3 Dynamic WAN IP's for 1 LAN, 3 VLan's and 1 "DMZ" (SOLVED)
-
Dear,
I am new to pfsense for several months,
and have always found an answer to my questions through the search function
use of this forum.
But right now I'm stuck with the desired configuration of Figure 1.I have Telenet Internet via a modem-only and have "endless" number of public IP addresses
available.
pfSense box with seven physical network cards,
One onboard the motherboard,
2x Gigabit PCI Express
1x Quad Gigabit PCI Express.
pfSense 2.2.4 embedded on a USB 3.0 flash drive.The Quad Gigabit PCI Express (side B) I wish to use completely separate
of side A.
Wishing to split three public IP addresses into three parts:One public IP Address for lan1 (side A)
One public ip-address for a group of three isolated LANs (side B)
One public ip-address which get assigned to the unit on NIC4,
so it seems from this unit if it is connected directly to the modem.Side A and B are completely separated from each other.
NIC5, nic6 and NIC7 completely separated.Side A has already okay, now only remains for side B.
Preference would be given to one configuration,
so that the DMZ switch can be omitted.
If not possible, configuration 2 as plan b.Thanks in advance.
Grts
DeLorean
-
Not possible ?
Grts
DeLorean -
Problem solved. 8)
I have now used a Bridge between the WAN and NIC4 interface.The Bridge i have named "DMZ_Bridge" and set connection type "none"
Nic4 interface, i have named "DMZ" with connection type "none"
Only the WAN interface has a connection type "DHCP".Under firewall rules, i added "any pass rule" for the DMZ and DMZ_Bridge interface.
For both, i unchecked the option "Block Private Networks" and "Block Bogon Networks".I then added block rules between the DMZ interface and other LAN's.
Greetz
DeLorean