BGP and public IP

peco1si · Sep 24, 2008, 1:02 PM

Hi

I have a problem with my bgp. As you see on the picture I have 2 WANs, DMZ and LAN.

If I go out through WAN1 then my public IP is 1.1.1.1, if WAN1 is down then I go through WAN and my public IP is 2.2.2.2. My problem is that I always need to have one public address no matter which WAN I go through.

How can I solve that problem?

Tnx

p.s. I know my english it's not the best but I hope you understand what is my problem

peco1si · Sep 29, 2008, 6:11 AM

Anybody?

GruensFroeschli · Sep 29, 2008, 6:39 AM

Maybe you should reformulate your problem.

What i dont understand: you say "My problem is that I always need to have one public address no matter which WAN I go through."
But that's the base principle of routing isnt it?
–> No problem to solve...

jahonix · Sep 29, 2008, 8:38 AM

I understand it that way that peco1si has a public IP 3.3.3.3 (DMZ) he wants to use no matter which WAN is available.

How is inbound traffic supposed to know which route to take to reach your 3.3.3.3? You would have to update your external DNS to reflect this change.
Do BGP/OSPF/RIP help here? (I guess I still have some reading/homework to do here. Which is which and what does it do…)

jahonix · Sep 30, 2008, 9:31 AM

Well, great, your subject had it already "BGP and public IP".
Guess I better get some sleep…

GruensFroeschli, do you have an idea?

peco1si · Oct 15, 2008, 9:38 AM

ok
I solved problem with nat outbount
Interface Source Source Port Destination Destination Port NAT Address NAT Port Static Port
WAN 192.168.5.0/24 * * * 3.3.3.3 * NO

I create virtual IP 3.3.3.3 as Proxy ARP, and now my problem is that I can't ping this IP from outside. why?

tnx

GruensFroeschli · Oct 15, 2008, 1:13 PM

Because you cannot ping PARP type VIPs.
http://forum.pfsense.org/index.php/topic,7001.0.html

Use CARP instead.

peco1si · Oct 17, 2008, 6:09 AM

great… now works everything ;D

tnx you all