next »

[killah]

Hello,

I have two WAN connections with Load Balancing. First WAN is with dynamic IP let's call it WAN1 and second WAN with static IP WAN2 (on OPT interface). I would like to connect to SSH or webGUI through WAN1 and WAN2. Now I'm able to do it only through WAN1. Is it possible to do it also with WAN2?

Also there is a problem with pinging WAN2 from the Internet. It has some TTL issuies. How can I fix it?

Chris

[GruensFroeschli]

Did you create rules on the WAN2 that allow access to the pfSense WAN2 IP?

What exactly do you mean you have TTL issues?

[killah]

Did you create rules on the WAN2 that allow access to the pfSense WAN2 IP?

Yes, I added rules for WAN2 on port 80 to access webGUI and 22 to access SSH.

What exactly do you mean you have TTL issues?

I get this, when I try to ping OPT interface from the Internet:

From xx.xx.xx.xx icmp_seq=1 Time to live exceeded
From xx.xx.xx.xx icmp_seq=2 Time to live exceeded
From xx.xx.xx.xx icmp_seq=3 Time to live exceeded
From xx.xx.xx.xx icmp_seq=4 Time to live exceeded
From xx.xx.xx.xx icmp_seq=5 Time to live exceeded

--- xx.xx.xx.xx ping statistics ---
5 packets transmitted, 0 received, +5 errors, 100% packet loss, time 5000ms

[GruensFroeschli]

To ping an interface you need a rule that allows ICMP too.

Your ping result seems strange.
How exactly do you test "from the internet"?
A computer directly connected to the same switch as your WAN2?

[killah]

Your ping result seems strange.
How exactly do you test "from the internet"?

By "from the Internet" I mean pinging My router from other network (outside My network).

I figured it out... On Load Balancer pools I have gateways defined as WAN_only and WAN2_only. All rules on WAN2 were going in/out by WAN2_only as gateway. I changed it to * and everyting works just fine - ping, SSH and webGUI.

Thanks for adivces.