On Tue, Jun 26, 2007 at 03:32:01PM +0100, Greg Hennessy wrote: > > There's the following I've had to put on WAN: > > > > IP 10.0.2.6 > > This is the address of your firewall ?
Yes. > > mask 255.255.255.252 > > gateway 10.0.2.5 > > This is the ISP router ? Yes. > > > > There's 192.168.0.1/24 on LAN, and it works well enough. > > > > Both WAN and LAN interfaces sit on one switch port, which > > I haven't bothered to put into different VLANs yet. > > Yipe! Yeah, I know. I'm just testing, though, and this time there is no ARP storm. > > However, I also have (must use) a /26 network, and I can't > > figure out how how and where to route it. (I have 4 physical > > interfaces, but only 2 working right now, because I need to > > wait for pfsense to be based onFreeBSD7). > > Do you control the upstream router config or the does the ISP ? The ISP does that. They say they configured things correctly on their end. When I try a traceroute to an address in my /26 it does shown the external IP I see on http://www.lawrencegoetz.com/programs/ipinfo/ along the way before it stars out. > > Is this the time to define Virtual IPs, and route the /26 > > network there? Should I use/avoid a filtering bridge setup? > > Any pointers for a demo setup with that strange configuration? > > Assuming the ISP has configured your router correctly, > they should have put a static for the registered /26 pointing at 10.0.2.6. Seems to be there. I tracerouted several addresses from the /26, and they all resolve the same. > You can then subnet it further and/or NAT to/from the address space on the > edge. What to I need to do in terms of pfSense menus? I really have no clue. -- Eugen* Leitl <a href="http://leitl.org";>leitl</a> http://leitl.org ______________________________________________________________ ICBM: 48.07100, 11.36820 http://www.ativel.com http://postbiota.org 8B29F6BE: 099D 78BA 2FD3 B014 B08A 7779 75B0 2443 8B29 F6BE
