Routing with only a single public subnet plus NAT
-
Hi everyone,
I've been using PF sense for quite a while now, and just recently ran into this setup at an office:
The internet connection is DSL, the company is providing me a router (which is pretty much a POS, hence the need for PFSense). Unfortunetly the router doesn't have a way to only go into bridging mode. I've asked for static ips. I specifically asked for a /29 routed to a /30. I could then setup my PFSense with the /29 on an OPT interface and the NAT'ed /24 on LAN, with everything going out the WAN /30.
They can't do this and provided me with the ability to only use the /29 on my PFSense box (which would be the WAN interface).
Is there a way to bridge the two interfaces together and still have my NAT'ed LAN and firewall functionality? I have a 4 port NIC on the server.-Josh
-
I can see that this has been read 40 times, is there seriously no way to do this?? :(
-
could you maybe make a diagram as what you want to do?
your description is… kinda hard to understand :) -
Absolutely
DSL –> (Public IP space /29) --> PFSense WAN --> PFSenseLAN /24 (NAT)
--> LAN or OPT /29 (SAME IP SUBNET as the WAN)Ideally the ISP would give me a bridged dsl connection, and a /30 with a /29 routed to it. Then i could just setup the /30 on my WAN side of PFSENSE, and setup a LAN and OPT with the nat'ed subnet and the public /29 IP space. Unfortunately, they can't do that for me :(
-
Haven't tried this setup myself, but… Why not just bridge OPT to WAN, turn on filtering bridge, NAT the LAN. The OPT would be a DMZ type setup, correct?
-
Correct.
