Configuration for Non-NAT ADSL with Subnet

stephenw10

Who is your ISP? Which product are they providing?

I have seen similar setups from BT Business DSL but using a dynamic IP on the WAN. Easy to work with if you use the supplied 'Business Hub' but required some trial and error to get going with pfSense if I recall correctly.

Steve

neik

This one is Zen Active. It doesn't present a problem with £50 off the shelf routers: they handle the "unnumbered" part just fine. The use only one IP up that way.

stephenw10

So reading through, for example, this: http://support.zen.co.uk/kb/Knowledgebase/Broadband-Technicolor-TG-582-Routed-IP-Setup
It looks like you use one IP for the WAN address and all the other are available for LAN side client? There is no requirement to use one address on the LAN interface. Is that correct?

Steve

neik

That's basically right. But obviously the hosts need an IP to reach the router on. Are you thinking of bridging the interfaces?

stephenw10

I'm just trying to understand how Zen are doing it without using up any of your allocated addresses. What do you mean by 'unnumbered'? No IP? How is anything supposed to talk to it in that case?

Steve

stephenw10

This seems more like what I'd expect: http://support.zen.co.uk/kb/Knowledgebase/Netgear-DG-834-Series-Routed-IP
The WAN address is dynamic which allows the /29 to be assigned to the LAN.

Steve

neik

@stephenw10:

This seems more like what I'd expect: http://support.zen.co.uk/kb/Knowledgebase/Netgear-DG-834-Series-Routed-IP
The WAN address is dynamic which allows the /29 to be assigned to the LAN.

Steve

Yes, but the IP you actually receive is the last one in the /29 subnet.

The WAN link doesn't need an IP as it is Point-to-Point.

The DG834 copes with this just fine. pFsense doesn't sadly.

stephenw10

Hmm, this is interesting. So the DG834 receives an IP on it's WAN or not? Even though it's set to.
What does pfSense receive on it's WAN in that setup?

It wouldn't surprise me to find that this is one of those times when FreeBSD stick strictly to the rules while Linux bends them slightly to accommodate this situation.

Steve

stephenw10

Some hours later and I see exactly what you mean by unnumbered. (Thanks Dave on the off-chance you ever read this!)
At least one other user seems to have achieved this by bridging the WAN and LAN but it was a much older version of pfSense. Also it looks like a bit of a workaround. Did you try what Chris suggested earlier?

https://forum.pfsense.org/index.php?topic=8990.msg50841#msg50841

Steve

cmb

@neik:

So if I am assigned 1.2.3.0/29 I would have the WAN as 1.2.3.6/32 and the LAN as 1.2.3.5/29, with the hosts on 1.2.3.1-1.2.3.4?

That does mean that the WAN is in the LAN subnet, even though it is a /32.

It's not equal though, with the WAN being only /32, it should be fine.

@neik:

Here in the UK we always, in my experience, just get a /29 or /28 block with one address in that block set automatically by the PPPoE connection. What would be "usual"?

The typical scenario with business class DSL in the US and most other places seems to be getting an IP assigned via PPPoE, and having the static subnet routed to that dynamically-assigned PPPoE IP. Sometimes, like with my AT&T Uverse at home, the modem must do the PPPoE and then my static /29 can either be assigned LAN-side of the modem, or routed to something with a private IP on the LAN.

It'd be nice to have unnumbered support at some point, not sure offhand if that's possible in mpd and FreeBSD.