Opnsense web proxy with round robin outgoing IPs

Question

Hi !
I'm using Opnsense on a EC2 box for HTTP Proxy, but I'm definitly not an Opnsense expert.
My current setup is two network interfaces, one WAN (DHCP private ip in public subnet, and an associated EIP called publicIP-1) and one LAN (private ip in private subnet).
I've configure the Web HTTP Proxy to listen on LAN interface and allow traffic in through FW.
Testing the proxy setup from my private network works well, and I can see that my outgoing IP is the publicIP-1.
I've then tried to add another interface WAN2 in the public subnet, associated with another EIP, called publicIP-2, I've setup a Gateway group with WAN and WAN2 and refered it as gatway in the FW rule, but I can't access to internet through the HTTP proxy anymore...
Also when I check the gateways in Opnsense setting, I don't see my public IPs but the default gateway of my public subnet, so I'm a bit confused.

Is there any resources that explain how to setup a mutli outgoing IPs proxy with Opnsense on AWS ?

Thanks a lot for your help and ideas !

Answer

Thanks Gary for your answers.
I understand that adding a second WAN interface might not be the best idea.
What I want to acheive is having a HTTP Proxy with multiple outgoing public IPs, any idea how to acheive that with Opnsense / AWS ?
Thanks !

Answer

Public IPs on EC2's do not appear in the OS. You will never see them, they are NAT'd addresses for your EC2s.
Adding a 2nd Interface most likely will cause routing issues with asymetric paths.

Is there a reason why you would need a 2nd IP? With open sense you would monitor the gateways for availability however in AWS you would have the same default gateway in the WAN group

Answer

Anyone has an idea how to acheive this with or without opnsense ?
Thanks a lot !

Opnsense web proxy with round robin outgoing IPs

Relevanter Inhalt