Setup for dual WAN connection
Setup for dual WAN connection
I recently secured a 1000mbps plan from another ISP B on top of my existing 100mbps plan from ISP A. These two connections will overlap for at least a year. I’m using an AC68U with a mini PC featuring a 2Gb port and a 1037U CPU. Currently, the 1000mbps connection uses the provided 4Gb port modem, then passes through my AC68U. The 1000mbps plan doesn’t require an internal modem. How can I make both connections work together? I’ve seen suggestions for devices like the Draxy 2925 or 2952, or a mini PC with a D525 CPU. What setup would be best? The 2Gb port mini PC was originally intended as a firewall using pfSense to block unwanted traffic. I have many IPs and mobile devices that struggle with ads, but this is the solution I’m told will work. Also, it should handle ads from Chinese sites more effectively. However, I haven’t set it up yet.
pfSense supports dual WAN with three ports: WAN #1, WAN #2, LAN #1. You can balance traffic between incoming and outgoing connections. I have two WAN links—one handles downloads and high-bandwidth apps while the other offers low latency for gaming or VoIP.
According to @Falconevo, PFsense is capable of handling this. Ubqitui edge routers seem able to do it as well. My Synology RT2600AC can too, but it consumes a lot of LAN port capacity. The main point is to verify the router supports Gigabit speeds. Some devices may have the network interface, yet lack sufficient processing power.
No, the d525 CPU likely lacks the necessary power for dual-WAN setups.
Handles dual WAN connections, though achieving full 1G line speed can be challenging with many firewall rules or active packages in pfSense. A quad-core processor with four physical cores works best. Give it a shot and see how it performs—D525 isn’t extremely powerful, but it might suffice. You can launch pfSense from a USB drive to avoid data loss during installation.
It seems simpler to use, though that depends on individual taste. The Draytek likely won't achieve 1G WAN performance while supporting dual WAN at once. It would require significant processing power, and the D525 could handle it if it includes Intel network controllers on the mainboard—though this is uncertain without testing. Most 1G+ setups don’t rely on low-power components.
I agree with @Falconevo. The PFsenes System requirements indicate you'll need stronger hardware for quicker performance. This is likely true for any networking device, particularly when running additional services on the router—especially with dual WAN connections. Just like today's consumer routers often come with dual or quad-core processors, this isn't just marketing; users clearly expect more from their networking gear.
I got the 2952, but the CPU seems underpowered for an enterprise setup. I can still secure the D525 or the 4 Gb Intel 82583.
Sorry to inform you, but the Draytek 2952 doesn't qualify as enterprise class. It falls under the small business category with a 2-core, 4-thread processor. For genuine 1G WAN to LAN performance with live packet analysis and advanced DualWAN policies, more robust hardware is required. Even the D525 may fall short without direct testing. You might want to verify the specifications again—it supports up to 500Mbit/s for WAN to LAN and is classified as SME (Small/Medium Enterprise), which generally covers business needs. Enterprise-grade firewalls and routing devices are typically RJ45-only, while management connections usually use 10G+ SFP+ or 40G QSFP+ interfaces.