What setup would work for my needs?



  • Hi,

    I just switched over from IPCOP and I must say I am impressed, I have somewhat of an odd situation I’m going to take a shot at explaining it, please feel free to advice me on solutions or setups that might work.

    Currentnetwork.jpg is a diagram of my network setup right now.

    I live in a house with 4 other roommates, all together we have 10+ computers on the network and since Rogers has been setting bandwidth caps I was forced to try DSL, there are a bunch of companies that allow unlimited DSL here in Canada but since my house is quite far from the switch I get around 2800kbps downstream on DSL as opposed to the full 8000 kbps I get on cable (Rogers).

    Since my roommates download a lot thru torrents, file share and a whole bunch of other ways I had to get them a separate DSL connections with unlimited bandwidth. But the thing is I go over the limit set by Rogers myself, and would like to use both connections. All my roommates are only on wireless. I use both wired and wireless.

    Myidealnetwork.jpg is what I would like to have Ideally, I know it would include vlans, but don’t really know how to set it up.

    Things that are important:

    Roommate’s subnet should be isolated from mine; however it would be nice if I could see their computers.

    Asterisk Server must go on a public IP, as it does not work well over NAT.

    Rogers Cable modem has 2 IP’s subscribed, however they are dynamic.

    Preferable if Asterisk server goes via the pfsense router I should be able to setup QOS techniques.

    Please feel free to make any suggestions.

    Thanks






  • First, what you want to do is doable!  ;) And now the "hard" part to set it up. I would simply build a pfSense with 4 interfaces (WAN1, WAN2, your LAN, uplink to your roommates Accesspoint). This way you don't need vlans and it's a bit easier to begin with.

    I suggest reading up on multiwan first: http://doc.pfsense.org/index.php/Multi_WAN_/_Load_Balancing

    Everything else is just basic firewallrules and some NAT.





  • Hi Hoba,

    Thanks for the input, I have read the article you mentioned, however I will read Sai's updated one.

    Couple of questions?

    1. How does PF sense perform in terms of reliability? I am running RC4 but somehow find the routing to be extremely slow compared to IPCOP, this could very well be my fault as I was trying a lot of things and as a result perhaps messed up the router.

    2. How do I setup multiple DHCP subnets on 2 different NIC’s (LAN) in pfsense.

    3. how do I allow asterisk to go thru pfsense yet get a public IP that is assigned via DHCP and not static?

    I don’t intend to be spoon-fed, any help in the right direction in terms of how-to’s would be much appreciated.

    Thanks



  • 1. How does PF sense perform in terms of reliability? I am running RC4 but somehow find the routing to be extremely slow compared to IPCOP, this could very well be my fault as I was trying a lot of things and as a result perhaps messed up the router.

    Well lots of people are using pfSense and its underlying OS with great success so mostly you have misconfigured it. Though it even depends on the hardware you have thrown at it.

    2. How do I setup multiple DHCP subnets on 2 different NIC’s (LAN) in pfsense.

    Search the forums and the docs.

    3. how do I allow asterisk to go thru pfsense yet get a public IP that is assigned via DHCP and not static?

    Setup bridge between link and the interface of Astersik. Then you have to go with AON nat and disable natting the ip of asterisk and filter accordingly. Then nat the others part of your network appropriately.
    You can go even with port forwarding Asterisk.

    You might get complex and play with vlans but that depends on the knowledge you have.

    Your setup can be accomplished in multiple ways with pfSense and anyone can setup it by its tastes so there is no ready answer for you!



  • Ok so I took all your advice and got most of it working. I am having a problem getting the second subnet (LAN) to work.

    The dhcp hands out the IP on OPT-2 but I cant ping the router or the Internet.

    are there any documents on setting up multiple LAN, I searched but no luck.

    Appreciate the help.



  • Did you remember to make a rule on the opt-2 lan?



  • Perry,

    thanks for t he TIP I got it working. baisically for any one else who is in the same situation all you have to do is make a rule:

    any Proto, any Source, any Port, any Destination, default gateway.

    What I am trying to do now is to force my OPT-2 to use OPT 1 as the WAN all times.

    any suggestions?



  • @facebook:

    Perry,

    thanks for t he TIP I got it working. baisically for any one else who is in the same situation all you have to do is make a rule:

    any Proto, any Source, any Port, any Destination, default gateway.

    What I am trying to do now is to force my OPT-2 to use OPT 1 as the WAN all times.

    any suggestions?

    ;D
    any Proto, any Source, any Port, any Destination, default gateway OPT1



  • yup got it working,

    Thanks guys, Its been great…. all the support the ability to use dual WAN.... fantastic...


Locked