Hi Tibir, > > I changed to IP Alias rather than ARP. > > > > I put each of my static IP's on the WAN Interface, 1 at a time, saved > > and reloaded and pinged it from the LAN (which is where this server is > > I want to hit as well) > > I think you have to change the subnet mask used on your VIP. When > configuring an IP Alias, it says about the netmask "This must be the > network's subnet mask" so it cannot be a /32. Make it a the same as your > WAN IP (ie: /27 or whatever it is). > Also on your previous screenshots (http://6colors.net/interfaces.png), > it clearly shows that your WAN interface is down. I doubt you can get > answer even from the LAN side if it's DOWN.
the WAN was down when I took the pic, but it is indeed up now. 1. I changed the VIP to a .29 (like my public IP's) 2. I plugged the NIC in the server that is answering on .27. 3. I rebooted my cable modem, letting it sit for 60 seconds before reconnecting power. 4. I rebooted the pfSense Box 5. I rebooted the server that hosts what I want to access, only plugging in the second NIC that has the IP 192.168.1.27. 6. waited for everything to come up. 7. If now I try to hit 6colors.net from the LAN (which is where this server is too) I get forwarded to an https://6colors.net:<port> saying that there is a potential DNS Rebind attack. 8. if I try and hot from a machine that is not on the LAN I get an "unable to connect" in a browser. 9. I do notice that when I set the NIC in the server to DHCP it gets an ip of 192.168.1.101, Subnet: 255.255.255.0, Gateway/Broadcast: 192.168.1.255 and I can SSH in using the .101 IP, the site comes up when using .101 in a browser too from my laptop that is on the same LAN. but when I manually assign an ip of 192.168.1.27 (to match my public IP's) subnet of: 255.255.255.248 and a Broadcast of: 192.168.1.31 (which seems automatic) I cannot SSH into .27 or web, nada. Yes I am restarting networking, ssh and apache to be sure. when I manually assign an ip of 192.168.1.27 (to match my public IP's) subnet of: 255.255.255.0 (like I get when I use DHCP) there is a Broadcast of: 192.168.1.31 and do an ifconfig I see the subnet mask of 255.255.255.248 still regardless and I cannot SSH in or web, etc. Thoughts? -Jason _______________________________________________ List mailing list [email protected] http://lists.pfsense.org/mailman/listinfo/list
