ISP gave my company layer2 handoff and two sets of IPs… Now what?
My ISP just finalized installing the fiber in my building and gave me two sets of IPs. One for my firewall and a set for my devices.
The way the installer said it to me is that I have to set the WAN of my router/firewall to xx.xx.xx.2 and the gateway to xx.xx.xx.1 and then route the other subnet through that. The second subnet is zz.zz.zz.64 to zz.zz.zz.96 (/27)
I know that if I set the WAN to the xx numbers, all of my outbound internet requests will be coming from the xx ip. But if I want them to come from one of the zz ips, what do I do? Set up virtual IPs? Set up static routes? Build some kind of internal loop after effectively breaking the router into two parts, one as the gateway and one as the router/firewall?
Intel Atom D525 1.8GHz Dual core
Dual GBE plus a 100MB PCI card
Is pfSense no longer appropriate for my topology? :-
Thanks in advance!
I am not 100% sure but probably you have to use manual outbound NAT for that.
This kind of configuration is described in the book pfSense: The Definitive Guide through chapters 6, 7 and 8 and particularly in section 6.7 (Methods of using additional public IPs).
dotdash last edited by
- Upgrade to 2.0.1 already.
- Depending on the ISP setup, you could add a WAN alias on the /27 and then add VIPs, or just add the VIPs.
Are xxx and zzz both public subnets?