Re: [pfSense Support] How do I break down a /22 into smaller subnets to use behind(LAN) side of my pfsense box
On 05.10.10 20:43, Adam Thompson wrote: (On an unrelated note - anyone know why I can't send emails to this list from my BlackBerry? Works for other mailman-managed lists elsewhere...) As I remember this is not mailman. It is ezmlm. And I cannot send mails from my regular account too. Because we do SRS and ezmlm is not aware of this. Maybe Your BB sends SRS or BATV envelopes.. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
[pfSense Support] Re: (Possible Spam) RE: [pfSense Support] How do I break down a /22 into smaller subnets to use behind(LAN) side of my pfsense box
we have done many a /22 using pfsense with ease - even running bgp. Reason I suggest maybe having them stay on pfsense in this case is - if they are asking this question - they might be completely lost in Cisco Land. I have recently moved to using vyatta first - their paid product is great - opensource lacks support imho I agree w/ you if you have the experience however ;-) using cisco or something similar On Oct 4, 2010, at 7:33 PM, Nathan Eisenberg wrote: -Original Message- From: David Burgess [mailto:apt@gmail.com] Sent: Monday, October 04, 2010 4:23 PM To: support@pfsense.com Subject: Re: [pfSense Support] How do I break down a /22 into smaller subnets to use behind(LAN) side of my pfsense box On Mon, Oct 4, 2010 at 5:19 PM, Chris Flugstad ch...@cascadelink.com wrote: -how to i break up the large block into smaller blocks Like this? http://www.vlsm-calc.net/ db It depends on how it's delivered to you, but typically, your provider will allocate a /30 to use for the route between them and your WAN interface, and then route (via static routes or a dynamic routing protocol) the /22 to your box. You can then create the various VLAN and physical interfaces for the internal network and assign the smaller blocks to each interface. So, in short, your first step is likely going to be 'talk to your transit provider' to get a /30 setup. To be honest, I wouldn't use a pfsense box to sit in front of a /22 though. I'd use a Cisco router, and then slice up the first /26 or /27 into some reserved space for /30's. Then you can use the /30's to route your various subnets to multiple PFsense boxes as needed. By the way, it would be awesome if PFsense supported RFC 3021 and implement /31 support... could be twice as efficient with routing networks. Best Regards, Nathan Eisenberg Atlas Networks | Sr. Systems Administrator office: 206.577.3078 | www.atlasnetworks.us - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
[pfSense Support] Re: (Possible Spam) RE: [pfSense Support] How do I break down a /22 into smaller subnets to use behind(LAN) side of my pfsense box
we have done many a /22 using pfsense with ease - even running bgp. Reason I suggest maybe having them stay on pfsense in this case is - if they are asking this question - they might be completely lost in Cisco Land. I have recently moved to using vyatta first - their paid product is great - opensource lacks support imho I agree w/ you if you have the experience however ;-) using cisco or something similar On Oct 4, 2010, at 7:33 PM, Nathan Eisenberg wrote: -Original Message- From: David Burgess [mailto:apt@gmail.com] Sent: Monday, October 04, 2010 4:23 PM To: support@pfsense.com Subject: Re: [pfSense Support] How do I break down a /22 into smaller subnets to use behind(LAN) side of my pfsense box On Mon, Oct 4, 2010 at 5:19 PM, Chris Flugstad ch...@cascadelink.com wrote: -how to i break up the large block into smaller blocks Like this? http://www.vlsm-calc.net/ db It depends on how it's delivered to you, but typically, your provider will allocate a /30 to use for the route between them and your WAN interface, and then route (via static routes or a dynamic routing protocol) the /22 to your box. You can then create the various VLAN and physical interfaces for the internal network and assign the smaller blocks to each interface. So, in short, your first step is likely going to be 'talk to your transit provider' to get a /30 setup. To be honest, I wouldn't use a pfsense box to sit in front of a /22 though. I'd use a Cisco router, and then slice up the first /26 or /27 into some reserved space for /30's. Then you can use the /30's to route your various subnets to multiple PFsense boxes as needed. By the way, it would be awesome if PFsense supported RFC 3021 and implement /31 support... could be twice as efficient with routing networks. Best Regards, Nathan Eisenberg Atlas Networks | Sr. Systems Administrator office: 206.577.3078 | www.atlasnetworks.us - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
RE: [pfSense Support] How do I break down a /22 into smaller subnets to use behind(LAN) side of my pfsense box
Yeah, oops. :-) LOL - I'm sitting in a Microsoft conference geared to large telecom operators providing HDTV programming, and they announced that IPv6 is *not* on their roadmap because we haven't heard from customers that address exhaustion is a significant problem. Given that ATT is the biggest customer for this particular product, I have to wonder WTF is going on inside both ATT and Microsoft. Not on the roadmap. Geez. Is there anyone on this list who *hasn't* run into issues because of IPv4 address exhaustion yet? (On an unrelated note - anyone know why I can't send emails to this list from my BlackBerry? Works for other mailman-managed lists elsewhere...) -Adam -Original Message- From: Nathan Eisenberg [mailto:nat...@atlasnetworks.us] Sent: Monday, October 04, 2010 16:49 To: support@pfsense.com Subject: RE: [pfSense Support] How do I break down a /22 into smaller subnets to use behind(LAN) side of my pfsense box Let's say you wanted to split your /22 into two /21s. I can make two /21s out of a single /22? Sweet jesus, you've solved the IP exhaustion crisis! :-) Nathan --- -- To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] How do I break down a /22 into smaller subnets to use behind(LAN) side of my pfsense box
On Mon, Oct 4, 2010 at 5:19 PM, Chris Flugstad ch...@cascadelink.com wrote: -how to i break up the large block into smaller blocks Like this? http://www.vlsm-calc.net/ db - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] How do I break down a /22 into smaller subnets to use behind(LAN) side of my pfsense box
I know how to make them smaller, but don't i need to set the smaller subs in pfsense? i wasnt specific i guess. i know what smaller subnets would look like, but i'd think id have to set them up in pfsense, so I am asking something in which I havent done before and therefor am lost ;) -chris On 10/4/2010 4:23 PM, David Burgess wrote: On Mon, Oct 4, 2010 at 5:19 PM, Chris Flugstadch...@cascadelink.com wrote: -how to i break up the large block into smaller blocks Like this? http://www.vlsm-calc.net/ db - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
RE: [pfSense Support] How do I break down a /22 into smaller subnets to use behind(LAN) side of my pfsense box
-Original Message- From: David Burgess [mailto:apt@gmail.com] Sent: Monday, October 04, 2010 4:23 PM To: support@pfsense.com Subject: Re: [pfSense Support] How do I break down a /22 into smaller subnets to use behind(LAN) side of my pfsense box On Mon, Oct 4, 2010 at 5:19 PM, Chris Flugstad ch...@cascadelink.com wrote: -how to i break up the large block into smaller blocks Like this? http://www.vlsm-calc.net/ db It depends on how it's delivered to you, but typically, your provider will allocate a /30 to use for the route between them and your WAN interface, and then route (via static routes or a dynamic routing protocol) the /22 to your box. You can then create the various VLAN and physical interfaces for the internal network and assign the smaller blocks to each interface. So, in short, your first step is likely going to be 'talk to your transit provider' to get a /30 setup. To be honest, I wouldn't use a pfsense box to sit in front of a /22 though. I'd use a Cisco router, and then slice up the first /26 or /27 into some reserved space for /30's. Then you can use the /30's to route your various subnets to multiple PFsense boxes as needed. By the way, it would be awesome if PFsense supported RFC 3021 and implement /31 support... could be twice as efficient with routing networks. Best Regards, Nathan Eisenberg Atlas Networks | Sr. Systems Administrator office: 206.577.3078 | www.atlasnetworks.us
RE: [pfSense Support] How do I break down a /22 into smaller subnets to use behind(LAN) side of my pfsense box
I'm not sure if this is too low-level an answer, but... Let's say you wanted to split your /22 into two /21s. Instead of configuring the LAN interface with the /22, you could configure the LAN interface with the first /21 network, and create an OPT1 interface and configure it with the second /21. Suppose you have obtained 10.10.8.0/22. (Pretend it's publicly-routable address space for this explanation.) Your provider has agreed to route that netblock for you. (Regardless of which one of you advertises it.) Your provider might assign 192.168.255.252/30 as the link to you, using .253 for their end and .254 for your end. Your WAN address will then be 192.168.255.254/30, your default gw would be 192.168.255.253. Suppose you needed to split your /22 into four (traditional class C) /24s. You might configure the LAN interface as 10.10.8.0/24, OPT1 as 10.10.9.0/24, OPT2 as 10.10.10.0/24, and OPT3 as 10.10.11.0/24. Not sure if that's the level of example you're looking for or not... -Adam Thompson athom...@c3a.ca From: Chris Flugstad [ch...@cascadelink.com] Sent: October-04-10 18:32 To: support@pfsense.com Subject: Re: [pfSense Support] How do I break down a /22 into smaller subnets to use behind(LAN) side of my pfsense box I know how to make them smaller, but don't i need to set the smaller subs in pfsense? i wasnt specific i guess. i know what smaller subnets would look like, but i'd think id have to set them up in pfsense, so I am asking something in which I havent done before and therefor am lost ;) -chris On 10/4/2010 4:23 PM, David Burgess wrote: On Mon, Oct 4, 2010 at 5:19 PM, Chris Flugstadch...@cascadelink.com wrote: -how to i break up the large block into smaller blocks Like this? http://www.vlsm-calc.net/ db - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
RE: [pfSense Support] How do I break down a /22 into smaller subnets to use behind(LAN) side of my pfsense box
Let's say you wanted to split your /22 into two /21s. I can make two /21s out of a single /22? Sweet jesus, you've solved the IP exhaustion crisis! :-) Nathan - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
