Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Assign multiple dynamic IP addresses to a single interface

    Scheduled Pinned Locked Moved Routing and Multi WAN
    5 Posts 3 Posters 3.6k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      bardelot
      last edited by

      Hi

      I have a provider that assigns me up to four public IP addresses which however have to be obtained by MAC based DHCP.
      Is it possible to assign multiple dynamic IP addresses to a single physical interface? e.g. using Virtual IP addresses?
      The additional IP addresses will for example be used for different SSL enabled web servers.

      So far I have only come across solutions with multiple static addresses.

      e.g.
      How to use multiple IP on a WAN interface?
      Multiple IPs on 1 WAN interface from different subnets

      Thanks
      Bardelot

      1 Reply Last reply Reply Quote 0
      • jimpJ
        jimp Rebel Alliance Developer Netgate
        last edited by

        That isn't easy to do, at least not to do in a way that isn't very ugly.

        Some people have plugged multiple interfaces into a switch on that kind of WAN and let each interface pull an IP, or they've tried to use VLANs in the same way, but that is all rather hackish.

        In order to use any of the virtual IP types on pfSense the IPs would need to be static.

        Another option would be to bridge an additional interface to WAN and let your web servers pull public IPs directly and then you can still firewall things how you want, but they have the IPs directly.

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • F
          FreddyAV
          last edited by

          @jimp:

          Some people have plugged multiple interfaces into a switch on that kind of WAN and let each interface pull an IP, or they've tried to use VLANs in the same way, but that is all rather hackish.

          …

          Another option would be to bridge an additional interface to WAN and let your web servers pull public IPs directly and then you can still firewall things how you want, but they have the IPs directly.

          Wouldn't all these methods run into the problem that each IP would have the same gateway and hence it would not work (under the assumption that most ISP which give the user the above mentioned possibility will have the IPs "close to each other" and assigned the same gateway)??

          Cheers!

          1 Reply Last reply Reply Quote 0
          • jimpJ
            jimp Rebel Alliance Developer Netgate
            last edited by

            Yes but due to the way the routing works out, everything actually ends up going back out the main interface, even if it enters one of the others… as I said, ugly, but there are people doing that (search the forum a bit, some should turn up)

            Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

            Need help fast? Netgate Global Support!

            Do not Chat/PM for help!

            1 Reply Last reply Reply Quote 0
            • B
              bardelot
              last edited by

              Ok sadly it's what I had expected. I didn't think of the bridging solution though, so thanks for that one, I'll probably try that approach.

              Thanks
              Bardelot

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.