setting on all gateways? I have configured a gateway group and as long as I have one of the WANs as "default gateway" I see the same problem here. However, wenn no gateway is default, it works fine.

I also use in all firewall rules from the LAN as gateway specifically the gateway group. Then you can pull either cable and it works well.

Cheers

thank you for your answer.
i am not sure i understand what you mean with remove the default gateway.
do you mean go to default gateway and unselect Default Gateway ? if i do so, how does the firewall knows which waWAN is the primairy ? i have WAN1 with 80MB and WAN2 with 40MB.
WAN2 is just backup and dont want the firewall to be using WAN2 as primamy.
thank you

can you please share a screenshot of your Gateway settings ?
and also of your LAN settings. do you mean on the lan rules to specify gateway as the group gateway and not the default ?
below see mine.

[Julien]

Guy's any suggestions please ?
Why it's so difficult on fixing the multi wan ?
Can someone please advise what I am doing wrong ?

[wurmloch]

n/a

[jschellevis]

@Julien

I have looked at your screenshots and I see you have disabled gateway monitoring in one of them, that means it will not monitor the gateway at all... it will always be shown as online. Its important to follow the documentation to the letter otherwise it won't work (https://docs.opnsense.org/manual/how-tos/multiwan.html)

I have created a test setup for you with 1x LAN (191.168.1.1/24) and 2x WAN (dhcp), this configuration is from scratch and exactly as described in the docs and verified to work with the latest release of OPNsense (16.7.3).

Before importing it you can change the em0,em1 and em2 to the correct interface names of hardware network devices if needed.

Hopefully this will help you resolve the issue as Multi-WAN is really easy to setup once you know what to look for.

Best regards,

Jos

[jschellevis]

@wurmloch
It sounds to me you have issues that are not related to multi-wan alone.
Perhaps hardware or driver issues.

If the web interface is not accessible then I would advise to look at the console to see if there are any errors, as without more details it is not possible to determine the cause.

We do have commercial support to help you track down the issue: https://opnsense.org/support-overview/commercial-support/

[wurmloch]

@Jos,

No errors at the console. I just started a fresh install. We'll see if I can do better than the first time.

Wormhole

[Julien]

@Julien

I have looked at your screenshots and I see you have disabled gateway monitoring in one of them, that means it will not monitor the gateway at all... it will always be shown as online. Its important to follow the documentation to the letter otherwise it won't work (https://docs.opnsense.org/manual/how-tos/multiwan.html)

I have created a test setup for you with 1x LAN (191.168.1.1/24) and 2x WAN (dhcp), this configuration is from scratch and exactly as described in the docs and verified to work with the latest release of OPNsense (16.7.3).

Before importing it you can change the em0,em1 and em2 to the correct interface names of hardware network devices if needed.

Hopefully this will help you resolve the issue as Multi-WAN is really easy to setup once you know what to look for.

Best regards,

Jos

Hi Jos,
thank you for your answer.
the disable gateway monitor was selected when i took the screen by mistake.
its unselected right now and i can't get the Multi wan up and running.

i have a pfsense now at the customer running fine with Multi WAN without any issues.
we would like to migrate about 21 pfsense to opnsense but Multi wan is critical for us.
i hope you guys can help me get this fixed.

[jschellevis]

Julien,

Did you try the configuration file I attached to my previous message?
As yesterday I retested the whole thing and it works like a charm.. with the default config I created for you it takes about 20 seconds for the WAN to switch, that can be optimized if you like.

If your ethernet ports are intel with the em driver, then you may have run into a FreeBSD bug.
This can be easily fixed by applying the intel em driver instead:

Code Select Expand

pkg install intel-em-kmod

and

then add the next line to /boot/loader.conf.local

Code Select Expand

if_em_updated_load="YES"

- Jos