4. BGP - advertise IP block over 2 links

BGP - advertise IP block over 2 links

  • T

    Hi everyone,

    After our primary (high speed) link failing today for a few hours, which meant no one could access any of our systems, we've decided to set up BGP to allow us to advertise our IP block down a backup (low speed) link as well.

    What I am trying to achieve is:

    • We are getting a /24 and our own AS number

    • Usually, I want traffic to come down the high speed link - BGP prepending should help here

    • (Here is the hard part) - I want to NAT that /24 - for example 3.3.3.5 port 80 –> 10.0.0.4 port 80 - I have more hosts than a /24, but most of them (desktops etc) do not need to be internet-accessible

    Picture (everything pfSense needs to do inside the big black box):

    Any help would be much appreciated

    0
  • T

    I have been thinking about this some more, and I think I have to enable a loopback interface in the web GUI, and set up my public /24 as virtual IPs on that interface. From there, I SHOULD be able to NAT without a problem - I think?

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy