Scribd
Upload
60 views3 pages

PFsense - Configuring multi-WAN Failover

The document provides instructions for configuring multi-WAN failover on a pfSense system by creating a gateway group with two WAN interfaces prioritized as tier 1 and tier 2, and configuring firewall rules to pass traffic through the failover group so the secondary WAN will be used if the primary goes down.

Uploaded by

ahdeyto
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
60 views3 pages

PFsense - Configuring multi-WAN Failover

The document provides instructions for configuring multi-WAN failover on a pfSense system by creating a gateway group with two WAN interfaces prioritized as tier 1 and tier 2, and configuring firewall rules to pass traffic through the failover group so the secondary WAN will be used if the primary goes down.

Uploaded by

ahdeyto
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 3

Configuring multi-WAN failover

How to configure multi-WAN failover on a single pfSense system.

Getting ready
We will configure failover for our two separate WAN interfaces. Make sure that the WAN interfaces are
first properly configured,

How to do it...
1. Browse to System | Routing.
2. Select the Groups tab.
3. Enter a Group Name.
4. Set the Gateway Priority of our WAN gateway to Tier 1.
5. Set the Gateway Priority of our WAN2 gateway to Tier 2.
6. Leave the Trigger Level set to Member Down.
7. Add a Description:

8. Save the changes.


9. Apply changes.
10. Browse to System | Routing.
11. Edit our WAN gateway.
12. Specify an external IP address that responds to pings in the Monitor IP field. I chose the IP for
google.com in this example.
13. Save the changes.
14. Edit our WAN2 gateway.
15. Specify an external IP address that responds to pings in the Monitor IP field. I chose the IP for
yahoo.com in this example.
16. Save the changes.
17. Apply changes

18. Browse to Firewall | Rules.


19. Click the "plus" button to create a new firewall rule.
20. Select the Pass Action.
21. Ensure the LAN interface is selected.
22. Set the Protocol to any.
23. Set the Source to LAN subnet.
24. Set the Destination to any.
25. Add a Description.
26. In Advanced Features, under Gateway, click the Advanced button to show advanced gateway
features.
27. Set Gateway to FailoverGroup.
28. Save the changes.
29. Apply the changes:
How it works...
All traffic from our LAN will pass through our gateway group. Since our gateway group consists of
two WAN gateways on separate priority levels, our backup gateway (Tier 2) will kick into place when our
primary gateway (Tier 1) goes down.

You might also like