Skip to content

PFSENSE 2.2 - Dual Wan

Advanced feature discussion, beta programs and unsupported "Labs" features.
6 posts Page 1 of 1
Post a reply

PFSENSE 2.2 - Dual Wan

by Jenrick » Mon Feb 23, 2015 8:27 pm
I'm curious if there are any others here that have a dual wan with pfsense + VPN and if this was even possible.

I'm stuck at 6megs with sonic.net, so I am hoping to route most of the outbound traffic through sonic on the other link.
by dane » Mon Feb 23, 2015 9:40 pm
Are you on Fusion, or the older DSL product?

If the former, Fusion X2 is now available, offering bonding for double the speed. Ring support for details.

If the latter, our new IP Internet product utilizing AT&T's new Fiber-to-the-node architecture is coming soon, and it may also offer an upgrade path for you.
Dane Jasper
Sonic
by Jenrick » Thu Feb 26, 2015 1:58 pm
I am indeed on fusion, but even with fusion x2 I would only see about 12m/14m max because of technical issues, unless sonic uses uverse in my neighborhood. (I'm in sunset but I'm not in any of the zones for the fiber pilot).

Reasoning why I keep Sonic even with a secondary link is to simply support them, and maybe they will offer comparable speeds in the future.
by Jenrick » Thu Feb 26, 2015 3:16 pm
I just reread what Dane wrote, must be too eager for Friday.

But to clarify ~

I skipped on the bonded fusion since max I could see was 12/14m.
But in reading the new roll outs coming up, I'm excited if x2 over att fttn comes into my area.

Best.
by bmah » Fri Feb 27, 2015 2:49 pm
Jenrick wrote:I'm curious if there are any others here that have a dual wan with pfsense + VPN and if this was even possible.
I'm sort of close...I have pfSense 2.1.5 with a dual WAN in a failover configuration (primary connection is via Comcast, secondary connection is sonic.net Fusion around 2Mbps). There's some tuning that I need to do to make this really work (the failover part works pretty well at least for IPv4, going back to the primary requires some manual intervention, and I haven't figured out how to make IPv6 do the right thing).

It sounds like you want to be able to use two connections at the same time though?

Bruce.
by Guest » Mon Mar 23, 2015 12:17 pm
I have a dual wan setup using Sonic.net and pfSense 2.2 and have used the Sonic.net VPN service but don't route all the traffic through the VPN. I'm guessing you want to setup pfSense to route all the traffic headed towards the non-Sonic ISP to Sonic.net's VPN?

There's no reason why that wouldn't work, pfSense is very flexible in allowing you to setup traffic to travel through a VPN.

Would be interesting to hear if it works out for you, the dual wan setup I have setup at home is very effective. I have a 'round robin' type of setup which allows every 6th new connection to be routed through Sonic (as my Sonic connection carries a lot less than the other guy/dude/devil/'ISP'.).

As far as I understand a setup such as the one you are proposing will have you setting up the non-sonic gateway to use the Sonic.net VPN and do something very similar to what I've done using pfSense's 'gateway groups' and potentially 'weights'. You'd use the weights if the non-Sonic ISP's bandwidth is significantly different than the bandwidth offered through Sonic.net. Also is nice to setup some rules routing certain some traffic to one connection or another based on ports for instance. Setting up rules based on ports like that allows me to saturate both connections using multiple Usenet accounts that have servers on weird/unique ports. Manage to snag about 140 Mbps consistently(~120 from other guy and 20 from sonic) which seems to be reflected in speed tests (which I assume use multiple http connections). Remember though that if your only doing something like downloading a single file (that isn't broken into a bunch of chunks ala usenet) that you'll not be able to utilize both connections for that file download simulatenously.

In short, I'm not much help and I'd be quite suprised if pfSense couldn't do such things. First step might be to get pfSense to route traffic to Sonic.net's VPN and then tack on the dual wan stuff afterwards( since it is a great deal simpler). Also I'm guessing there's someone with experience setting up pfSense to use Sonic.net's VPN service here on the forums (though they may have not one it with a dual wan setup). If you need any help with the dual wan part of the equation I might be able to help, I basically followed the excellent pfSense documentation about dual/multi wans here : https://doc.pfsense.org/index.php/Multi-WAN There are a lot more articlese scattered around if yous earch for 'dual wan pfsense'.

http://www.speedtest.net/result/4235894635.png
6 posts Page 1 of 1

Return to “Labs”