Yehuda Katz skrev:
On Sun, Jan 31, 2010 at 7:39 AM, Remko Lodder <re...@elvandar.org
<mailto:re...@elvandar.org>> wrote:
On Jan 31, 2010, at 12:14 PM, Martin Kruse Jensen wrote:
> Remko Lodder skrev:
>> On Jan 31, 2010, at 11:27 AM, Martin Kruse Jensen wrote:
>>
>>
>>
>>> Hi.
>>>
>>> I'm having some problems setting up NAT when using multiple
external adresses (ie. a /29 subnet). I have a WAN interface set
up as x.x.x.18/29 but when making NAT rules, I can't select the
individual adresses - only "WAN address" or "Any".
>>>
>>> When attempting to use 1:1 NAT I can't get it to work either -
and yes, of course I remembered to add firewall rules ;)
>>>
>>> Any hints would be appreciated!
>>>
>>> Regards,
>>> Martin Kruse
>>>
>>>
>>>
>>
>>
>> Consult the "Virtual Addresses" please:
>>
>> "
>> The virtual IP addresses defined on this page may be used in
NAT mappings.
>> You can check the status of your CARP Virtual IPs and
interfaces here.
>> "
>>
>> Cheers,
>> Remko
>>
>>
>>
> I have actually tried setting up "Virtual addresses" but I can't
save them - it fails with the following error:
> The following input errors were detected:
>
> • The MANAGEMENT IP address may not be used in a virtual
entry.
>
> "MANAGEMENT" is the name of my OPT1 interface but when setting
up the Virtual IP I actually selected WAN.
>
> I should problary mention that i am using 2.0-BETA1 built on Fri
Jan 22 08:25:58 EST 2010
>
> //Martin
Did you try a different IP then the one that is defined on the
interface itself?
so for starts if you have assigned .1 to the real interface, can
you create the .2 ip address as a virtual ip?
The WAN should usually be set to /32, and then you will be able to
create the Virtual IPs.
--
/"\ Best regards, | re...@freebsd.org
\ / Remko Lodder | re...@efnet
X http://www.evilcoder.org/ |
/ \ ASCII Ribbon Campaign | Against HTML Mail and News
---------------------------------------------------------------------
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
<mailto:support-unsubscr...@pfsense.com>
For additional commands, e-mail: support-h...@pfsense.com
<mailto:support-h...@pfsense.com>
Commercial support available - https://portal.pfsense.org
I've figured it out now! I changed the WAN IP to /31 and changed OPT2
configuration to have a static IP (it was previously set to "none" due
to it being bridged with LAN). Then I could create Virtual IP's, however
when they were configured as Proxy ARP I could only use one virtual IP -
defining #2 would break it. I changed them from Proxy ARP to "Other" and
now it works like a charm!
Thanks for your help!
//Martin
