4. BGP - advertise IP block over 2 links

BGP - advertise IP block over 2 links

  • T

    Hi everyone,

    After our primary (high speed) link failing today for a few hours, which meant no one could access any of our systems, we've decided to set up BGP to allow us to advertise our IP block down a backup (low speed) link as well.

    What I am trying to achieve is:

    • We are getting a /24 and our own AS number

    • Usually, I want traffic to come down the high speed link - BGP prepending should help here

    • (Here is the hard part) - I want to NAT that /24 - for example 3.3.3.5 port 80 –> 10.0.0.4 port 80 - I have more hosts than a /24, but most of them (desktops etc) do not need to be internet-accessible

    Picture (everything pfSense needs to do inside the big black box):

    Any help would be much appreciated

    0
  • T

    I have been thinking about this some more, and I think I have to enable a loopback interface in the web GUI, and set up my public /24 as virtual IPs on that interface. From there, I SHOULD be able to NAT without a problem - I think?

    0
Locked
 

Products

Applications

Support

Services

News

Resources

Company

Our Mission

As host of the pfSense open source firewall project, Netgate believes in enhancing network connectivity that maintains both security and privacy. We also believe everyone should be able to afford it.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy