Networking / Re: Separate WAN Subnet for multiple IP addresses.
« on: April 22, 2017, 10:29:46 PM »
Everything works fine. Just trying to consolidate everything onto one pfsense VM.

Networking / Separate WAN Subnet for multiple IP addresses.
« on: April 21, 2017, 09:42:56 PM »
I hope I'm welcome here, I found this site from the pfSense group on FB, and thought this would be better posted here rather than in that group. This is more of a general networking question rather than specifically pfSense.

Some ISPs use a wan/lan separate subnet setup for multiple usable IP addresses. So for instance, is the WAN subnet, with 1x usable IP address of The LAN subnet is We use pfSense virtualized in ESXi, so we currently use two pfSense installs as follows to accomplish this. We make a WAN NIC and plug it into the ISP's device, and it goes to 1 pfSense install that we've disabled NAT on, so it's a dumb router set up as follows: WAN GW, WAN IP. The "dumb router" pfSense install then has a LAN IP of, and that interface is on a vswitch in esxi with a second pfSense install's WAN interface, it does NAT for the rest of our equipment. The vswitch is also on a physical NIC on the host that then goes to a sonicwall, or whatever else needs a static IP not behind nat (or to a real switch, if there are multiple devices needing IPs.) Anything else can plug into that, and usable IP addresses with as the gateway. Once configured it all functions fine. My question is, is it possible to do this on a single pfSense install? I have tried to add an OPT1 interface, and everything can connect to the internet, but it's double NAT.

