OPNsense Forum

Archive => 17.7 Legacy Series => Topic started by: vikozo on August 25, 2017, 11:40:21 am

Title: best Practise for adding the FW
Post by: vikozo on August 25, 2017, 11:40:21 am

hello
i have a running web/Mail/DNS Server.
i now wish to Change the IP on the Server/Router/Switch
and also to have as short as possible the downtime of my Server.
(http://wombat3.kozo.ch/j/images/net/myNet_2017-08.png)

is there somewhere a documentation, a best Practise how to do it?

As example on my fritzbox i will expose the Host (Host=FW WAN Port) but how will the DNS Request go to the Server it self?

have a nice day
vinc

Title: Re: best Practise for adding the FW
Post by: bartjsmit on August 25, 2017, 12:57:32 pm

Hi Vinc,

If you want to change the internal IP address, I would:

- add the new IP on the server as a secondary
- change the port forward rule on OPNsense to the new IP
- remove the old IP from the server

The outage time depends on how the web server keeps state. If it is flat HTML, then hardly any at all. If it keeps session states then these may need to be renegotiated.

DNS doesn't enter the equation, since clients will continue to resolve the same public IP address of your ISP router.

Bart...

Title: Re: best Practise for adding the FW
Post by: vikozo on September 05, 2017, 12:29:08 pm

Hello @bart
thanks for your Feedback.
i will also ask in the german part to be sure to get everithing ;-)