Special network configuration in a datacenter.

setsunakawa

Hello, I have a little problem for configuring network in pfSense 2.0.
The server is in a DC and network configuration is very strict (the switch will shutdown the port if the configuration is not respected).

My IP is 88.190.245.X/32 but the gateway is in a different network : 88.190.12.1.

In linux I use :```
allow-hotplug eth0
iface eth0 inet static
        address 88.190.245.X
        netmask 255.255.255.255
        up route add -host 88.190.12.1 dev eth0
        up route add default gw 88.190.12.1

But, how to do the same in pfsense?

Thanks for your help !

Guest

That network configuration is invalid.  You cannot assign your WAN a /32 address and expect to be able to route.  At the very minimum, you would need a /30.  You need to clarify the configuration requirements with your datacenter.

setsunakawa

This configuration is valid and is the only one accepted by the DC.

I have 2 debian and 1 windows 2008 running with this configuration.
I was using "zeroshell" which work fine too.

That why I need a way to force that. ::)

setsunakawa

I installed "shellcmd" which force adding routes to the gateway.
And now it works fine…

jimp

It may work but I wouldn't call that "valid" in any sense of the word. Sounds like a DC is just trying to cheap out on allocating IPs properly.

jasonlitka

I remember getting strange configs like that from Verizon 6 or 7 years ago on their PPPoE DSL.  The settings the DSL modem received didn't make any sense…

jimp

That's different, it's a point-to-point link. PPPoE (and PPTP, PPP, etc) gets a subnet mask of /32 and a gateway (that is somewhat meaningless), but for links that are not point-to-point, you need at least a /30 so each end gets an IP.

jasonlitka

Interesting, I just learned something.  Thanks.

setsunakawa

@jimp:

It may work but I wouldn't call that "valid" in any sense of the word. Sounds like a DC is just trying to cheap out on allocating IPs properly.

The host (esxi for me) has a classic network configuration in /24.

But if we need more IP for virtuals machines, our DC ("OVH" or "Online" in France) give us a /32 (called "ipfailover") and the gateway must be the same as host.
Even if we want a range of addresses, they give us a /30 /29… but the gateway are external.