On Fri, Oct 23, 2009 at 2:45 PM, Evgeny Yurchenko <evg.yu...@rogers.com> wrote: > Ron García-Vidal wrote: >> >> We have a /29 IP block through our ISP. The problem is, pfsense is >> going to be acting as a router off a /30 WAN. Is there any way to set >> up routing between the 2 IPs on the same NIC? Here's >> what I would *like* to do. >> >> Routable IP block >> WAN IP: X.X.X.10 >> Def Route: X.X.X.9 (ISP's router) >> >> Routable Internet IPs: Y.Y.Y.96/29 >> >> >> So I gave my WAN interface the IP# X.X.X.10 and a virtual IP of Y.Y.Y.97. >> If I ping X.X.X.10, I get a reply, but if I try Y.Y.Y.97, I get a TTL >> exceeded. >> >> (Of course, the LAN NIC sits on my non-routable private segment) >> >> Currently, we have yet another router that is dual-homed with one of each >> of the above IPs, but I'd like to consolidate the two machines, if possible. >> >> Any suggestions? >> > If your ISP routes Y.Y.Y.96/29 to you then it should not be a problem. > Configure ProxyARP on WAN and that is it. > Eugene.
And for the third opinion in this thread :) You want the 'other' VIP type. It's used in situations where you have a subnet routed to you and just need to perform NAT. It will not be pingable (unless you nat the ICMP to some internal host). --Bill --------------------------------------------------------------------- To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
