Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Special network configuration in a datacenter.

    Routing and Multi WAN
    4
    9
    2255
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      setsunakawa last edited by

      Hello, I have a little problem for configuring network in pfSense 2.0.
      The server is in a DC and network configuration is very strict (the switch will shutdown the port if the configuration is not respected).

      My IP is 88.190.245.X/32 but the gateway is in a different network : 88.190.12.1.

      In linux I use :```
      allow-hotplug eth0
      iface eth0 inet static
              address 88.190.245.X
              netmask 255.255.255.255
              up route add -host 88.190.12.1 dev eth0
              up route add default gw 88.190.12.1

      
      But, how to do the same in pfsense?
      
      Thanks for your help !
      1 Reply Last reply Reply Quote 0
      • ?
        Guest last edited by

        That network configuration is invalid.  You cannot assign your WAN a /32 address and expect to be able to route.  At the very minimum, you would need a /30.  You need to clarify the configuration requirements with your datacenter.

        1 Reply Last reply Reply Quote 0
        • S
          setsunakawa last edited by

          This configuration is valid and is the only one accepted by the DC.

          I have 2 debian and 1 windows 2008 running with this configuration.
          I was using "zeroshell" which work fine too.

          That why I need a way to force that. ::)

          1 Reply Last reply Reply Quote 0
          • S
            setsunakawa last edited by

            I installed "shellcmd" which force adding routes to the gateway.
            And now it works fine…

            1 Reply Last reply Reply Quote 0
            • jimp
              jimp Rebel Alliance Developer Netgate last edited by

              It may work but I wouldn't call that "valid" in any sense of the word. Sounds like a DC is just trying to cheap out on allocating IPs properly.

              1 Reply Last reply Reply Quote 0
              • J
                jasonlitka last edited by

                I remember getting strange configs like that from Verizon 6 or 7 years ago on their PPPoE DSL.  The settings the DSL modem received didn't make any sense…

                1 Reply Last reply Reply Quote 0
                • jimp
                  jimp Rebel Alliance Developer Netgate last edited by

                  That's different, it's a point-to-point link. PPPoE (and PPTP, PPP, etc) gets a subnet mask of /32 and a gateway (that is somewhat meaningless), but for links that are not point-to-point, you need at least a /30 so each end gets an IP.

                  1 Reply Last reply Reply Quote 0
                  • J
                    jasonlitka last edited by

                    Interesting, I just learned something.  Thanks.

                    1 Reply Last reply Reply Quote 0
                    • S
                      setsunakawa last edited by

                      @jimp:

                      It may work but I wouldn't call that "valid" in any sense of the word. Sounds like a DC is just trying to cheap out on allocating IPs properly.

                      The host (esxi for me) has a classic network configuration in /24.

                      But if we need more IP for virtuals machines, our DC ("OVH" or "Online" in France) give us a /32 (called "ipfailover") and the gateway must be the same as host.
                      Even if we want a range of addresses, they give us a /30 /29… but the gateway are external.

                      1 Reply Last reply Reply Quote 0
                      • First post
                        Last post

                      Products

                      • Platform Overview
                      • TNSR
                      • pfSense
                      • Appliances

                      Services

                      • Training
                      • Professional Services

                      Support

                      • Subscription Plans
                      • Contact Support
                      • Product Lifecycle
                      • Documentation

                      News

                      • Media Coverage
                      • Press
                      • Events

                      Resources

                      • Blog
                      • FAQ
                      • Find a Partner
                      • Resource Library
                      • Security Information

                      Company

                      • About Us
                      • Careers
                      • Partners
                      • Contact Us
                      • Legal
                      Our Mission

                      We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

                      Subscribe to our Newsletter

                      Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

                      © 2021 Rubicon Communications, LLC | Privacy Policy