Bill Marquette wrote:
On Fri, Oct 23, 2009 at 2:45 PM, Evgeny Yurchenko <[email protected]> wrote:
Ron García-Vidal wrote:
We have a /29 IP block through our ISP. The problem is, pfsense is
going to be acting as a router off a /30 WAN. Is there any way to set
up routing between the 2 IPs on the same NIC? Here's
what I would *like* to do.
Routable IP block
WAN IP: X.X.X.10
Def Route: X.X.X.9 (ISP's router)
Routable Internet IPs: Y.Y.Y.96/29
So I gave my WAN interface the IP# X.X.X.10 and a virtual IP of Y.Y.Y.97.
If I ping X.X.X.10, I get a reply, but if I try Y.Y.Y.97, I get a TTL
exceeded.
(Of course, the LAN NIC sits on my non-routable private segment)
Currently, we have yet another router that is dual-homed with one of each
of the above IPs, but I'd like to consolidate the two machines, if possible.
Any suggestions?
If your ISP routes Y.Y.Y.96/29 to you then it should not be a problem.
Configure ProxyARP on WAN and that is it.
Eugene.
And for the third opinion in this thread :)
You want the 'other' VIP type. It's used in situations where you have
a subnet routed to you and just need to perform NAT. It will not be
pingable (unless you nat the ICMP to some internal host).
--Bill
off this thread... Bill, is it possible to NAT icmp without doing 1:1 NAT?
Thanks. :-)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
Commercial support available - https://portal.pfsense.org
