MUTLI SUBNET WAN VIRTUAL IP



  • ISP1 –-----------------------------!
                              10.1.1.2 /28      !          !------------------------ 
                          GW 10.1.1.1          !WAN1  !                                !
                                                      !!                                ! ______________ LAN
                                                                !  PFSENSE                  !
                                                      ______ !                                !
                                                    !          !                                !
    __________ FREE
                                                    ! WAN2  !_____________________!
    ISP2---------------------------                                                                                                                !---------!
                          192.168.1.102                                                                                                                  !pfsense  !       
                      GW 192.168.1.101                                                                                                                  !---------!

    192.47.112.2  /29 !
          192.47.112.138 /29 !All statically routed to 192.168.1.102
          192.47.112.146 /29 !  CURRENTLY SETUP AS PARP VIPS
          192.47.125.50  /28 !

    QUESTION_1)  Can I setup 192.47 VIPs as CARP, even if it means adding an alias to my ISP2 interface.

    If this above be achieved

    Then

    QUESTION_2)  How can I setup Outbound Route so I can change my outbound IP on ISP2. I have setup
    All those ips as PARP.
    I have tried to add an outbound route but I still see my WAN2 address going out. Previously
    I was using a CISCO router in conjuntion with CISCO PIX firewall to achieve this. From Cisco
    Router I forwarded all IPs to CISCO PIX and from CISCO PIX I assigned who ever and what ever. I am running SQUID as transparent proxy on this box

    QUESTION_3) I want to add a secondary pfsense behind this pfsense how can I route an IP or set of IPS from WAN2 to my FREE
    Interface.


Locked