Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    /24 from Cogent

    Scheduled Pinned Locked Moved Routing and Multi WAN
    6 Posts 3 Posters 1.0k Views 3 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • U Offline
      unsichtbarre
      last edited by

      I am expanding my "public" IP pool from /29 to /24. The ISP has given me the following information:

      IPv4
Connected Add. Block	 Router port IP/Gateway Customer Router Port IP	Assigned IP Block 
38.88.88.88/29 	         38.88.88.89 	        38.88.88.90 	        38.94.61.0/24   
Subnet Mask	         Subnet Mask (Connected)	 	 
255.255.255.0 	         255.255.255.248

      I would like to build multiple pfSense installations within the "assigned" /24. The question is how?
      Since the ISP gateway is outside the assigned /24:

      Do I build a central pfSense with a WAN IP of 38.88.88.90 (GW: 38.88.88.89) and then a LAN of 38.94.61.0/24 - then individual pfSense deployments within the assigned /24?
      -OR-
      Can I simply build individual pfSense instances with a WAN IP in the /24 and use the ISP Router port/Gateway?

      THX in advance!
      -J

      V johnpozJ 2 Replies Last reply Reply Quote 0
      • V Offline
        viragomann @unsichtbarre
        last edited by

        @unsichtbarre said in /24 from Cogent:

        would like to build multiple pfSense installations within the "assigned" /24.

        So you want to use individual subnets out of the /24 on different pfSense installations?

        I guess, the /24 network is routed to 38.88.88.90. So you need this IP on a front router. Behind you can either NAT the subnet to private LANs or use it inside your network directly.

        U 1 Reply Last reply Reply Quote 1
        • U Offline
          unsichtbarre @viragomann
          last edited by

          @viragomann THX, yes, I would like to subnet the /24 with individual pfSense installations.

          So your recommendation is to use a front router, for example a single pfSense, WAN IP and GW on the /29, and then LAN is .1 of the /24. Then build individual pfSense on subnets of the /24?

          -JB

          1 Reply Last reply Reply Quote 0
          • johnpozJ Offline
            johnpoz LAYER 8 Global Moderator @unsichtbarre
            last edited by johnpoz

            @unsichtbarre said in /24 from Cogent:

            I would like to build multiple pfSense installations within the "assigned" /24. The question is how?

            My question would be why? why do you need multiple pfsense all using a sub of this /24? Why does 1 not work? Or a HA pair?

            You can sub that /24 down into many networks - but why would you need more pfsense?

            An intelligent man is sometimes forced to be drunk to spend time with his fools
            If you get confused: Listen to the Music Play
            Please don't Chat/PM me for help, unless mod related
            SG-4860 25.07 | Lab VMs 2.8, 25.07

            U 1 Reply Last reply Reply Quote 0
            • U Offline
              unsichtbarre @johnpoz
              last edited by

              @johnpoz because I would like to allow individual users to manage their own firewall rules.

              A pseudo "cloud" deployment. Therefore, I'm wondering if PFS can be used as a front end router?

              THX,
              J

              johnpozJ 1 Reply Last reply Reply Quote 0
              • johnpozJ Offline
                johnpoz LAYER 8 Global Moderator @unsichtbarre
                last edited by

                @unsichtbarre said in /24 from Cogent:

                I'm wondering if PFS can be used as a front end router?

                Yeah sure that is not a problem..

                An intelligent man is sometimes forced to be drunk to spend time with his fools
                If you get confused: Listen to the Music Play
                Please don't Chat/PM me for help, unless mod related
                SG-4860 25.07 | Lab VMs 2.8, 25.07

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.