2 subnets of 64 ip addresses on a single wan interface

Rayman · August 15, 2017, 12:30:26 PM

Hi,

We currently have a SonicWALL in our data center which we are looking to replace with an Opnsense appliance.

On the WAN interface of the SonicWALL we have 2 /26 (64 ip addresses).

So, I would like to know if we can configure the Opnsense appliance with for example
5.5.5.1 /26
5.5.6.1 /26

Of course we would need to be able to use NAT on all of these addresses and so on.

Looking forward for a reply, thanks!

Kind regards,
Ray

fabian · August 15, 2017, 01:23:26 PM

You should be able to add additional IPs using the virtual IP configuration

Rayman · August 15, 2017, 04:03:44 PM

Hi Fabian,

Thanks for your reply, sounds logical. However, your write should be able.

I'm wondering if anyone has done this before. If this don't work we can't use this. If we use the virtual ips, we (of course) would need to be able to nat these ip addresses.

Kind regards,
Ray

franco · August 15, 2017, 04:44:31 PM

Hi Ray,

It seems correct, one of those must be the virtual IP, the other one is the static WAN configuration:

5.5.5.1/26
5.5.6.1/26

Inside both networks (not 5.5.x.1) you can pass each IP via 1:1 NAT onto internal servers for "full" exposure.
If you need more IPs on the WANs for port forwarding, say 5.5.6.2:2222 -> 192.168.2.2:22 you want to add another virtual IP 5.5.6.2/26 to the WAN and use the normal port-forward NAT instead.

Cheers,
Franco

Rayman · August 15, 2017, 07:22:38 PM

Thanks!

2 subnets of 64 ip addresses on a single wan interface

Rayman

August 15, 2017, 12:30:26 PM

fabian

August 15, 2017, 01:23:26 PM #1

Rayman

August 15, 2017, 04:03:44 PM #2

franco

August 15, 2017, 04:44:31 PM #3

Rayman

August 15, 2017, 07:22:38 PM #4