pfSense Gold Subscription

Author Topic: Subnet public rutat print-run IP public  (Read 3578 times)

0 Members and 1 Guest are viewing this topic.

Offline vasilenicusor

  • Newbie
  • *
  • Posts: 11
  • Karma: +1/-0
    • View Profile
Subnet public rutat print-run IP public
« on: July 30, 2015, 08:14:22 am »
Salut,
Am obtinut de la RDS un subnet de 8 ip-uri  pe care mi l-au rutat printr-ul alt ip
datele de la RDS sunt urmatoarele:

IP/Clasa      Netmask            Gateway
XXX.XXX.212.8       255.255.252.0       XXX.XXX.212.1
XXX.XXX.173.24    255.255.255.248    -
La RDS este setat:
set routing-options static route XXX.XXX.173.24/29 next-hop XXX.XXX.212.8

Am tot incerct cu diverse routere, dezactivat NAT , introdus ruta manuala XXX.XXX.173.24 spre  XXX.XXX.212.8 dar fara succes.

Acum as dori sa folosesc pfsense pentru asta dar nu  am idee cum sa-l fac sa mearga cu configuratia asta.

Subnetul il voi folosi astfel: 1 IP pentru internetul in casa, iar restul pentru servicii web - WHM/Cpanel


Offline catalin

  • Jr. Member
  • **
  • Posts: 60
  • Karma: +5/-0
    • View Profile
Re: Subnet public rutat print-run IP public
« Reply #1 on: July 30, 2015, 08:20:32 am »
salut ,

unde vrei sa folosesti ip-uri ? sa le ai ridicate direct pe pfsense ? sau in spatele lui si sa faci forward pe ele  ? nu prea inteleg in configuratia de la RDS de ce ai 2 IP-uri , ti s-a pastrat cel existent care banuiesc ca era XXX.XXX.212.8       255.255.252.0       XXX.XXX.212.1 si ti s-a mai aloca inca o clasa de /29 pe care trebuie sa o rutezi prin primul ip  ?
Adevarul se afla dincolo de noi ...

Offline vasilenicusor

  • Newbie
  • *
  • Posts: 11
  • Karma: +1/-0
    • View Profile
Re: Subnet public rutat print-run IP public
« Reply #2 on: July 30, 2015, 09:04:46 am »
Exact, am un IP pe care-l pot folosi cum vreau eu. Deoarece aveam nevoie de mai multe ip-uri statice, mi-au oferit un subnet de 8 ip-uri. Este rutat prin ip-ul principal deoarece le este mai usor. Ip-ul principal se poate schimba dar subnetul ramane pe toata perioada contractuala.

Pfsense vreau sa-l folosesc ca si router si in spatele lui voi avea IP-urile publice asignate la conexe

Offline catalin

  • Jr. Member
  • **
  • Posts: 60
  • Karma: +5/-0
    • View Profile
Re: Subnet public rutat print-run IP public
« Reply #3 on: July 30, 2015, 09:33:48 am »
vei pierde 2 ip-uri publice in configuratia propusa de mine mai jos mai sunt si alte posibilitati , dar asta cred ca e cea mai simpla
Adevarul se afla dincolo de noi ...

Offline vasilenicusor

  • Newbie
  • *
  • Posts: 11
  • Karma: +1/-0
    • View Profile
Re: Subnet public rutat print-run IP public
« Reply #4 on: July 30, 2015, 10:06:58 am »
Hmm, la Pfsense nu ar trebui XXX.YYY.173.25 in loc de XXX.YYY.173.24 , .24 fiind ip-ul de retea ?

Offline catalin

  • Jr. Member
  • **
  • Posts: 60
  • Karma: +5/-0
    • View Profile
Re: Subnet public rutat print-run IP public
« Reply #5 on: July 30, 2015, 10:10:32 am »
ba da , greseala de redactare :)

luam ca exemplu clasa 86.122.173.24/29

IP Address:   86.122.173.24
Netmask:   255.255.255.248
Wildcard Mask:   0.0.0.7
CIDR Notation:   /29
Network Address:   86.122.173.24
Usable Host Range:   86.122.173.25 - 86.122.173.30
Broadcast Address:   86.122.173.31
Binary Netmask:   11111111.11111111.11111111.11111000
Total number of hosts:   8
Number of usable hosts:   6
IP Class:   A (0.0.0.0 - 127.255.255.255)
Adevarul se afla dincolo de noi ...

Offline vasilenicusor

  • Newbie
  • *
  • Posts: 11
  • Karma: +1/-0
    • View Profile
Re: Subnet public rutat print-run IP public
« Reply #6 on: July 30, 2015, 10:22:40 am »
Am reusit, totul merge ok, dar in internet tot pe ip-ul principal imi ies hosturile dupa pfsense, ar trebui sa ies pe ip-ul din subnet. Ma poti ajuta cu o configurare?

Offline catalin

  • Jr. Member
  • **
  • Posts: 60
  • Karma: +5/-0
    • View Profile
Re: Subnet public rutat print-run IP public
« Reply #7 on: July 30, 2015, 10:23:53 am »
trebe setata ruta de XXX.XXX.173.24/29 in pfsense pe wan
« Last Edit: July 30, 2015, 10:27:43 am by catalin »
Adevarul se afla dincolo de noi ...

Offline vasilenicusor

  • Newbie
  • *
  • Posts: 11
  • Karma: +1/-0
    • View Profile
Re: Subnet public rutat print-run IP public
« Reply #8 on: July 30, 2015, 10:28:35 am »
iarta-ma dar astazi e prima ora cand iau contact cu pfsense. am citit prin manual dar nu ma prind unde sa o pun :(

Offline catalin

  • Jr. Member
  • **
  • Posts: 60
  • Karma: +5/-0
    • View Profile
Re: Subnet public rutat print-run IP public
« Reply #9 on: July 30, 2015, 10:29:22 am »
nu am un pfsense la indemana sa iti arat , ai teamviewer  ?
Adevarul se afla dincolo de noi ...

Offline vasilenicusor

  • Newbie
  • *
  • Posts: 11
  • Karma: +1/-0
    • View Profile
Re: Subnet public rutat print-run IP public
« Reply #10 on: July 30, 2015, 10:36:01 am »
ai PM . Merci

Offline AMizil

  • Jr. Member
  • **
  • Posts: 28
  • Karma: +1/-0
    • View Profile
Re: Subnet public rutat print-run IP public
« Reply #11 on: July 30, 2015, 11:23:43 am »
Salutari

Pana la urma cum a iesit? Puneti si voi un print screen de la Routing si interfaces?

Adrian

Offline vasilenicusor

  • Newbie
  • *
  • Posts: 11
  • Karma: +1/-0
    • View Profile
Re: Subnet public rutat print-run IP public
« Reply #12 on: July 30, 2015, 02:16:08 pm »
momentan nimic. inca nu am reusit sa-l fac sa pot iesi pe net cu ipu-rile respective, tot ip-ul principal e folosit - se comporta ca un router obisnuit ce face NAT. Momentan nu pot pune printscreen-uri ca nu am acces direct la server , iar remote nu mai pot face , maine poate reusesc sa ajung. Intre timp am contactat si RDS-ul si .... cica ma cauta maine :))) interesant

Offline catalin

  • Jr. Member
  • **
  • Posts: 60
  • Karma: +5/-0
    • View Profile
Re: Subnet public rutat print-run IP public
« Reply #13 on: July 31, 2015, 12:57:54 am »
am nevoie de un traceroute catre 8.8.8.8 de pe o masina din spatele routerului cu ip extern
Adevarul se afla dincolo de noi ...

Offline vasilenicusor

  • Newbie
  • *
  • Posts: 11
  • Karma: +1/-0
    • View Profile
Re: Subnet public rutat print-run IP public
« Reply #14 on: July 31, 2015, 10:50:43 am »
Salut,

Asta e cu NATUL activat (vezi Reguli_autogenerate.png)


C:\>tracert 8.8.8.8

Tracing route to google-public-dns-a.google.com [8.8.8.8]
over a maximum of 30 hops:

  1    <1 ms    <1 ms    <1 ms  pfSense.localdomain [81.196.173.25]
  2     2 ms     2 ms     1 ms  dr00.sibiu.rdsnet.ro [213.154.106.228]
  3     7 ms     6 ms     7 ms  qr17.rdsnet.ro [213.154.124.44]
  4     6 ms     8 ms     5 ms  qr07.rdsnet.ro [213.154.124.158]
  5     6 ms     6 ms     6 ms  213-154-124-65.rdsnet.ro [213.154.124.65]
  6    10 ms    11 ms    10 ms  xr01.budapesta.rdsnet.ro [213.154.128.1]
  7    11 ms     9 ms     9 ms  213-154-130-234.rdsnet.ro [213.154.130.234]
  8    10 ms     9 ms    10 ms  209.85.250.79
  9     9 ms     9 ms     9 ms  google-public-dns-a.google.com [8.8.8.8]

Trace complete.

Aici e traceroutu cu regulile custom (vezi Reguli_custom.png)

C:\>tracert 8.8.8.8

Tracing route to google-public-dns-a.google.com [8.8.8.8]
over a maximum of 30 hops:

  1    <1 ms    <1 ms    <1 ms  pfSense.localdomain [81.196.173.25]
  2     1 ms     1 ms    <1 ms  dr00.sibiu.rdsnet.ro [213.154.106.228]
  3     7 ms     6 ms     7 ms  qr17.rdsnet.ro [213.154.124.44]
  4     6 ms     6 ms     6 ms  qr07.rdsnet.ro [213.154.124.158]
  5     *        *        *     Request timed out.
  6     *        *        *     Request timed out.
  7     *        *        *     Request timed out.
  8     *        *        *     Request timed out.
  9     *        *     ^C

Offline vasilenicusor

  • Newbie
  • *
  • Posts: 11
  • Karma: +1/-0
    • View Profile
Re: Subnet public rutat print-run IP public
« Reply #15 on: July 31, 2015, 12:59:01 pm »
Sa rezolvat prin setarea Gateway-ului la LAN in pfSense IP-ul principal si NAT activat cu regulile implicite