Unable to set new ISP point to point IP addresses (/30) to WAN interfaces
-
Dear Users,
in order to establish a redundant connection to the ISP AS, my ISP provides 2 new point-to-point IP addresses
x.x.x.1/30
x.x.x.2/30and a public subnet y.y.y.0/25.
I just tried to set the new provided IPs on WAN1 and WAN2 pfsense interfaces, but I received this kind of error:
"The IPv4 address is the network address and cannot be used"
What I'm doing wrong? How can I solve this problem?
Thank you in advance,
Mauro -
@mauro-tridici said in Unable to set new ISP point to point IP addresses (/30) to WAN interfaces:
x.x.x.1/30
x.x.x.2/30and a public subnet y.y.y.0/25.
I just tried to set the new provided IPs on WAN1 and WAN2 pfsense interfaces, but I received this kind of error:
"The IPv4 address is the network address and cannot be used"
What I'm doing wrong? How can I solve this problem?
So what did you enter there?
The given IPs are no network addresses, but y.y.y.0/25 is one.
If assume, the public network is routed to your WAN IPs, each in one of the x.x.x.1/30 and x.x.x.2/30.
In this case you wold not need to assign the public network to the WAN, but you could forward the IPs directly to local devices. -
Indeed, .1 and .2 would not be network addresses. I that actually what you entered or are you just using that as an example?
What last octet did the ISP actually give you to use? Did they actually specify it's a /30?
Steve
-
Hello Steve, I think I was able to understand where the error was and I make pfsense accepting the /30 IPs.
This is what exactly ISP gave me:
Primary Link
p2p x.x.x.44/30
ISP Neighbor x.x.x.45Backup Link
p2p x.x.x.40/30
ISP Neighbor x.x.x.41At first, I tried to assign x.x.x.44/30 to WAN1 and x.x.x.40/30 to WAN2, but I received the error mentioned above.
So, I started thinking that x.x.x.44/30 was a network (not a network address).
If that is the case, x.x.x.44/30 contains the following IPs:x.x.x.44
x.x.x.45
x.x.x.46
x.x.x.47where the first is the network, the last is the broadcast.
Since the .45 is taken by the ISP neighbour, I have to use the .46In the same way I obtained the second IP address I should use for the backup link (x.x.x.42). Now pfsense is working as expected without error.
At the end, the right p2p IPs couples are:
x.x.x.45 <-> x.x.x.46
x.x.x.41 <-> x.x.x.42What do you think about it? I read these things in my certification book (sooner or later I will finish reading it all).
Thank you
Mauro -
Yes exactly. They only define explicitly which IP their end is using. In a /30 there is only one other usable IP. They probably present it like that because they use the same format for larger subnets where the end user has more than one IP they can choose from. There it's just confusing though but you have it correct now.
Steve
-
