CARP on PPPoE

cowhow

I host a number of domains that require FTP in order to edit their web sites.  I am connecting to the internet through a static IP address.  (gateway is outside the assignable address block leaving 5 addresses assignable.) I am attempting to create CARP VIP the 5 assignable address in my block to allow passive FTP to function.  However, since the pfsense box pulls its address as a /32 address I cannot create the CARP VIP using the same /32 netmask.  The actual netmask is /29.

How can I:

1.  Create a PPPoE connection with a static address manually configured?

2.  Create a CARP VIP witha /32 netmask?

The goal of all this is, as stated earlier, to enable FTP.

Thanks,

Tony

hoba

CARP won't work on PPPoE. It needs a subnet so you can have at least 3 IPs in it and PPPoE connections only have /32 subnets which is a single IP only. For PPPoE connections you should be able to use virtual IPs of type other as the provider should route the additional IPs to you anyway in that scenario.

cowhow

Hoba, thanks for confirming what I suspected.  At the moment I am using a Netopia router to map IP addresses from public to internal.  While a Netopia tech assured me that this is not simply a straight pass-thru tunnel, from what I can determine it is and that leaves my servers exposed.  That's why I was attempting to use pfSense and get a solid, configurable firewall I know won't leave my servers unprotected.

How do I make FTP work using proxy ARP for VIPs?  Since I don't maintain all the domains I host FTP is necessary.

Tony