OPNsense Forum
English Forums => General Discussion => Topic started by: islusr on December 13, 2016, 06:12:57 pm
-
Hi all. I'm a OPNsense rookie, but an experienced user configuring routers and firewalls.
I want to know if with OPNsense is possible to complete the following setup:
(http://i64.tinypic.com/2hnt4rr.png)
The idea is that the hosts at A zone can access the hosts at the B zone and they can answer (only answer, not create new connections).
To acomplish that, the hosts at A zone are using virtual IP@s that represents the hosts at the B zone (ex. 10.100.0.0/24) and using the OPNsense as the access router for the 10.100.0.0/24 network.
The OPNsense must accept packets coming from the ifaceA and NAT both, source and destination, to convert the destination addresses to 172.25.0.0/24 address on B zone and the source addresses to its own IP@ at ifaceB, and obviously revert the NATs for the answers.
Please see that the IP@s for ifaceA and ifaceB are the same, it's mandatory for my setup.
I've this setup working using a Linux box with netfilter(forward, mangle and nat rules) and iproute2 (ip rules and multiple routing tables), but I'm really interested in OPNsense and need to know if it's possible to achieve this setup and how.
Thanks a lot in advance !!!!
-
No answers after two weeks ...
Anybody could help?
Thanks
-
Please, an expert user? moderators?
Thanks a lot in advance