1 WAN, 2 LANS help

G

getafix33

Expert Member
Joined
Nov 16, 2006
Messages
1,803
Reaction score
84
Hi there

I have done loads of looking and youtubing but cannot find the answer although it is there - I just dont understand it.

I need to setup a LAN separate to my LAN (used for home use.)

My setup is this.

WAN address is 192.168.0.1 (PPPOe is setup on PFsense). This connects to a dlilnk modem in bridge mode.
LAN address is 192.168.1.0 (Pfsense LAN is on 192.168.1.1) with DHCP. All is fine and dandy.
OPT1 address is 192.168.3.1. The NIC is the onboard LAN nic on the motherboard.

I need OPT1 to be behind the firewall - therefore no DMZ.

I have a machine running SERVER 2012 R2 that I want to fiddle with but not allow it to access my LAN network, BUT it needs to access the Internet.

THis is what I have done.

OPT1 created on re0 which is onboard LAN.

Firewall rules are:

Reject
Source: OPT1 Net
Port: *
Destination: LAN Net
Port: *

Then:
Pass
Source: OPT1 Net
Port: *
Destination: *
Port: *

As I only want one machine to access the 192.168.3.0 range, I have plugged the machine directly into the onboard LAN port on PFsense.
 
getafix33 said:
Hi there

I have done loads of looking and youtubing but cannot find the answer although it is there - I just dont understand it.

I need to setup a LAN separate to my LAN (used for home use.)

My setup is this.

WAN address is 192.168.0.1 (PPPOe is setup on PFsense). This connects to a dlilnk modem in bridge mode.
LAN address is 192.168.1.0 (Pfsense LAN is on 192.168.1.1) with DHCP. All is fine and dandy.
OPT1 address is 192.168.3.1. The NIC is the onboard LAN nic on the motherboard.

I need OPT 1 to be behind the firewall - therefore no DMZ.

I have a machine running SERVER 2012 R2 that I want to fiddle with but not allow it to access my LAN network, BUT it needs to access the Internet.

THis is what I have done.

OPT1 created on re0 which is onboard LAN.

Firewall rules are:

Reject
Source: OPT1 Net
Port: *
Destination: LAN Net
Port: *

Then:
Pass
Source: OPT1 Net
Port: *
Destination: *
Port: *

As I only want one machine to access the 192.168.3.0 range, I have plugged the machine directly into the onboard LAN port on PFsense.
Click to expand...


Setup a new IP range for OPT1 and setup the gateway 192.168.1.1 on your Windows 2012 server to allow for internet access
 
You must log in or register to reply here.
Back
Top
Sign up to the MyBroadband newsletter
X