On 8/16/05, Tim Roberts <[EMAIL PROTECTED]> wrote: [snip] > We would like to bridge the WAN and OPT interface and leave LAN interface > routing/natting. I currently have this scenario working in m0n0wall and > assume it will work with pfsense but I think the bridging support has some > issues right now (maybe they have been resolved....no insult intended). So > my questions are: > > Will this scenario work stable with pfsense now?
Should. But I would try it and let us know. > If so, does anyone see any problems jacking the LAN and OPT interface into > the same switch together allowing me to put clients both on a public ip as > well as private, both cases filtered with firewall rules. My current > scenario I have the 2 interfaces in different isolated switches/networks.I > realize this sounds dumb, but here's why: Should, see above. > We have a wireless network with tons of "bridged" connections all coming > into the network center via 1 ethernet cable. Some clients on the wireless > network need actual public IP's assigned to their gear and some need only > natted private addresses. Rather then having 2 separate firewalls for the > same ultimate purpose, I could deal with one....which leads me to the last > question: > > Will CARP work with this scenario? I have 5 m0n0walls running, 3 for > separate scenarios, 2 are for the same, 1 of those 2 just sits there > unplugged in case the primary goes down. If PFsense will bridge & nat using > 3 nic's AND somehow I can use CARP or other method as a "Heart Beat" type > scenario, I could junk all 5 for 2 :) CARP would work but I'm not entirely sure which ip's you plan to CARP. So my ultimate advice is to try this configuration out and let us know. I'm not sure if anyone has done this complex of a setup or not and with it not being tested I'm going to be somewhat reserved here. Scott
