Hi Nishant, sorry, it seems i got the situation not fully. :8~) $Customer made already some really clever things. Ok.
To let a wise ( iirc Gandhi sayed that ) man speak: Those who say and believe they can't change, can't change. Those who say and believe they can change, will find a way and change. Just saying. I know its sometimes difficult to deal with the wishes of Simon ($Customer). Yes i fully agree with adam. the easiest way is to bridge that /29 subnet and do the routing for the /28. In orher words entirely fake the world of the /29 Servers. Do you need further ideas for solving that? greetings M. = = = http://michael-schuh.net/ = = = Projektmanagement - IT-Consulting - Professional Services IT Rev. P.D. Michael Schuh<http://dudeism.com/ordcertificate?ordname=Michael+Schuh&orddate=05/20/2012> *Ordained Dudeist Priest <http://dudeism.com/>* Postfach 10 21 52 66021 Saarbrücken phone: 0681/8319664 @: m i c h a e l . s c h u h @ g m a i l . c o m = = = Ust-ID: DE251072318 = = = 2013/6/14 Nishant Sharma <codemarau...@gmail.com> > > > > -------- Original message -------- > From: Michael Schuh <michael.sc...@gmail.com> > Date: 14/06/2013 14:38 (GMT+05:30) > To: pfSense support and discussion <list@lists.pfsense.org> > Subject: Re: [pfSense] Two Subnets on WAN > > > Hi Michael. > > That's what I suggested them. But since they were already running servers > on IPs from both the subnets, we have to either put the box in bridge mode > or create IF Aliases. > > As of now it's running fine and may be due to cable or switch problem > errors are being shown in Interface statistics. > > Thanks & regards, > Nishant > > thats a widely used techniqe for routing purposes. > so the isp can change the routing quickly and apply more subnets to that > route. > you can use one and the same router for many subnets than. > > the /29 is the routing subnet and the /28 your official subnet. > so there should no need for arp'ing. > > Just put the /28 on an DMZ NIC and the /29 on WAN. > The first free IP of the /28 may be supposed to be the NIC IP of the DMZ. > > Everything should be fine than? > > = = = http://michael-schuh.net/ = = = > Projektmanagement - IT-Consulting - Professional Services IT > Rev. P.D. Michael > Schuh<http://dudeism.com/ordcertificate?ordname=Michael+Schuh&orddate=05/20/2012> > *Ordained Dudeist Priest <http://dudeism.com/>* > Postfach 10 21 52 > 66021 Saarbrücken > phone: 0681/8319664 > @: m i c h a e l . s c h u h @ g m a i l . c o m > > = = = Ust-ID: DE251072318 = = = > > > 2013/6/14 Nishant Sharma <codemarau...@gmail.com> > >> Thanks Adam & Alex for your inputs. >> >> I had already configured it with configuring one subnet on WAN and >> adding rest of the IPs as IF Alias. Everything is working fine. >> >> More interesting thing that I saw was, which ever subnet or gateway you >> use, traffic was always going through the gateway for /29 subnet. >> >> regards, >> Nishant >> >> On Thursday 13 June 2013 11:39 PM, Adam Thompson wrote: >> > This case sounds tailor-made for transparent mode, to me. >> > -Adam >> > >> > Alex Threlfall <a...@cyberprog.net> wrote: >> > >> >> My money would be Proxy Arp'ing them - but I might also consider going >> Media >> >> Convertor > 4 Port Mini Switch > WAN1 (/28) and WAN2 (/29) interfaces. >> >> There's probably a more elegant way of doing this tho. >> >> >> >> -- >> >> Alex Threlfall >> >> Cyberprog New Media >> >> www.cyberprog.net >> >> >> >> >> >>> -----Original Message----- >> >>> From: list-boun...@lists.pfsense.org [mailto:list- >> >>> boun...@lists.pfsense.org] On Behalf Of Nishant Sharma >> >>> Sent: 09 June 2013 14:11 >> >>> To: pfSense support and discussion >> >>> Subject: [pfSense] Two Subnets on WAN >> >>> >> >>> Hi, >> >>> >> >>> Here is a deployment scenario where ISP has provided two subnets - /29 >> >>> and /28. >> >>> >> >>> There are already servers running on public IPs from both the subnets >> and >> >> I >> >>> have to put pfSense in front of them. I can not change the IPs of the >> >> servers >> >>> so using one subnet on WAN and other one on DMZ is not possible. >> >>> >> >>> I am planning to use one of the IPs on the WAN as primary and use >> other >> >> IPs >> >>> for 1:1 NAT. Would it be possible if I add a different subnet in >> Virtual >> >> IPs on >> >>> WAN? Which one do I need to choose, IP Alias or Proxy Arp? >> >>> >> >>> I guess, it's the same router at the PE end which is routing both the >> >> subnets >> >>> back. There is no CPE router, just a media converter with Ethernet >> Out. >> >>> >> >>> Thanks in advance for your pointers. >> >> _______________________________________________ >> List mailing list >> List@lists.pfsense.org >> http://lists.pfsense.org/mailman/listinfo/list >> > > > _______________________________________________ > List mailing list > List@lists.pfsense.org > http://lists.pfsense.org/mailman/listinfo/list > >
_______________________________________________ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list
