On Thu, Feb 9, 2012 at 1:24 PM, Nathan Eisenberg <[email protected]> wrote: >> Well my WAN has one of my 5 public IP's. I have 75.xx.xx.25 - .29 with >> a gateway of .30 >> >> So I have a few other public IP's on servers that I wanted on a DMZ. >> Just port 80 actually. >> >> So I want traffic on port 80 coming in through WAN getting routed to >> .27 which is on the DMZ. That way people hit my domain they get that >> box. >> >> So far I am not having luck getting this to work. I certainly have a >> misunderstanding, I am just not sure what. >> >> -Jason > > Ok, so it sounds like your provider handed you a /29. To firewall that > behind pfSense, you need > them to route that /29 to you over a /30. The /30 goes on the WAN interface, > the /29's gateway IP > goes on your DMZ interface.
OK, so I called Comcast and explained exactly the above about the /29 routed to a /30 and the representative was clueless, so I asked them to open up a ticket and escalate to a tier 2 tech. We shall see what they say. This obviously means that they will create a new block of public IP's for the /30 in addition to the 5 that I already have in the /29. This seems easier to pay them for that then host and deal with more equipment in my location. _______________________________________________ List mailing list [email protected] http://lists.pfsense.org/mailman/listinfo/list
