|
I currently run quite a few m0n0walls and would
like to switch to pfsense given its extra features catering to our ISP. Here's
what we want to do:
WAN: Public IP
|
|
|-------------------------OPT: Bridged to WAN - No IP(I Guess since its
Bridged)
|
|
LAN: 172.16.0.0/12
We would like to bridge the WAN and OPT interface
and leave LAN interface routing/natting. I currently have this scenario working
in m0n0wall and assume it will work with pfsense but I think the bridging
support has some issues right now (maybe they have been resolved....no insult
intended). So my questions are:
Will this scenario work stable with pfsense
now?
If so, does anyone see any problems jacking the LAN
and OPT interface into the same switch together allowing me to put clients both
on a public ip as well as private, both cases filtered with firewall rules. My
current scenario I have the 2 interfaces in different isolated
switches/networks.I realize this sounds dumb, but here's why:
We have a wireless network with tons of "bridged"
connections all coming into the network center via 1 ethernet cable. Some
clients on the wireless network need actual public IP's assigned to their gear
and some need only natted private addresses. Rather then having 2 separate
firewalls for the same ultimate purpose, I could deal with one....which leads me
to the last question:
Will CARP work with this scenario? I have 5
m0n0walls running, 3 for separate scenarios, 2 are for the same, 1 of those 2
just sits there unplugged in case the primary goes down. If PFsense will bridge
& nat using 3 nic's AND somehow I can use CARP or other method as a "Heart
Beat" type scenario, I could junk all 5 for 2 :)
Any help is much appreciated!
Tim
|
- [pfSense-discussion] Bridged + NAT + CARP Idea help :) Tim Roberts
