split my Public network - good or bad idea?

Started by tryhard, March 05, 2020, 05:40:51 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
March 05, 2020, 05:40:51 PM
Hi I'm currently struggeling to get my head around the following Problem.

I have an old service wich is very NAT unfriendly, so I wanted to split my /27 into two /28

One will have a Carp IP and Alias IPs to port forward all I need to local ips.

The second WAN subnet will be on an OPT interface with Proxy_arp settings tied to WAN Carp IP to make the router talk to my "routed" WAN subnet without any additional configuration and routes on ISP side.

Is this correct? And practical? Or is there an easier way may be the "reply-to" setting ?

Regards & thanks for your time  :)

March 06, 2020, 02:01:29 PM #1
Does your ISP do ARP for the entire /27? Or do you have a dedicated WAN IP address where the ISP routes the /27 to? Or PPP?

Cheers

Maurice
OPNsense virtual machine images
OPNsense aarch64 firmware repository

Commercial support & engineering available. PM for details (en / de).
March 06, 2020, 02:26:22 PM #2
You will lose 2 ip addresses and why NAT if public ips?
Intel(R) Xeon(R) Silver 4116 CPU @ 2.10GHz (24 cores)
256 GB RAM, 300GB RAID1, 3x4 10G Chelsio T540-CO-SR
April 14, 2020, 01:54:45 PM #3
Sorry for the late answer.

As my ISP was unwilling to put a route on his gateway - I tried to work araound it.

In the end I got rid of old service.

Print
Go Up Pages1
User actions