Netgate SG-1000 microFirewall

Author Topic: pfSense 2.4.2, dual WAN IPv4 and HE IPv6 trouble...  (Read 105 times)

0 Members and 1 Guest are viewing this topic.

Offline pethson

  • Newbie
  • *
  • Posts: 6
  • Karma: +0/-0
    • View Profile
pfSense 2.4.2, dual WAN IPv4 and HE IPv6 trouble...
« on: March 13, 2018, 03:26:01 pm »

I have got some trouble with connectivity to all sites on Internet
My setup

I run   2.4.2-RELEASE-p1 (amd64) with two Ethernet ports on my router connected to my FiberSwitch (same default gateway)
I have a LAGG with 3 ports for my VLANs for LAN, DMZ and so on
My ISP gives me up to 5 IPv4 DHCP addresses, but no IPv6 address
I have a GIF set up for HE IPv6 tunnel

To make a long story as short as possible

At first I hade only one WAN port and HE IPv6 has been working for a year or so. No problem.
Then I needed one more public IP address

I run HA Proxy as a reverse proxy on WAN1 and I would like to use Squid Reverse Proxy on WAN2 to benefit from their reverse proxy for Microsoft Exchange

So I configured one more WAN interface (WAN2)
Easy, but then I started to experience problem to reach different sites, but after some page reload the appeared...
My Plex server was not reachable from the outside...

I restarted my pfSense and then my Gateway through HE was down, I couldn't get to to wake up.
I disabled the WAN2 interface and it woke up
I re-enabled WAN2 and it was still UP, but I couldn't reach longer than the remote end of my tunnel with PING

I did a new reboot, and my HE Gateway was down again.

I've attached the
GIF config
Assignment in two pictures as I also have a bunch of OpenVPN interfaces that I did not attach...
HENETv6 interface config
HENETv6 Gateway config
LAN Firewall Rule for IPv6
HENETv6 Forewall Rules
WAN1 Firewall rule for ICMP Echo Request
Gateway status for HENETv6 Gateway
Gateway Group status for WAN1 and WAN2

My firewall rule for LAN IPv4 traffic I allow all and in advanced settings I have changed the Gateway to my Gateway Groupe

Anyone who have a clue why my HE tunnel don't wake up?
Do you need any more information to be able to assist?

Offline pethson

  • Newbie
  • *
  • Posts: 6
  • Karma: +0/-0
    • View Profile
Re: pfSense 2.4.2, dual WAN IPv4 and HE IPv6 trouble...
« Reply #1 on: March 13, 2018, 03:34:23 pm »
I can add that I use a Windows 2016 IPv6 DHCP server for address leasing
My pfSense is set up for Unmanaged Router Advertisment
And I attach my LAN interface config

Thank in advance for any help