[pfSense Support] Subnets in same NIC
Guys, need to make a single LAN network card, plugged into a switch 3com, IP delivery for different grinding machines that may connect to the network, for example: Computers on the internal network, get the IP subnet 192.168.0.0/24 Computers visitors entering the network, get the IP subnet 192.168.1.0/24 Is there any way to do this? It would be a MAC address? This works beautifully in another proxy that the client had was a Linux Ubuntu, he had an eth0-1 / eth0-2 / eth0-3, Linux was sending the IP address according to the MAC table, that the same eth0, he could perceive only the virtual interface eth0 (192.168.0.0/24 = 1, 2 - 192.168.1.0/24, 3 - 192.168.2.0/24) The pfSense is virtualized, I tried using two NICs connected to the same vm_network, each virtual NIC with DHCP, put each IP address tied to the mac due, but sometimes the machines come in a network, sometimes on another network, I need a solution urgent for a client. I appreciate everyone's help! Ivanildo Galvão - MCP, MCT, MCSA, VSP Consultor de Tecnologia Tel. (84) 3201 2146 | Cel. (84) 9111 8873 ivani...@itservices.com.br| www.itservices.com.br Twitter: @ivanildogalvao -Mensagem original- De: Nicolas Roussi [mailto:nicolas.rou...@archimedean.org] Enviada em: terça-feira, 30 de agosto de 2011 19:38 Para: support@pfsense.com Assunto: [pfSense Support] Traffic Shaper ? Hi, i am running 1.2.3 and I need some ideas on how to limit and prioritize traffic This is the setup internet <---10Mbps--->MainFirewall (NAT)<---1000Mbps--->pfSense(NAT)<1000Mbps--->1600 wireless clients | | servers Besides the double NATing, first I would like to make sure that traffic that goes to the Internet only uses 2MBps. Second, I would like to block everything except 80,443,548, 25 and a few other services (I can do that in the firewall settings) Third, from those services, I would like to give priority and full bandwidth to AFP (548) then to web and then the rest. Is this possible? Any help is greatly appreciated. Thanks - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Subnets in same NIC
If your switch 3com is a managed one, maybe you can try to setup VLANs in the switch and inside your PFsense box settings. It's not so simple to do but it seems to be a cleaner solution. Isamar 2011/8/30 Ivanildo Galvão - IT Services > > Guys, need to make a single LAN network card, plugged into a switch 3com, > IP > delivery for different grinding machines that may connect to the network, > for example: > > Computers on the internal network, get the IP subnet 192.168.0.0/24 > Computers visitors entering the network, get the IP subnet 192.168.1.0/24 > > Is there any way to do this? It would be a MAC address? > > This works beautifully in another proxy that the client had was a Linux > Ubuntu, he had an eth0-1 / eth0-2 / eth0-3, Linux was sending the IP > address > according to the MAC table, that the same eth0, he could perceive only the > virtual interface eth0 (192.168.0.0/24 = 1, 2 - 192.168.1.0/24, 3 - > 192.168.2.0/24) > > The pfSense is virtualized, I tried using two NICs connected to the same > vm_network, each virtual NIC with DHCP, put each IP address tied to the mac > due, but sometimes the machines come in a network, sometimes on another > network, I need a solution urgent for a client. > > I appreciate everyone's help! > > > Ivanildo Galvão - MCP, MCT, MCSA, VSP > Consultor de Tecnologia > Tel. (84) 3201 2146 | Cel. (84) 9111 8873 > ivani...@itservices.com.br| www.itservices.com.br > Twitter: @ivanildogalvao > > > > > > > -Mensagem original- > De: Nicolas Roussi [mailto:nicolas.rou...@archimedean.org] > Enviada em: terça-feira, 30 de agosto de 2011 19:38 > Para: support@pfsense.com > Assunto: [pfSense Support] Traffic Shaper ? > > Hi, i am running 1.2.3 and I need some ideas on how to limit and prioritize > traffic This is the setup > > internet <---10Mbps--->MainFirewall > (NAT)<---1000Mbps--->pfSense(NAT)<1000Mbps--->1600 wireless clients >| >| > servers > > Besides the double NATing, first I would like to make sure that traffic > that > goes to the Internet only uses 2MBps. > Second, I would like to block everything except 80,443,548, 25 and a few > other services (I can do that in the firewall settings) Third, from those > services, I would like to give priority and full bandwidth to AFP (548) > then > to web and then the rest. > > Is this possible? > > Any help is greatly appreciated. > > Thanks > - > To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional > commands, e-mail: support-h...@pfsense.com > > Commercial support available - https://portal.pfsense.org > > > - > To unsubscribe, e-mail: support-unsubscr...@pfsense.com > For additional commands, e-mail: support-h...@pfsense.com > > Commercial support available - https://portal.pfsense.org > > -- Isamar Maia Cel. VIVO SSA: (55) 71-9146-8575 Cel. TIM SSA: (55) 71-9185-5264 Fixo: (55) 71-4062-8688 日本: +81-(0)3-4550-1212 Skype ID: isamar.maia
RES: [pfSense Support] Subnets in same NIC
Yeah, I know it works with VLAN, but wanted to implement something simpler, the problem is that the customer had this scenario before working with Proxywith Linux and pfSense he wants to have the same solution, on Linux it had asingle NIC which was subdivided into 03 virtual eth, eth each subnet representsa ranger, according to the MAC filter stations put Linux on their respective networks. I downloaded the version of pfSense RC3 today, here in VMware Workstationinstalled to see if I can find some option, but so far I see nothing that addressesthis need. Ivanildo Galvão - MCP, MCT, MCSA, VSP Consultor de Tecnologia Tel. (84) 3201 2146 | Cel. (84) 9111 8873 <mailto:ivani...@itservices.com.br> ivani...@itservices.com.br| <http://www.itservices.com.br/> www.itservices.com.br Twitter: @ivanildogalvao De: Isamar Maia [mailto:isa...@gmail.com] Enviada em: terça-feira, 30 de agosto de 2011 21:30 Para: support@pfsense.com Assunto: Re: [pfSense Support] Subnets in same NIC If your switch 3com is a managed one, maybe you can try to setup VLANs in the switch and inside your PFsense box settings. It's not so simple to do but it seems to be a cleaner solution. Isamar 2011/8/30 Ivanildo Galvão - IT Services Guys, need to make a single LAN network card, plugged into a switch 3com, IP delivery for different grinding machines that may connect to the network, for example: Computers on the internal network, get the IP subnet 192.168.0.0/24 Computers visitors entering the network, get the IP subnet 192.168.1.0/24 Is there any way to do this? It would be a MAC address? This works beautifully in another proxy that the client had was a Linux Ubuntu, he had an eth0-1 / eth0-2 / eth0-3, Linux was sending the IP address according to the MAC table, that the same eth0, he could perceive only the virtual interface eth0 (192.168.0.0/24 = 1, 2 - 192.168.1.0/24, 3 - 192.168.2.0/24) The pfSense is virtualized, I tried using two NICs connected to the same vm_network, each virtual NIC with DHCP, put each IP address tied to the mac due, but sometimes the machines come in a network, sometimes on another network, I need a solution urgent for a client. I appreciate everyone's help! Ivanildo Galvão - MCP, MCT, MCSA, VSP Consultor de Tecnologia Tel. (84) 3201 2146 | Cel. (84) 9111 8873 ivani...@itservices.com.br| www.itservices.com.br Twitter: @ivanildogalvao -Mensagem original- De: Nicolas Roussi [mailto:nicolas.rou...@archimedean.org] Enviada em: terça-feira, 30 de agosto de 2011 19:38 Para: support@pfsense.com Assunto: [pfSense Support] Traffic Shaper ? Hi, i am running 1.2.3 and I need some ideas on how to limit and prioritize traffic This is the setup internet <---10Mbps--->MainFirewall (NAT)<---1000Mbps--->pfSense(NAT)<1000Mbps--->1600 wireless clients | | servers Besides the double NATing, first I would like to make sure that traffic that goes to the Internet only uses 2MBps. Second, I would like to block everything except 80,443,548, 25 and a few other services (I can do that in the firewall settings) Third, from those services, I would like to give priority and full bandwidth to AFP (548) then to web and then the rest. Is this possible? Any help is greatly appreciated. Thanks - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org -- Isamar Maia Cel. VIVO SSA: (55) 71-9146-8575 Cel. TIM SSA: (55) 71-9185-5264 Fixo: (55) 71-4062-8688 日本: +81-(0)3-4550-1212 Skype ID: isamar.maia <>
Re: [pfSense Support] Subnets in same NIC
On Tue, Aug 30, 2011 at 8:39 PM, Ivanildo Galvão - IT Services < ivani...@itservices.com.br> wrote: > Yeah, I know it works with VLAN, but wanted to implement something simpler, > the problem is that the customer had this scenario before working with > Proxywith Linux and pfSense he wants to have the same solution, on Linux > it had asingle NIC which was subdivided into 03 virtual eth, eth each > subnet representsa ranger, according to the MAC filter stations put Linux on > their respective networks. > > I downloaded the version of pfSense RC3 today, here in VMware > Workstationinstalled to see if I can find some option, but so far I see > nothing that addressesthis need. > That's what IP alias virtual IPs are for. It's generally not a good practice to do so as having multiple subnets on a single broadcast domain is ugly, largely pointless, and considered poor network design, but you can.
Re: [pfSense Support] Subnets in same NIC
I know the kind of workaround of this scenario. No sure if it's possible using PFSense's DHCP stuff. I would try to set a /16 network, like 192.168.0.0/16 for the LAN interface, and define static IPs through DHCP service settings, for different profiles and users. Anyway, we cant' say it's a safe way. isamar 2011/8/30 Ivanildo Galvão - IT Services > Yeah, I know it works with VLAN, but wanted to implement something simpler, > the problem is that the customer had this scenario before working with > Proxywith Linux and pfSense he wants to have the same solution, on Linux > it had asingle NIC which was subdivided into 03 virtual eth, eth each > subnet representsa ranger, according to the MAC filter stations put Linux on > their respective networks. > > I downloaded the version of pfSense RC3 today, here in VMware > Workstationinstalled to see if I can find some option, but so far I see > nothing that addressesthis need. > > ** ** > > * * > > *Ivanildo Galvão - **MCP, MCT, MCSA, VSP* > > *Consultor de Tecnologia* > > Tel. (84) 3201 2146 | Cel. (84) 9111 8873 > > ivani...@itservices.com.br| www.itservices.com.br > > Twitter: @ivanildogalvao > > > > ** ** > > * * > > * * > > * * > > ** ** > > *De:* Isamar Maia [mailto:isa...@gmail.com] > *Enviada em:* terça-feira, 30 de agosto de 2011 21:30 > *Para:* support@pfsense.com > *Assunto:* Re: [pfSense Support] Subnets in same NIC > > ** ** > > > If your switch 3com is a managed one, maybe you can try to setup VLANs > in the switch and inside your PFsense box settings. > > It's not so simple to do but it seems to be a cleaner solution. > > > Isamar > > > > 2011/8/30 Ivanildo Galvão - IT Services > > > Guys, need to make a single LAN network card, plugged into a switch 3com, > IP > delivery for different grinding machines that may connect to the network, > for example: > > Computers on the internal network, get the IP subnet 192.168.0.0/24 > Computers visitors entering the network, get the IP subnet 192.168.1.0/24 > > Is there any way to do this? It would be a MAC address? > > This works beautifully in another proxy that the client had was a Linux > Ubuntu, he had an eth0-1 / eth0-2 / eth0-3, Linux was sending the IP > address > according to the MAC table, that the same eth0, he could perceive only the > virtual interface eth0 (192.168.0.0/24 = 1, 2 - 192.168.1.0/24, 3 - > 192.168.2.0/24) > > The pfSense is virtualized, I tried using two NICs connected to the same > vm_network, each virtual NIC with DHCP, put each IP address tied to the mac > due, but sometimes the machines come in a network, sometimes on another > network, I need a solution urgent for a client. > > I appreciate everyone's help! > > > Ivanildo Galvão - MCP, MCT, MCSA, VSP > Consultor de Tecnologia > Tel. (84) 3201 2146 | Cel. (84) 9111 8873 > ivani...@itservices.com.br| www.itservices.com.br > Twitter: @ivanildogalvao > > > > > > > -Mensagem original- > De: Nicolas Roussi [mailto:nicolas.rou...@archimedean.org] > Enviada em: terça-feira, 30 de agosto de 2011 19:38 > Para: support@pfsense.com > Assunto: [pfSense Support] Traffic Shaper ? > > Hi, i am running 1.2.3 and I need some ideas on how to limit and prioritize > traffic This is the setup > > internet <---10Mbps--->MainFirewall > (NAT)<---1000Mbps--->pfSense(NAT)<1000Mbps--->1600 wireless clients >| >| > servers > > Besides the double NATing, first I would like to make sure that traffic > that > goes to the Internet only uses 2MBps. > Second, I would like to block everything except 80,443,548, 25 and a few > other services (I can do that in the firewall settings) Third, from those > services, I would like to give priority and full bandwidth to AFP (548) > then > to web and then the rest. > > Is this possible? > > Any help is greatly appreciated. > > Thanks > - > To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional > commands, e-mail: support-h...@pfsense.com > > Commercial support available - https://portal.pfsense.org > > > - > To unsubscribe, e-mail: support-unsubscr...@pfsense.com > For additional commands, e-mail: support-h...@pfsense.com > > Commercial support available - https://portal.pfsense.org > > > > > -- > Isamar Maia > Cel. VIVO SSA: (55) 71-9146-8575 > Cel. TIM SSA: (55) 71-9185-5264 > Fixo: (55) 71-4062-8688 > 日本: +81-(0)3-4550-1212 > Skype ID: isamar.maia > -- Isamar Maia Cel. VIVO SSA: (55) 71-9146-8575 Cel. TIM SSA: (55) 71-9185-5264 Fixo: (55) 71-4062-8688 日本: +81-(0)3-4550-1212 Skype ID: isamar.maia
RES: [pfSense Support] Subnets in same NIC
Without doubt, I agree with you. The ideal would be to create VLANs, or have more than one network interface and each connected to a network, or switch to adifferent wireless AP, but when the customer does not have these resources and how've used Linux before and asked to do the same with pfSense, I accepted to do this on your network. So the solution lay in pfSense create Virtual IP, is it? The setting is the firewalltab, correct? By creating a virtual IPO rager, attached to the LAN interface? Ivanildo Galvão - MCP, MCT, MCSA, VSP Consultor de Tecnologia Tel. (84) 3201 2146 | Cel. (84) 9111 8873 <mailto:ivani...@itservices.com.br> ivani...@itservices.com.br| <http://www.itservices.com.br/> www.itservices.com.br Twitter: @ivanildogalvao De: Chris Buechler [mailto:cbuech...@gmail.com] Enviada em: terça-feira, 30 de agosto de 2011 21:44 Para: support@pfsense.com Assunto: Re: [pfSense Support] Subnets in same NIC On Tue, Aug 30, 2011 at 8:39 PM, Ivanildo Galvão - IT Services wrote: Yeah, I know it works with VLAN, but wanted to implement something simpler, the problem is that the customer had this scenario before working with Proxywith Linux and pfSense he wants to have the same solution, on Linux it had asingle NIC which was subdivided into 03 virtual eth, eth each subnet representsa ranger, according to the MAC filter stations put Linux on their respective networks. I downloaded the version of pfSense RC3 today, here in VMware Workstationinstalled to see if I can find some option, but so far I see nothing that addressesthis need. That's what IP alias virtual IPs are for. It's generally not a good practice to do so as having multiple subnets on a single broadcast domain is ugly, largely pointless, and considered poor network design, but you can. <>
Re: [pfSense Support] Subnets in same NIC
I wouldn't bet on this approach. Create a /16 network, 192.168.0.0/255.255.0.0 and live happy. Isamar 2011/8/30 Ivanildo Galvão - IT Services > Without doubt, I agree with you. The ideal would be to create VLANs, or > have more than one network interface and each connected to a network, or > switch to adifferent wireless AP, but when the customer does not have these > resources and how've used Linux before and asked to do the same with > pfSense, I accepted to do this on your network. > > So the solution lay in pfSense create Virtual IP, is it? The setting is > the firewalltab, correct? By creating a virtual IPO rager, attached to the > LAN interface? > > ** ** > > * * > > *Ivanildo Galvão - **MCP, MCT, MCSA, VSP* > > *Consultor de Tecnologia* > > Tel. (84) 3201 2146 | Cel. (84) 9111 8873 > > ivani...@itservices.com.br| www.itservices.com.br > > Twitter: @ivanildogalvao > > > > ** ** > > * * > > * * > > * * > > ** ** > > *De:* Chris Buechler [mailto:cbuech...@gmail.com] > *Enviada em:* terça-feira, 30 de agosto de 2011 21:44 > > *Para:* support@pfsense.com > *Assunto:* Re: [pfSense Support] Subnets in same NIC > > ** ** > > ** ** > > On Tue, Aug 30, 2011 at 8:39 PM, Ivanildo Galvão - IT Services < > ivani...@itservices.com.br> wrote: > > Yeah, I know it works with VLAN, but wanted to implement something simpler, > the problem is that the customer had this scenario before working with > Proxywith Linux and pfSense he wants to have the same solution, on > Linux it had asingle NIC which was subdivided > into 03 virtual eth, eth each subnet representsa ranger, according to > the MAC filter stations put Linux on their respective networks. > > I downloaded the version of pfSense RC3 today, here > in VMware Workstationinstalled to see if I can find some option, but so > far I see nothing that addressesthis need. > > ** ** > > That's what IP alias virtual IPs are for. It's generally not a good > practice to do so as having multiple subnets on a single broadcast domain is > ugly, largely pointless, and considered poor network design, but you can. > > > ** ** > -- Isamar Maia Cel. VIVO SSA: (55) 71-9146-8575 Cel. TIM SSA: (55) 71-9185-5264 Fixo: (55) 71-4062-8688 日本: +81-(0)3-4550-1212 Skype ID: isamar.maia
Re: [pfSense Support] Subnets in same NIC
1) Define one network card. It will be your WAN. 2) Define another network card. It will be your LAN. 3) The WAN side, it will be your global IP address 4) In the LAN side, define your IP address 192.168.0.1 with netmask 255.255.0.0 5) Define DHCP service statically with all MAC Addresses, with 192.168.1.X and 192.168.0.Y addresses, or the dynamic range of your preference. 6) Forget the damn virtual IP/Linux workaround or "gambiarra", in good Portuguese. 7) Pay me a beer with goat meat when I go to Natal. 2011/8/30 Ivanildo Galvão - IT Services > I do not understand, but because they create a network of 16-bit? Can > youexplain your idea, sorry, but I'm not seeing the solution. > > The pfSense now has 03 virtual NICs, all on the same physical interface, > it isvirtualized on VMware, the physical network card is a single switch. > Type as shown below. > > ** ** > > > > ** ** > > * * > > *Ivanildo Galvão - **MCP, MCT, MCSA, VSP* > > *Consultor de Tecnologia* > > Tel. (84) 3201 2146 | Cel. (84) 9111 8873 > > ivani...@itservices.com.br| www.itservices.com.br > > Twitter: @ivanildogalvao > > > > ** ** > > * * > > * * > > * * > > ** ** > > *De:* Isamar Maia [mailto:isa...@gmail.com] > *Enviada em:* terça-feira, 30 de agosto de 2011 21:59 > > *Para:* support@pfsense.com > *Assunto:* Re: [pfSense Support] Subnets in same NIC > > ** ** > > > I wouldn't bet on this approach. > > Create a /16 network, 192.168.0.0/255.255.0.0 and live happy. > > Isamar > > > > 2011/8/30 Ivanildo Galvão - IT Services > > Without doubt, I agree with you. The ideal would be to create VLANs, or > have more than one network interface and each connected to a > network, or switch to adifferent wireless AP, but when the customer does not > have these resources and how've used Linux before and asked to do the > same with pfSense, I accepted to do this on your network. > > So the solution lay in pfSense create Virtual IP, is it? The setting > is the firewalltab, correct? By creating a virtual IPO rager, attached > to the LAN interface? > > > > * * > > *Ivanildo Galvão - **MCP, MCT, MCSA, VSP* > > *Consultor de Tecnologia* > > Tel. (84) 3201 2146 | Cel. (84) 9111 8873 > > ivani...@itservices.com.br| www.itservices.com.br > > Twitter: @ivanildogalvao **** > > > > > > * * > > * * > > * * > > > > *De:* Chris Buechler [mailto:cbuech...@gmail.com] > *Enviada em:* terça-feira, 30 de agosto de 2011 21:44 > > > *Para:* support@pfsense.com > *Assunto:* Re: [pfSense Support] Subnets in same NIC > > > > > > On Tue, Aug 30, 2011 at 8:39 PM, Ivanildo Galvão - IT Services < > ivani...@itservices.com.br> wrote: > > Yeah, I know it works with VLAN, but wanted to implement something simpler, > the problem is that the customer had this scenario before working with > Proxywith Linux and pfSense he wants to have the same solution, on > Linux it had asingle NIC which was subdivided > into 03 virtual eth, eth each subnet representsa ranger, according to > the MAC filter stations put Linux on their respective networks. > > I downloaded the version of pfSense RC3 today, here > in VMware Workstationinstalled to see if I can find some option, but so > far I see nothing that addressesthis need. > > > > That's what IP alias virtual IPs are for. It's generally not a good > practice to do so as having multiple subnets on a single broadcast domain is > ugly, largely pointless, and considered poor network design, but you can. > > > > > > > > -- > Isamar Maia > Cel. VIVO SSA: (55) 71-9146-8575 > Cel. TIM SSA: (55) 71-9185-5264 > Fixo: (55) 71-4062-8688 > 日本: +81-(0)3-4550-1212 > Skype ID: isamar.maia > -- Isamar Maia Cel. VIVO SSA: (55) 71-9146-8575 Cel. TIM SSA: (55) 71-9185-5264 Fixo: (55) 71-4062-8688 日本: +81-(0)3-4550-1212 Skype ID: isamar.maia
RES: [pfSense Support] Subnets in same NIC
Hahhaa, beer goat meat? Or maybe goat meat, corned beef, among manyother meats typical of the Brazilian Northeast. Well, the solution pfSense, I think I will advise clients to do so. At the interface LAN - 192.168.0.0/24, use Static DHCP using MAC addressand disable DHCP dynamic, and uncheck Enable DHCP server that sits just above the screen. So do not have DHCP dynamic and static for i even squeak. In OPT1 interface that is also the same switch, make the same configuration, but for the network 192.168.1.1/24. Working, keep quiet as the customer wants, even though this is a "workaround" but it works, because no one without permission will get the IP network. And then in other clients, it is the right way, with a network card connected to eachswitch to different or the same, only using VLAN. Ivanildo Galvão - MCP, MCT, MCSA, VSP Consultor de Tecnologia Tel. (84) 3201 2146 | Cel. (84) 9111 8873 <mailto:ivani...@itservices.com.br> ivani...@itservices.com.br| <http://www.itservices.com.br/> www.itservices.com.br Twitter: @ivanildogalvao De: Isamar Maia [mailto:isa...@gmail.com] Enviada em: quarta-feira, 31 de agosto de 2011 07:19 Para: support@pfsense.com Assunto: Re: [pfSense Support] Subnets in same NIC 1) Define one network card. It will be your WAN. 2) Define another network card. It will be your LAN. 3) The WAN side, it will be your global IP address 4) In the LAN side, define your IP address 192.168.0.1 with netmask 255.255.0.0 5) Define DHCP service statically with all MAC Addresses, with 192.168.1.X and 192.168.0.Y addresses, or the dynamic range of your preference. 6) Forget the damn virtual IP/Linux workaround or "gambiarra", in good Portuguese. 7) Pay me a beer with goat meat when I go to Natal. 2011/8/30 Ivanildo Galvão - IT Services I do not understand, but because they create a network of 16-bit? Can youexplain your idea, sorry, but I'm not seeing the solution. The pfSense now has 03 virtual NICs, all on the same physical interface, it isvirtualized on VMware, the physical network card is a single switch. Type as shown below. Ivanildo Galvão - MCP, MCT, MCSA, VSP Consultor de Tecnologia Tel. (84) 3201 2146 | Cel. (84) 9111 8873 ivani...@itservices.com.br| www.itservices.com.br <http://www.itservices.com.br/> Twitter: @ivanildogalvao De: Isamar Maia [mailto:isa...@gmail.com] Enviada em: terça-feira, 30 de agosto de 2011 21:59 Para: support@pfsense.com Assunto: Re: [pfSense Support] Subnets in same NIC I wouldn't bet on this approach. Create a /16 network, 192.168.0.0/255.255.0.0 and live happy. Isamar 2011/8/30 Ivanildo Galvão - IT Services Without doubt, I agree with you. The ideal would be to create VLANs, or have more than one network interface and each connected to a network, or switch to adifferent wireless AP, but when the customer does not have these resources and how've used Linux before and asked to do the same with pfSense, I accepted to do this on your network. So the solution lay in pfSense create Virtual IP, is it? The setting is the firewalltab, correct? By creating a virtual IPO rager, attached to the LAN interface? Ivanildo Galvão - MCP, MCT, MCSA, VSP Consultor de Tecnologia Tel. (84) 3201 2146 | Cel. (84) 9111 8873 ivani...@itservices.com.br| www.itservices.com.br <http://www.itservices.com.br/> Twitter: @ivanildogalvao De: Chris Buechler [mailto:cbuech...@gmail.com] Enviada em: terça-feira, 30 de agosto de 2011 21:44 Para: support@pfsense.com Assunto: Re: [pfSense Support] Subnets in same NIC On Tue, Aug 30, 2011 at 8:39 PM, Ivanildo Galvão - IT Services wrote: Yeah, I know it works with VLAN, but wanted to implement something simpler, the problem is that the customer had this scenario before working with Proxywith Linux and pfSense he wants to have the same solution, on Linux it had asingle NIC which was subdivided into 03 virtual eth, eth each subnet representsa ranger, according to the MAC filter stations put Linux on their respective networks. I downloaded the version of pfSense RC3 today, here in VMware Workstationinstalled to see if I can find some option, but so far I see nothing that addressesthis need. That's what IP alias virtual IPs are for. It's generally not a good practice to do so as having multiple subnets on a single broadcast domain is ugly, largely pointless, and considered poor network design, but you can. -- Isamar Maia Cel. VIVO SSA: (55) 71-9146-8575 Cel. TIM SSA: (55) 71-9185-5264 Fixo: (55) 71-4062-8688 日本: +81-(0)3-4550-1212 Skype ID: isamar.maia -- Isamar Maia Cel. VIVO SSA: (55) 71-9146-8575 Cel. TIM SSA: (55) 71-9185-5264 Fixo: (55) 71-4062-8688 日本: +81-(0)3-4550-1212 Skype ID: isamar.maia <>
Re: RES: [pfSense Support] Subnets in same NIC
- "Ivanildo Galvão - IT Services" escribió: > Without doubt , I agree with you. The ideal would be to create VLANs, > or have more than one network interface and each connected to a > network, or switch to adifferent wireless AP , but when the customer > does not have these resources and how 've used Linux before and asked > to do the same with pfSense , I accepted to do this on your network . > > So the solution lay in pfSense create Virtual IP , is it? The setting > is the firewalltab , correct? By creating a virtual IPO rager , > attached to the LAN interface ? > > > > > > Ivanildo Galvão - MCP, MCT, MCSA, VSP > > Consultor de Tecnologia Hi guys,for Virtual ips, go to menu: Firewall -> Virtual IP -> Ip alias (http://doc.pfsense.org/index.php/2.0_New_Features_and_Changes#Aliases ) Obviously, you CAN'T use services like dhcp, because the physical media is common to all sub-networks. - Plan B, http://produto.mercadolivre.com.br/MLB-196366203-switches-cisco-12-portas-_JM US$50 and enjoy... more secure, flexible, with dhcp, etc. bye - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
