How to add seconday wan ip subnet from isp?



  • Hi

    A short description of my system: I have 2 PfSense 2.0.1 servers running in hardware failover using CARP.

    I currently have an public IP range called "33.44.55.66/27" configured on the WAN interface… I'm about to run out of available IP adresses in this range, and i've ordered a new /26 subnet... How do i add these IP addresses to my pfsense setup? I was expecting an option on the WAN interface that said something like "ip address secondary"... But that doesn't seem to be the case?`



  • Just add an interface on that same NIC

    33.44.55.67/26
    33.44.55.68/26
    33.44.55.69/26
    33.44.55.70/26
    33.44.55.71/26
    ..
    ..
    33.44.55.126/26

    Probably all having gateway 33.44.55.65



  • @miloman:

    I was expecting an option on the WAN interface that said something like "ip address secondary"… But that doesn't seem to be the case?`

    This option is in firewall -> virtual ips.



  • @marcelloc:

    Is my suggestion wrong or does it depend on what you want to do with it?
    I thought about completely different rules for one IP, maybe handling different LANs for different WANs…



  • Same gateway on different interfaces normally is a problem.

    If you have distinct gateways for it, then there is no problem.

    The way you authenticate with provider does matter too.



  • They should route you the second subnet, to one of the IPs within the first subnet. Then you don't need VIPs at all if you're using with 1:1 NAT, or Other type VIPs for other areas.


Log in to reply