Can't add additional subnet to LAN - 2.3.3-RELEASE-p1 (amd64)

pgk

Latest version running –
2.3.3-RELEASE-p1 (amd64)
built on Thu Mar 09 07:17:41 CST 2017
FreeBSD 10.3-RELEASE-p17

Needed to add a second subnet to the LAN - I have done this before - so: Firewall > Virtual IPs > Add

Type - IP Alias
Interface - LAN
"Address Type" defaults to "Single address" - and cannot be changed to a network type address!

Actually changing the "Type" option to anything will not open up this field.

...so - is it broke?

pgk

![IP Alias Fail.jpg](/public/imported_attachments/1/IP Alias Fail.jpg)
![IP Alias Fail.jpg_thumb](/public/imported_attachments/1/IP Alias Fail.jpg_thumb)

Derelict

You should not be seeing the grayed out netmask. Try hard reloading especially if you tracked dev releases in the past.

Welcome to the forum.

But, in general, IP Alias VIPs are single, not subnet. but the netmask can matter there.

https://doc.pfsense.org/index.php/What_are_Virtual_IP_Addresses

![Screen Shot 2017-03-15 at 12.46.27 AM.png](/public/imported_attachments/1/Screen Shot 2017-03-15 at 12.46.27 AM.png)
![Screen Shot 2017-03-15 at 12.46.27 AM.png_thumb](/public/imported_attachments/1/Screen Shot 2017-03-15 at 12.46.27 AM.png_thumb)

kpa

On FreeBSD 10 and later the netmask on an alias does not matter anymore. This will work fine now but previously required a /32 mask on the second and subsequent addresses of a range (2nd and 4th addresses below).


# ifconfig em0 inet 192.168.0.100/24
# ifconfig em0 inet 192.168.0.200/24 alias
# ifconfig em0 inet 172.16.31.100/24 alias
# ifconfig em0 inet 172.16.31.200/24 alias

johnpoz

"Needed to add a second subnet to the LAN"

As a vlan?? Or you wanting to run multiple layer 3 on the same layer 2?? If so that is BORKED - rethink what your doing. And when you come up with vlans as your answer to running multiple networks on the same physical interface you have gotten to the correct answer ;)