hi, just my simple idea, not sure if it fits perfectly.
setup the interface on the firewall to 192.168.0.0/23 p.e. if-address 192.168.0.1 add a second virtual IP (carp) to the Lan IF 192.168.1.1 ( as gateway address for the second /24 ) add certain rules for it if neccessary. TROUBLESHOOTING: for checking if you have trouble with fw rules log in to the shell per ssh, press 8 and type in tcpdump -ni pflog0 ( not 100% sure if i remember right) fits to 192.168.0.0/24 and 192.168.1.0/24 clients can still use /24 as subnetmask use ipcalc for calculating the right numbers where should be fitting to your purposes if i remember well you cannot use 192.168.1.1 as starting net, thats against the subnetting rules of tcp-ip ( masking with a bitmask leads to 192.168.0.0/23) NO GO: DHCP in that interfaces with splitted solution for both /24 speak: dhcpd cannot easy differ to what /24 range he should give asked addresses ( wlan/wired will result in same addressrange than) everything beside that needs more setup e.g. putting mac-addresses in the DHCP-config. hth greetings michael -- = = = http://michael-schuh.net/ = = = Projektmanagement - IT-Consulting - Professional Services IT Michael Schuh Postfach 10 21 52 66021 Saarbrücken phone: 0681/8319664 mobil: 0175/5616453 @: m i c h a e l . s c h u h @ g m a i l . c o m = = = Ust-ID: DE251072318 = = = --------------------------------------------------------------------- To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
