OPNsense Forum

Archive => 17.7 Legacy Series => Topic started by: Rayman on August 15, 2017, 12:30:26 pm

Title: 2 subnets of 64 ip addresses on a single wan interface
Post by: Rayman on August 15, 2017, 12:30:26 pm
Hi,

We currently have a SonicWALL in our data center which we are looking to replace with an Opnsense appliance.

On the WAN interface of the SonicWALL we have 2 /26 (64 ip addresses).

So, I would like to know if we can configure the Opnsense appliance with for example
5.5.5.1 /26
5.5.6.1 /26

Of course we would need to be able to use NAT on all of these addresses and so on.

Looking forward for a reply, thanks!

Kind regards,
Ray
Title: Re: 2 subnets of 64 ip addresses on a single wan interface
Post by: fabian on August 15, 2017, 01:23:26 pm
You should be able to add additional IPs using the virtual IP configuration
Title: Re: 2 subnets of 64 ip addresses on a single wan interface
Post by: Rayman on August 15, 2017, 04:03:44 pm
Hi Fabian,

Thanks for your reply, sounds logical. However, your write should be able.

I'm wondering if anyone has done this before. If this don't work we can't use this. If we use the virtual ips, we (of course) would need to be able to nat these ip addresses.

Kind regards,
Ray
Title: Re: 2 subnets of 64 ip addresses on a single wan interface
Post by: franco on August 15, 2017, 04:44:31 pm
Hi Ray,

It seems correct, one of those must be the virtual IP, the other one is the static WAN configuration:

5.5.5.1/26
5.5.6.1/26

Inside both networks (not 5.5.x.1)  you can pass each IP via 1:1 NAT onto internal servers for "full" exposure.
If you need more IPs on the WANs for port forwarding, say 5.5.6.2:2222 -> 192.168.2.2:22 you want to add another virtual IP 5.5.6.2/26 to the WAN and use the normal port-forward NAT instead.


Cheers,
Franco
Title: Re: 2 subnets of 64 ip addresses on a single wan interface
Post by: Rayman on August 15, 2017, 07:22:38 pm
Thanks!