Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - jbryant84

Pages: [1]
1
Networking / Re: Separate WAN Subnet for multiple IP addresses.
« on: April 22, 2017, 10:29:46 PM »
Everything works fine. Just trying to consolidate everything onto one pfsense VM.

2
Networking / Separate WAN Subnet for multiple IP addresses.
« on: April 21, 2017, 09:42:56 PM »
I hope I'm welcome here, I found this site from the pfSense group on FB, and thought this would be better posted here rather than in that group. This is more of a general networking question rather than specifically pfSense.

Some ISPs use a wan/lan separate subnet setup for multiple usable IP addresses. So for instance, 71.159.213.195 is the WAN subnet, with 1x usable IP address of 71.159.213.196. The LAN subnet is 71.159.214.150-155. We use pfSense virtualized in ESXi, so we currently use two pfSense installs as follows to accomplish this. We make a WAN NIC and plug it into the ISP's device, and it goes to 1 pfSense install that we've disabled NAT on, so it's a dumb router set up as follows: 71.159.213.195 WAN GW, 71.159.213.196 WAN IP. The "dumb router" pfSense install then has a LAN IP of 71.159.214.150, and that interface is on a vswitch in esxi with a second pfSense install's WAN interface, it does NAT for the rest of our equipment. The vswitch is also on a physical NIC on the host that then goes to a sonicwall, or whatever else needs a static IP not behind nat (or to a real switch, if there are multiple devices needing IPs.) Anything else can plug into that, and 71.159.213.151-155 usable IP addresses with 71.159.213.150 as the gateway. Once configured it all functions fine. My question is, is it possible to do this on a single pfSense install? I have tried to add an OPT1 interface, and everything can connect to the internet, but it's double NAT.

Pages: [1]