OPNsense Forum

Archive => 19.1 Legacy Series => Topic started by: amitis5 on May 30, 2019, 11:22:21 pm

Title: Help Noob with Routing WAN IP group to second Opnsense Router
Post by: amitis5 on May 30, 2019, 11:22:21 pm

Hi Everyone,

Thanks in advance for the assistance.  I'm pulling my hair out here.

I have a set of IPs I need to route to a Opnsense box downstream.  Here's the scenario:

We have x.x.x.26 coming from the ISP with gateway of x.x.x.25.  I have setup one Opnsense firewall there and have connection.  From there I have to route block of public IPs, x.x.x.29/27.  x.x.x.28 the ISP has static route set back to x.x.x.26. 

I have the LAN on this gateway set to x.x.x.29/27.  On second Opnsense router (captive portal, vlans, guest network etc running) I statically set to x.x.x.30 with gateway of x.x.x.29 and I have internet connectivity. 

I need to pass public ips x.x.x.31 and x.x.x.32 from LAN on first router to 10.x.x.52 on LAN of second router for PCI compliance.  I have the VIPs setup on the second router x.x.x.31-58 and one to one nat for x.x.x.31 -> 10.x.x.52. 

How do I simply pass these IPs from the first router to the second router?  Essentially the ISP is requiring us to route our own IPs and I've never had to set this up before. 

First router has automatic outbound DNS, second as well.  I have firewall rules in router 2 on WAN to allow traffic to 10.x.x.52. 

Whoever can help me set this up, I have a pizza and beer delivery with your name on it. 

Thanks,

Jon

Title: Re: Help Noob with Routing WAN IP group to second Opnsense Router
Post by: amitis5 on June 02, 2019, 11:39:47 pm

I'm in a bind and really need to figure this out.  I've reached out for commercial support, but they're on vacation.  If there is someone willing to help me with this, I'm happy to pay for it.

Thanks again,

Title: Re: Help Noob with Routing WAN IP group to second Opnsense Router
Post by: amitis5 on June 03, 2019, 07:26:00 pm

This was solved with help from the ISP.  Routing issue on their side.