Routing 5 Static IP's to 5 Different Interfaces
-
I have 5 static pubic IP addresses with one gateway IP and 6 network interfaces. I'd like to configure the router like this:
WAN -> Interface 0
Public IP 1 -> LAN Interface 1 -> Office LAN for internet browsing (this is already working)
Public IP 2 -> LAN Interface 2 (DMZ) -> VoIP server
Public IP 3 -> LAN Interface 3 (DMZ) -> Server 2
Public IP 4 -> LAN Interface 4 (Port 80 allowed) -> Server 3
Public IP 5 -> LAN Interface 5 (Port 22 allowed) -> Server 4I'll be running some servers on interfaces 2-5 and if one gets compromised I don't want it having access to the others.
It seems so easy but I've searched like crazy but I can't find the answer to this. A comprehensive guide would be awesome.
-
No, this won't work. 5 IPs is not even remotely enough to use them on 5 different interfaces.
-
No, this won't work. 5 IPs is not even remotely enough to use them on 5 different interfaces.
You're right. I should have 500! :)
Anyone have any ideas? Destination NAT perhaps?
-
Hmmm? Add the IPs as aliases on WAN. Either 1:1 NAT (for DMZ) or port forward those to the internal servers. Done.
-
Hmmm? Add the IPs as aliases on WAN. Either 1:1 NAT (for DMZ) or port forward those to the internal servers. Done.
I tried this https://doc.pfsense.org/index.php/1:1_NAT but it didn't work for me. Is that what you're talking about?
-
Afraid "it didn't work for me" is not exactly a useful problem description…