Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    /29 and Inbound/Outbound NATs

    Scheduled Pinned Locked Moved Routing and Multi WAN
    5 Posts 2 Posters 447 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • F
      FauxBelly
      last edited by

      Apologies for this possibly being a repeat scenario, but I wasn't entirely sure what to search.

      I have a /29 with the following setup:

      1.1.1.23 - Gateway
      1.1.1.24 - Firewall
      1.1.1.25 - Server 1
      1.1.1.26 - Server 2
      1.1.1.27 - Unused
      1.1.1.28 - Unused

      My workstation network is behind the LAN connection of the pfSense. Each of the two servers, however, are behind their own separate firewalls. I'd like to move each of those behind the pfSense, but allow each server to retain their current public address for both inbound and outbound traffic.

      Is there a guide I could look at to see how this would be done? (Or maybe a previous thread?)

      Thanks for all your help!

      S 1 Reply Last reply Reply Quote 0
      • S
        SteveITS Galactic Empire @FauxBelly
        last edited by

        @fauxbelly You can set up one IP on pfSense WAN, then the others as virtual IPs. Each can have their own ports forwarded or you can use 1:1 NAT to forward the entire IP to a private IP on LAN.

        Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
        When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
        Upvote ๐Ÿ‘ helpful posts!

        F 1 Reply Last reply Reply Quote 0
        • F
          FauxBelly @SteveITS
          last edited by

          Thanks, @SteveITS !

          Quick additional question, though: let's say my current workstation LAN network is 10.1.1.0/24, while my server network is 10.1.2.0/24 with 10.1.2.1 as my gateway.

          Could I keep the 10.1.2.0/24 network? If so, where would I put my gateway in pfSense? As another virtual IP?

          Thanks again for your time.

          S 1 Reply Last reply Reply Quote 0
          • S
            SteveITS Galactic Empire @FauxBelly
            last edited by

            @fauxbelly Yes you can use an alias on LAN as well, and the .1 would be that alias. Or put it on a different interface if they need to be separated.

            Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
            When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
            Upvote ๐Ÿ‘ helpful posts!

            F 1 Reply Last reply Reply Quote 0
            • F
              FauxBelly @SteveITS
              last edited by

              @steveits Got it working. Thank you!

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.