Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Peculiar routing: gateway outside LAN / route LAN through gateway

    Routing and Multi WAN
    1
    1
    953
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • L
      Locutus
      last edited by

      Hellos!

      I already posted another version of this in the IPv6 board, but got no reply there, and since I just realized the very same issue also applies to IPv4, I thought I'd re-phrase it here.

      My hoster is using a somewhat peculiar setup concerning routing from one customer server to others within the same LAN segment.

      To prevent customers from "stealing" neighboring IP addresses, their routers/switches are configured to drop packets sent from one host in the LAN to another.

      So, ALL traffic needs to go through the router. Now I'm in a bit of a twist. How do I set that up in PFSense?

      Concrete example. My server has the address 188.40.142.6/26, and the gateway has 188.40.142.1. When trying to reach other machines in my /26, PFSense naturally tries to directly deliver them. Which fails. They have to go through the gateway.

      Unfortunately, PFSense for one does not allow me to set a gateway outside the host's network segment. It also won't allow me to configure an overriding static routing to push traffic for my /26 through the gateway.

      Any idea what to do here?

      I tried the "Vyatta" firewall distro, and that I can configure to have a /32 IP address, set the default gateway to 188.40.142.1 (even though it's outside its LAN), and configured what they call an "interface-route", telling it to send all traffic for 188.40.142.1 directly through the proper eth, without gateway. That worked nicely.

      Kind regards,
      Frank

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.