Project

General

Profile

Actions

Feature #4458

closed

pfSsense's own outbound requests should use other gateways not just default

Added by Eduard Rozenberg about 9 years ago. Updated about 9 years ago.

Status:
Rejected
Priority:
Normal
Assignee:
-
Category:
Routing
Target version:
-
Start date:
02/22/2015
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:

Description

Hello,

I have multi-wan set up with gateways WAN1 (Default) and WAN2.

If I temporarily take down the WAN1 gateway, the following happens:

1) Accessing the remote package database no longer works -
"Unable to retrieve package info from https://firmware.netgate.com. Cached data will be used."

2) The remote auto-backup feature no longer works:
"[ An error occurred while uploading your pfSense configuration to portal.pfsense.org]"

There may be other pfSense functionality that is also not working when the default
gateway is down - I haven't checked everything.

Feature suggestion:

  • For pfSense functionality that depends on the Internet, pfSense should first
    try to use the default gateway as it does now, but if that gateway does not work
    or is down, it should then try using any other WAN gateways that are up.

Regards,
--Ed

Actions #1

Updated by Eduard Rozenberg about 9 years ago

It appears pfSense email alerts may also be going out over the Default WAN only
(so if Default is down no email alerts?) but I haven't confirmed that yet.

Actions #2

Updated by Chris Buechler about 9 years ago

  • Status changed from New to Rejected

enable the default gateway switching option if you need this behavior.

Actions #3

Updated by Eduard Rozenberg about 9 years ago

Thanks, I wasn't aware of that option!

I searched around and managed to find it in its hiding place (System: Advanced: Miscellaneous -> Load Balancing)

Since I do have a gateway group set up, I find the explanation given there for why this option is not on by default
to be incomplete & not the full picture:

"If the default gateway goes down, switch the default gateway to another available one.
This is not enabled by default, as it's unnecessary in most all scenarios, which instead use gateway groups."

Even when using a gateway group, there is a clear use case of wanting to have pfSense's functionality
(auto backup, packages, etc) continue to work when the default gateway goes down.

Regards,
--Ed

Actions

Also available in: Atom PDF