Pfsense without putting modem into bridge mode
-
Hi guys,
I'm new to pfsense and was wondering if i'm able to use pfsense behind my modem without putting it into bridge mode.
I've done a bit of reading and found https://forum.pfsense.org/index.php?topic=55895.0 where a user said to another
You are not running your router in bridge mode so you won't have any difficulty accessing it.
A quick diagram of what I'm hoping to achieve. http://i.imgur.com/ylY1q7D.png
Is this possible or do i need to put existing modem behind pfsense and buy a new one for bridged mode?
-
You can do it. I do it all the time for testing. It generally results in double-NAT and is, in general, undesirable for production purposes.
For instance, port forwards will have to be done both in the modem and in pfSense.
-
Any chance you could link me to some documentation as ive only been finding links to bridged modem doco.
-
Just edit your WAN interface, set it to DHCP, uncheck block private networks and bogons, and plug it into your LAN.
-
Am I able to set it a static IP? Looking at this it seems I could set my modem as the gateway and give my WAN NIC a static IP?
-
Am I able to set it a static IP?
Sure, but to do it properly you need to:
A. Assign a valid static ip address within the ip network of the modem/router LAN interface and make sure that same static ip address is outside of the DHCP pool of dynamic addresses in the modem/router.OR
B. Keep the pfSense WAN interface on DHCP and configure the modem/router DHCP server to reserve the specific ip address to the MAC address of the pfSense WAN interface MAC address.
-
okay, that makes sense.
The only question I have would be that it's expected that the WAN and LAN would be on different subnets right? So if I were to use the DHCP from the modem for the WAN interface could I then setup a DHCP server in pfsense to serve a different subnet for the LAN interface?
-
Yes.
