2 subnets of 64 ip addresses on a single wan interface

[Rayman]

Hi,

We currently have a SonicWALL in our data center which we are looking to replace with an Opnsense appliance.

On the WAN interface of the SonicWALL we have 2 /26 (64 ip addresses).

So, I would like to know if we can configure the Opnsense appliance with for example
5.5.5.1 /26
5.5.6.1 /26

Of course we would need to be able to use NAT on all of these addresses and so on.

Looking forward for a reply, thanks!

Kind regards,
Ray

[fabian]

You should be able to add additional IPs using the virtual IP configuration

[Rayman]

Hi Fabian,

Thanks for your reply, sounds logical. However, your write should be able.

I'm wondering if anyone has done this before. If this don't work we can't use this. If we use the virtual ips, we (of course) would need to be able to nat these ip addresses.

Kind regards,
Ray

[franco]

Hi Ray,

It seems correct, one of those must be the virtual IP, the other one is the static WAN configuration:

5.5.5.1/26
5.5.6.1/26

Inside both networks (not 5.5.x.1)  you can pass each IP via 1:1 NAT onto internal servers for "full" exposure.
If you need more IPs on the WANs for port forwarding, say 5.5.6.2:2222 -> 192.168.2.2:22 you want to add another virtual IP 5.5.6.2/26 to the WAN and use the normal port-forward NAT instead.


Cheers,
Franco

[Rayman]

Thanks!