On 9/2/2011 11:17 AM, Giacomo Di Ciocco wrote: > Hello everyone, > please consider this scenario: http://www.deffie.it/garbage/theproblem.png > > Servers are reaching the internet from their public IP in the /26 and > they have PFSense /26 IP as their default route, this is ok. > > Users from LAN are reaching the internet with the PFSense IP in the /30 > but it is not conceptually correct, how can make services and LANs to > reach the internet from the /26 address assigned to pfsense ?
That isn't a typical need, but I believe you can do that with some trickery. Add an 'other' type VIP for the pfSense IP in the /26, then edit your manual outbound NAT rule for the LAN subnet going out WAN, and have it translate to that IP. I have a vague recollection of someone I talked with doing that some time ago, I thought it worked, but don't quote me on that. :-) Jim --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected] Commercial support available - https://portal.pfsense.org
