networking - PFSense: How to configure multiple WANs on one WAN interface with one Uplink -

i'm new pfsense, got requested configure 1 company.

i've got configured, stuck @ how let our wans go through 1 uplink address. hearing, should possible accomplish. i've tried looking on both pfsense guide forums, since can't find related situation mine, hereby ask guys help.

what looks (with example wan ip's):

wan1: 000.000.000.58 internal ip addresses on lan1: 192.168.1.1 - 192.168.1.245 wan2: 000.000.000.61 internal ip addresses on lan2: 192.168.2.1 - 192.168.2.245 wan3: 000.000.000.59 internal ip addresses on lan3: 192.168.3.1 - 192.168.3.245

the way have set follows:

-first configured interfaces, whereas have 3 wan interfaces static ipv4 addresses configured. example: wan1 interace has static ip of 000.000.000.59 , ipv4 upstream gateway: 000.000.000.57 (which broadcast address wans).

the problems start right here, because can't add address anymore interfaces, because "it exists", isn't selectable drop-down menu. 1 of reasons why want 1 wan interface handle 3 of our wan addresses 1 uplink address.

so question in short: there way have 1 uplink/upstream address wans. , if so, there way have 1 wan interface , 3 lan interfaces in following way:

wan interface must have uplink/upstream gateway of: 000.000.000.57 following wan addresses: 000.000.000.58, 000.000.000.59 , 000.000.000.61 whereas

wan1: 000.000.000.58 = lan1 interface w/ internal range of: 192.168.1.1 - 192.168.1.245 wan2: 000.000.000.61 = lan2 interface w/ internal range of: 192.168.2.1 - 192.168.2.245 wan3: 000.000.000.59 = lan3 interface w/ internal range of: 192.168.3.1 - 192.168.3.245

wan interface not going dhcp function, because needs 3 of wan addresses. lan interfaces going dhcp function ranges listed above.

in other words

• all traffic 192.168.1.x range must go through wan interface 000.000.000.58 , through uplink of: 000.000.000.57
• all traffic 192.168.2.x range must go through wan interface 000.000.000.61 , through uplink of: 000.000.000.57
• all traffic 192.168.3.x range must go through wan interface 000.000.000.59 , through uplink of: 000.000.000.57

can done, yes or no?

if need more information, feel free ask , i'll happily elaborate.

thank in advance!

grtz,

jeff

---

edit:

rephrase: want have 1 wan interface carry on 3 wan ip adresses

(in total 4, since interface needs 1 well). wan ip subnet: 255.255.255.248 wan interface static ip: xxx.xxx.xxx.62/29 wan distributed ip1: xxx.xxx.xxx.58 need connected lan

interface 1, should have dhcp on range of 192.168.1.10 192.168.1.245 wan distributed ip2: xxx.xxx.xxx.59 need connected lan

interface 2, should have dhcp on range of 192.168.2.10 192.168.2.245 wan distributed ip3: xxx.xxx.xxx.60 need connected lan

interface 3, should have dhcp on range of 192.168.3.10 192.168.3.245

what i've done far:

i've configured wan interface follows:

static ipv4 ipv4 address: xxx.xxx.xxx.62 ipv4 upstream gateway: xxx.xxx.xxx.57 ipv6 none.

---

i've configured lan interfaces follows:

static ipv4 ipv4 address: 192.168.1.1* ipv4 upstream gateway: none

*for lan2 i've used 192.168.2.1 , lan3 i've used 192.168.3.1

---

services>dhcp server

wan interface: disabled

lan interfaces: enabled, filled in ranges accordingly (i.e. lan1

192.168.1.10>192.168.1.245, lan2 192.168.2.10>192.168.2.245, lan3

192.168.3.10>192.168.3.245).

---

made 3 virtual ip's:

type: proxy arp interface: wan ip address(es): type: single address: xxx.xxx.xxx.58

type: proxy arp interface: wan ip address(es): type: single address: xxx.xxx.xxx.59

type: proxy arp interface: wan ip address(es): type: single address: xxx.xxx.xxx.60/29

---

last not least, configured outbound nat follows:

interface: wan proto: source: type: network address: 192.168.1.0/24 destination: translation: xxx.xxx.xxx.58/29

interface: wan proto: source: type: network address: 192.168.2.0/24 destination: translation: xxx.xxx.xxx.59/29

interface: wan proto: source: type: network address: 192.168.3.0/24 destination: translation: xxx.xxx.xxx.60/29

i know i've either done wrong or i've forgotten something, because what's happening can ping every address lan1 interface (which has 192.168.1.1 range) not other lan interfaces.

example: lan1 interface can ping following addresses:

xxx.xxx.xxx.62 192.168.1.1 192.168.2.1 192.168.3.1

another thing happening can use 3 gateways on lan1 interface webconfigurator (so instead of being able connect via 192.1368.1.1, can connect using 192.168.2.1 , 192.168.3.1).

now, when switch interface lan2 or lan3, not able ping ip adres, not "gateway" addresses , can't log webconfigurator.

example:

from lan2 interface (with range 192.168.2.10>192.168.2.245) can't ping following addresses:

xxx.xxx.xxx.62 192.168.1.1 192.168.2.1 192.168.3.1

also, can log webconfigurator via 192.168.2.1, not via 1.1 or

3.1, want.

it seems me kinda works, on first lan interface, since that's interface can ping every ip. seems off though first lan1 interface (192.168.1.1 range) can use 192.168.1.1, 192.168.2.1 , 192.168.3.1 log webconfigurator, if ip's connected interface somehow.

can please explain i'm doing wrong here?

thanks :)

on wan interface, add 1 ip. go firewall > virtual ip's , add others interface.

your gateway should listen on 4 ips addresses on 1 interface

do same lan ip's on lan interface

and fun... have create many rules ensure traffic goes needs , nat's out right ip address (if thats concern). can tricky webui can helpful. recommend use firewall > aliases can tie multi ports, ip's, urls etc 1 string'd alias , apply may not able use multiple items.