OPNsense Firewall Multi-WAN Failover and Load Balancing (2024)
Вставка
- Опубліковано 9 лип 2024
- Guide to OPNsense Multi-WAN Failover and Load Balancing. In this detailed tutorial, we dive deep into the advanced setup of OPNsense, a leading open-source firewall and routing platform. Learn how to seamlessly manage multiple internet connections, ensuring uninterrupted internet access with failover capabilities, and optimise your network usage through effective load balancing.
Whether you're a small business looking to maximise uptime, a tech enthusiast eager to enhance your home network, or an IT professional aiming to deploy robust network solutions, this guide has everything you need. We cover step-by-step instructions on configuring WAN interfaces, setting up failover groups, and adjusting load balancing rules for optimal performance and reliability.
Stay ahead of network downtimes and bandwidth bottlenecks. Our expert tips and best practices will help you achieve a more reliable and efficient network setup using OPNsense's powerful features. Don't forget to subscribe for more insightful tutorials on networking and OPNsense configurations. Drop your questions and experiences in the comments below, and let's build a smarter networking community together.
=== SUPPORT OUR CHANNEL ===
Support our channel by joining our UA-cam channel membership to donate a small amount each month. Not only does your support help us continue creating content you love, but as a channel member, you'll also enjoy early access to our videos. While our videos are scheduled for regular days and times, becoming a channel member allows you to watch them as soon as they are uploaded. Your support truly makes all the difference!
Channel Membership:
👍 www.youtube.com/@sheridans/join
Patreon:
💳 go.sheridan.uk/patreon
=== GET IN TOUCH ===
📣 Hire Us: Hire us for a Project
go.sheridan.uk/hire
📣 Forums: Discussion on Videos
go.sheridan.uk/forum
📣 Facebook: Follow Us on Facebook
go.sheridan.uk/fb
📣 LinkedIn: Connect with us on LinkedIn
go.sheridan.uk/linkedin
📣 Twitter: Get in touch on X (Twitter)
go.sheridan.uk/x
📣 Website: Our Website
sheridancomputers.co.uk/
===
=== AFFILIATES & REFERRALS ===
This video is NOT sponsored. Some product links are affiliate links which means if you buy something we'll receive a small commission.
Sheridan Computers Swag Store on Amazon:
go.sheridan.uk/swag
🛍️ Amazon Affiliate Store: Products We Use
go.sheridan.uk/amazon
AUDIO AND VIDEO
🎧 AE Juice: animation tools, plugins and presets
go.sheridan.uk/aejuice
CLOUD HOSTING, SERVERS AND STORAGE
☁️ Digital Ocean: VPS & Storage
go.sheridan.uk/ocean
☁️ HostiFi: Cloud UniFi Controllers
go.sheridan.uk/hostifi
☁️ Vultr: VPS & Storage
go.sheridan.uk/vultr
===
Timestamps:
00:00 - I'm going to teach you WAN failover and load balancing
00:40 - What is WAN Fail Over?
05:09 - opnSense system DNS and gateway settings
06:40 - Testing your WAN interfaces are working
08:25 - Gateway monitoring
11:37 - Defining gateway groups for failover
15:10 - Firewall rules: policy routing & gateways
17:24 - Testing failover
20:27 - Defining gateway groups for load balancing
23:10 - Testing load balancing and sticky addresses
27:34 - Debugging: Configuring NAT rules
28:29 - Configuring packet loss & latency thresholds and gateway weight
31:35 - Additional gateway groups you may want to create
35:18 - Help support the channel
#OPNsense #MultiWAN #Failover #LoadBalancing #Networking #TechTutorial #ITProfessional #HomeNetwork #SmallBusinessIT #OpenSourceFirewall #NetworkOptimisation #LoadBalancing - Наука та технологія
Thanks for this video its a great for my upcoming school project :)
Thanks for the video :)
You're welcome 😊
thank you :))
Thanks for the comment, knowing people are finding this stuff useful is really encouraging 👍
Thank you for this.
Hope it was helpful, thanks for the comment.
Hi.
Educational video but....
Tried this with a 5G/LTE router in bridged mode and then the ip number is locked. It cannot change the ip number when switching without me restarting the router or 5G device. What is this due to?
Thank you for the guide. Question at 27:44, I've got it on Load Balance but on my Outbound NAT settings (on auto) it is only showing the 2 entries for WAN1. WAN2 entries are not there. What setting do you think I am missing. Thanks again.
At 35:07 ( and earlier ), in the heat of the moment you happened to set the rules for PreferWAN2 to use WAN1 . small mistake, but point was made about it being flexible ..
Thank you for pointing that out 👍
Great video, have you covered using the SIM card slot in those fanless firewalls? I’m struggling to find a guide. I understand it is a point to point device but not sure how to activate it. Thanks
I haven't tried to be honest, not even sure if it's detected or has drivers. Will take a look out of curiosity 😉
@@sheridans thanks, I’m unsure if external antennas are needed. I got a free SIM card from O2 along with a free 100mb.
when will you make a PBR on opnsense? policy base routing? separating isp1 = browsing, downloading streaming and isp2 = gaming?
It's not the easiest thing in the world to achieve. It's pretty much covered in the video how you can setup aliases for devices and split traffic based on devices.
If it's from the same devices, it gets awkward, how do you differentiate between the traffic? If it's gaming an you know the ip addresses of the game servers that's easy enough to do.
It would have to be ip/port based. I'll have a think about it.
Please appreciate also run an IT consultancy, and do my best to fit videos in around my clients requirements
@@sheridans yes I think they do that base on port they use to set which isp to use.. Thanks
When i set the gateway group in the firewall rules, it stops working. When i switch back to default group it works again. Did i miss anything?
Having the same issue, did you figure it out?
@@grovolis what I’ve been able to read is that you can just leave it on default and it will work the way it’s intended. Strange though…
@@JoerBrando Hmm okay I see, I'll do some testing with the default on
@@grovolis tell me if you’re able to figure it out
@@JoerBrando I wasn't able to figure it out, it doesn't look like it's working on default though. I've switched to pfSense and I've found that load balancing works as intended.