Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    What am I trying to do?

    General pfSense Questions
    1
    1
    1.2k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mankyd
      last edited by

      The title may appear to be a bit hyperbolic, but its more truthful than one might imagine. What I mean to ask is this: I know what setup I am trying to achieve, but I don't know the terminology to search for in the documentation/wiki. I'd really appreciate any help that can get me oriented. This is my first time dealing with anything more sophisticated than simple port forwarding, as well as my first time with pfSense.

      My scenario: I am upgrading from a simple DHCP internet connection to one that has 8 static IP's. I need to route one at least one IP for general internet access for normal users, and the remainder I want pointed at one or more servers.

      To elaborate a bit: The DHCP connection I currently is served up via wifi and gigabit ethernet by a simple home router + an additional 8 port gigabit switch. I'd rather have pfSense take care of all the DHCP and just set the router I already have up as a WAP. All requests in/out of the DHCP assigned addresses should be mapped to a single static IP. Meanwhile, I want the remaining static IP's assigned to one or more *nix servers.

      Things to consider:

      • Ideally, I think I want pfSense NAT'ting all traffic, so nothing inside of the pfSense network will know its real static ip. Thus:

        • x.x.x.1 -> DHCP

        • x.x.x.2-8 -> y.y.y.2-8

        Am I thinking about that correctly? Does that make sense? Is it doable?

      • If I by a basic 801.11n PCI card and stick it in the pfSense box, can I turn that into a Access Point? Can I somehow turn my existing router into a repeater for it? I believe this is called bridging, no? Are there some PCI cards that work better than others?

      • Is there a straightforward way to segregate trusted WiFi connections from others? If so, can I then run untrusted connections through other restrictions like squidguard? Can I map trusted computers to one static IP and untrusted ones to another?

      • How do I assign more than one static IP to a single NIC on a Linux machine? E.G. I want a to setup a webserver that has different domains with differnt IP's in DNS. (Not a pfSense question, I know.)

      I am sure questions like these have been asked a several times before, but I'm not sure how to find the answers. I'm just looking for links that can get me started. Even just list of terms describing what I am trying to do would be helpful. Thanks!

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.