5 WANS to a single Lan with some http/https servers on

kejianshi

Nope - I'd reduce their size and save as jpg

monster400

have to do one and one

![Firewall Nat port forward.png](/public/imported_attachments/1/Firewall Nat port forward.png)
![Firewall Nat port forward.png_thumb](/public/imported_attachments/1/Firewall Nat port forward.png_thumb)

monster400

lan

![firewall rules Lan.png](/public/imported_attachments/1/firewall rules Lan.png)
![firewall rules Lan.png_thumb](/public/imported_attachments/1/firewall rules Lan.png_thumb)

monster400

wan

![firewall rules Wan.png](/public/imported_attachments/1/firewall rules Wan.png)
![firewall rules Wan.png_thumb](/public/imported_attachments/1/firewall rules Wan.png_thumb)

monster400

wan2

![firewall rules Wan2.png](/public/imported_attachments/1/firewall rules Wan2.png)
![firewall rules Wan2.png_thumb](/public/imported_attachments/1/firewall rules Wan2.png_thumb)

monster400

wan3

![firewall rules Wan3.png](/public/imported_attachments/1/firewall rules Wan3.png)
![firewall rules Wan3.png_thumb](/public/imported_attachments/1/firewall rules Wan3.png_thumb)

monster400

wan4

![firewall rules Wan4.png](/public/imported_attachments/1/firewall rules Wan4.png)
![firewall rules Wan4.png_thumb](/public/imported_attachments/1/firewall rules Wan4.png_thumb)

monster400

wan5

![firewall rules Wan5.png](/public/imported_attachments/1/firewall rules Wan5.png)
![firewall rules Wan5.png_thumb](/public/imported_attachments/1/firewall rules Wan5.png_thumb)

monster400

firewall vip

![firewall vip.png](/public/imported_attachments/1/firewall vip.png)
![firewall vip.png_thumb](/public/imported_attachments/1/firewall vip.png_thumb)

monster400

gateways

Gateways.png_thumb

monster400

Interfaces assign network ports

![Interfaces Assign network ports.png](/public/imported_attachments/1/Interfaces Assign network ports.png)
![Interfaces Assign network ports.png_thumb](/public/imported_attachments/1/Interfaces Assign network ports.png_thumb)

monster400

nat 1:1

![net 1-1.png](/public/imported_attachments/1/net 1-1.png)
![net 1-1.png_thumb](/public/imported_attachments/1/net 1-1.png_thumb)

monster400

static routes

![Static routes.png](/public/imported_attachments/1/Static routes.png)
![Static routes.png_thumb](/public/imported_attachments/1/Static routes.png_thumb)

kejianshi

Here is the thing.

I don't think you should have 5 WANs.

I think you should have 1 WAN with IP assigned by DHCP, and pfsense should consume at least that 1 IP

Then I think you should create a 1 virtual LAN and all of your VM servers should get an IP on that 1 LAN.

Then I think you should create 4 Virtual IPs to route each of your remaining public IPs to its corresponding private IP assigned to each VM server you are running on your LAN.

monster400

okay you mean one wan in pfsense and make 4 vlans?

monster400

i made this then i set my servers up
pfsense 192.168.1.1
DCServer 1: 192.168.1.4
DCServer 2: 192.168.1.5
Exchange: 192.168.1.13
DHCP/WDS: 192.168.1.12
Feature Server: 192.168.1.14
ADCS/AS: 192.168.1.15
RDS1: 192.168.1.10
RDS2: 192.168.1.11
Sharepoint: 192.168.1.9
VPN/WUS/RAS: 192.168.1.8
SQL Server: 192.168.1.7
Folder Redirection Server: 192.168.1.6
ESXI DELL: 192.168.1.2
ESXI IBM: 192.168.1.3
Router 192.168.1.1
Dell Remote Mangement Controller: 192.168.1.16
Reserveret IP`er

Server Range Range: 192.168.1.2 - 192.168.1.20 NON DHCP> Statisk

Access Point Range: 192.168.1.21 - 192.168.1.30 NON DHCP> Statisk

Andet Udstyr Range 192.168.1.31- 192.168.1.40 NON DHCP> Statisk

User Lease IP 192.168.1.41 - 192.168.1.254 DHCP> Dynamisk IP Mulighed for fast

kejianshi

"okay you mean one wan in pfsense and make 4 vlans?"

Partially. I mean one WAN on pfsense.

Then one LAN on pfsense.

Then attach all of your servers to that LAN interface and have them get static private IPs assigned by you.

Then use 4 virtual IPs to map your public IP to each corresponding server's private IP on the LAN that you assigned staticly or via DHCP then static map.

monster400

okay have to set something up under Firewall: Virtual IP Addresses

can you just download this img and edit with paint and type what i shall type in :D

![virtual ip.png_thumb](/public/imported_attachments/1/virtual ip.png_thumb)
![virtual ip.png](/public/imported_attachments/1/virtual ip.png)

kejianshi

OK - What is the private IP address of the first server you want to work with?

You must have already changed to 1 WAN and 1 LAN for any of this to work.

So, assuming you now have only 1 WAN and 1 LAN and your servers are on that LAN and have IPs, what is the IP of the first server and which public IP do you want to map to it?

monster400

check your pm