Subnetted WAN block passed through to OPT1 for VOIP



  • My ISP has given me a block of 10 IP addresses sitting behind a single IP address. My WAN interface on my PFSense 2.0.2 RC3 box is using 173.173.173.110/30 with a gateway of 173.173.173.109. My ISP tells me they have my block of 10 addresses configured to route through 173.173.173.110. The block is 173.173.173.144/28.

    Up until this point in time, I have had no need for my 10 addresses and have natted everything through the single IP on the WAN interface (173.173.173.110).

    Now I need to use a couple of addresses for my VOIP network. I am trying to subnet my 173.173.173.144/28 into a 173.173.173.156/30 and use 173.173.173.157 on my OPT1 interface and 173.173.173.158 as my SIP interface on my VOIP server.

    I have something wrong. I can connect outbound to the internet from 173.173.173.158, but even with all policies set to any/any I can't connect back to 158 in any fashion. Also when checking when browsing to What is MY IP on the internet from 158, I show as coming from 110 instead of 158.

    Can someone give me some pointers on what I am doing wrong? If I have not provided enough information, please let me know.



  • I'm shooting in the dark here, but can you try this?

    Instead of the using WAN IP, use an IP Alias for your natted LAN (1:1 external ip to internal LAN subnet) - 173.173.173.145/30
    For your OPT1 interface, assign it 173.173.173.149/30 and give your server 173.173.173.150
    Try without static routes or gateways assigned to those interfaces.

    Hopefully, someone with more knowledge will chime in and correct me if I'm wrong.


Log in to reply