Shared Internet, Separate Zones
-
Hello,
I'm building my first PFS box and am having a little trouble figuring out how to do what I need. We have a single WAN interface and two separate offices (both offices have multiple computers). Both offices need to be able to share the single internet connection, but they don't want to have any routing between their separate zones.
Is this possible, and if so, what is the best way to accomplish this?
-
Yes, you can do…..
You can use 3 interfaces ( WAN, LAN & OPT ) by default the traffic from OPT to LAN is Blocked, just must create the rules blocking traffic from LAN to OPT and you have 2 separated networks....
for more info, just check the Docs http://doc.pfsense.org/index.php/Main_Page
-
Is there any way to do this with just two NICs? That would make this particular installation a lot easier.
-
Is there any way to do this with just two NICs? That would make this particular installation a lot easier.
Yes, use a small VLAN capable switch as "port multiplier" for one of your pfSense NIC: one "trunk" port between the switch and pfSense, one switch port to each office.
There has been a number of posts on VLANs in the last few weeks. A search of the forums for VLAN should turn up useful additional information.
