Netgate SG-1000 microFirewall

Author Topic: Multi-WAN and Multi-LAN Outbound NAT  (Read 76 times)

0 Members and 1 Guest are viewing this topic.

Offline SqueezedJuice

  • Newbie
  • *
  • Posts: 2
  • Karma: +0/-0
    • View Profile
Multi-WAN and Multi-LAN Outbound NAT
« on: December 05, 2017, 11:11:16 am »
Interfaces:


Here's how I want it NATed:

LAN200 (10.0.1.0/24) ---> NAT ---> WAN200 (Internet)
LAN201 (10.0.2.0/24) ---> NAT ---> WAN201 (Internet)


NAT Rules:


LAN200 can get out to the internet
LAN201 cannot get out to the internet

Any ideas?

Offline bl0bby

  • Newbie
  • *
  • Posts: 5
  • Karma: +0/-0
    • View Profile
Re: Multi-WAN and Multi-LAN Outbound NAT
« Reply #1 on: December 05, 2017, 03:25:00 pm »
I'm a noob, so take with a grain of salt, but check under Firewall / Rules / LAN and make sure that your second LAN has a rule similar to the "Default allow LAN to any rule" maybe?

Offline rudger_wolvram

  • Jr. Member
  • **
  • Posts: 26
  • Karma: +2/-0
    • View Profile
Re: Multi-WAN and Multi-LAN Outbound NAT
« Reply #2 on: December 07, 2017, 12:51:43 am »
Not only what bl0bby said, but also, you may want to look into gateway groups. I have two ISP's running into my house (two xbox's, bad game developers, can go on for hours) and I set up my gateways such that they fail over to each other depending on who is up. If both are up, route XBox 2 out ATT, everyone else plus Xbox 1 goes out COX.

But the moral is, making sure the LANs rules are correct in allowing out plus routing out the right gateway.
You've probably already read through this, but, this is the doc I used to work out setting up multi-wan. https://doc.pfsense.org/index.php/Multi-WAN