one ISP 2 IP
-
@stephenw10 Ah, firewall - VIP. Did search with closed eyes)))
-
@stephenw10 This VIP should work like normal WAN IP. I mean regarding provider speed , latency and etc? Can pfBlockerNG filtering VIP? Can use pfSesne OpenVPN client on him? Like me understood IP Alias use all benefits as normal NAT.
-
Yes you can run services on it directly. You can add NAT rules to or from it for services or internal subnets.
Your ISP has to provide the IP(s) though of course.
-
@stephenw10 So, lets say will have 2 WAN IP and 3 additional NIC's. Can I use ona LAN for one WAN IP and the rest 2 for other WAN IP only? or can use on one LAN this 2 WAN IP for different types of traffic?
-
@stephenw10 said in one ISP 2 IP:
Your ISP has to provide the IP(s) though of course
What are do you mean?
-
You can use the WAN IPs for whatever traffic you can match with outbound NAT rules. So that might be all traffic from an internal subnet. Or it could just be a single internal host.
Most ISPs will only provide you a single public IP unless you pay them to provide additional IPs. Actually using them does depend on how they provide it to you.
-
@stephenw10 said in one ISP 2 IP:
Most ISPs will only provide you a single public IP unless you pay them to provide additional IPs
My ISP (Rogers) provides two. There are two Ethernet ports on the back of the modem and they have different addresses. I don't pay extra for it. I used to use the 2nd for testing, until a pfSense update broke that. There's a thread about that here somewhere.
-
@JKnott The same)))
My ISP provides also two IP. I still thinking, request or not second IP, because they will make second line in this case to my apartments and no any ideas for this moment how better to use this second IP or have benefits)))Speed will the same 1gb up/down. Could somebody provide some tips, how can use and for what second free IP?Subnet should be the same as my first IP, like me understanding better to use second pfSense interface as additional WAN, but it mean minus interface for my local subnets))) Still in doubt -
Is it a static IP? Second dhcp lease?
-
@stephenw10 Both have static IP. But for this moment use over DCHP on WAN. Is any benefits to set my first IP as static, because use DCHP lease on mY local subnets?
-
@stephenw10 said in one ISP 2 IP:
NETGATE
ADMINISTRATOR
5 minutes agoIs it a static IP? Second dhcp lease?
Mine are DHCP. For some reason, the MTU is smaller on the 2nd.
-
No there's no benefit and in fact there's a good chance your ISP still requires you to pull a lease even if it passes you the same IP every time.
If both IPs really are fixed then you should be able to just add the second IP as an IPAlias VIP on WAN and use it however you want.
-
@JKnott Can you set as static?and check MTU
pfSense plus 24.11 on Topton mini PC
CPU: Intel N100
NIC: Intel i-226v 4 pcs
RAM : 16 GB DDR5
Disk: 128 GB NVMe
Brgds, Archi -
@stephenw10 said in one ISP 2 IP:
If both IPs really are fixed
Is it possible to check this on my side, without calling to ISP? Because I use as static and over DCHP and did not found any difference)))
-
@stephenw10 said in one ISP 2 IP:
even if it passes you the same IP every time
20 YEARS , have the same IP))
-
Ha, well that's a long lease! The fact that it can use dhcp though implies the ISP could change it. They probably just default to the same IP unless there's a reason to change.
Are you spoofing the MAC address to keep that for 20yrs?
-
@stephenw10 No, MAC address original from pfSense, when lets say me replacing my router to new one, my ISP automatically assign this new MAC to my IP that all)))Just appear web page from ISP , please wait a 3 mins and bingo)))
-
Mmm, well somehow assigned to your connection then. Potentially you might be able to use a static IP. The ISP would know but most ISPs are difficult to information from.
-
@stephenw10 Idk, how they make this, appear a web page from my ISP, when I try to browsing, on this page should put my agreement number from my ISP and wait a few time , that all)))So , looks like it is full static ? Is it correct?
-
@stephenw10 Also have a question, if set as static IP better set MTU and MSS manually on WAN and LAN in this case?
