Oh....After re-reading it looks like you're avoiding NAT by putting servers into a public /29. I completely misread what you were looking for.
So yeah, by default the RB2011 will have the first Ethernet port set up as the WAN with DHCP, and everything exiting via that port gets masqueraded....so you'll want to change that masquerade rule so it only matches the private IP's. Add the static IP to ether1. ✔ Add the static default route by adding a route to destination 0.0.0.0/0 with gateway of 76.76.252.1.✔ Add static DNS servers under IP->DNS✔ Remove the DHCP-client on ether1. Not sure how to do this Add the /29 to interface bridge-local ✔ Maybe Under IP->Firewall->NAT, edit the masquerade rule by removing the "out interface" criteria. Add a new criteria for source IP 192.168.88.0/24. ✔ I think. Now your DHCP clients get private IP's and NAT, but your servers with static IP's don't. I think that's the bare minimum, and it ought to be dead simple in Winbox. Where do we put in the new IPs or IP range associated with this block they gave me? 76.76.254.48/29 routed to 76.76.252.68 WAN IP: 76.76.252.68 Subnet: 255.255.255.0 Gateway: 76.76.252.1 Routed subnet info: 76.76.254.48/29 subnet mask: 255.255.255.248 available IP's: 76.76.254.49-54
-- AF mailing list [email protected] http://af.afmug.com/mailman/listinfo/af_af.afmug.com
