Multi Public ip
-
I have an att fiber line with 5 public ip's.
my pfsense has 1 wan and 1 lan.
i was to do a 1:1 nat 1 public linked to 1 private and yet keep my private ip addresses on my pc'scan i do this.
right now i can pass thru 1 static ip to my pfsense machine and i can use the public and the prirvite... but how would i do it for the other 4 to 4 other pc's -
@drunk_am_i said in Multi Public ip:
I have an att fiber line with 5 public ip's.
Is this a subnet or 5 single IPs?
If they are single IPs routed to your main IP you can simply forward it in the same way, but have to enter the IP manually at destination.
If it is a subnet (what I guess) you have to add them to the WAN interface first in Firewall > Virtual IPs. Select type "IP alias" and WAN and enter the IP with the proper mask.
Then you can use them in NAT rules. -
@viragomann thanks for the reply
i have 5 single ip's xxx.xxx.xxx.113 thru xxx.xxx.xxx.117
currently i have my modem / router from att in pass thru mode.. and then i had to give the pfsense the ip ending in 113 so i can have internet.i mean i can just use port forwarding but that wasnt the point in my getting 5 static ip's
-
@drunk_am_i If you want everything forwarded you can use 1:1 NAT. You can't have the same subnet in use on both the WAN and LAN because pfSense needs to know where to route it.
-
@steveits sorry i am not that good at explaning...
i think i am not saying what i mean..
from my att isp i have xxx.xxx.xxx.113 thru xxx.xxx.xxx.117
i want the pfsense to nat as follows
xxx.xxx.xxx.113 -> 192.168.2.10
xxx.xxx.xxx.114 -> 192.168.2.20
xxx.xxx.xxx.115 -> 192.168.2.30
xxx.xxx.xxx.116 -> 192.168.2.40
xxx.xxx.xxx.117 -> 192.168.2.50as of right now i have my modem in pass thru mode... but i can only see 1 ip address and i have to give that to the pfsense box itself other wise i have no internet
i was told not to even try this with pfsense or get 4 more network cards to do it...
-
@drunk_am_i Add them as virtual IPs, then you can either use NAT port forwards or 1:1 NAT to direct inbound Internet traffic to your private IPs. 1:1 also sets up the outbound NAT as noted on the 1:1 doc page.