BGP - advertise IP block over 2 links
-
Hi everyone,
After our primary (high speed) link failing today for a few hours, which meant no one could access any of our systems, we've decided to set up BGP to allow us to advertise our IP block down a backup (low speed) link as well.
What I am trying to achieve is:
-
We are getting a /24 and our own AS number
-
Usually, I want traffic to come down the high speed link - BGP prepending should help here
-
(Here is the hard part) - I want to NAT that /24 - for example 3.3.3.5 port 80 –> 10.0.0.4 port 80 - I have more hosts than a /24, but most of them (desktops etc) do not need to be internet-accessible
Picture (everything pfSense needs to do inside the big black box):
Any help would be much appreciated
-
-
I have been thinking about this some more, and I think I have to enable a loopback interface in the web GUI, and set up my public /24 as virtual IPs on that interface. From there, I SHOULD be able to NAT without a problem - I think?