Hello,
I have 5 external IPs, and I would like to route all traffic for a specific server over one of the IPs.
I have tried it with DNAT and SNAT but every time I check the outside ip on the server, it still comes back at the primary.
How do I make it so I can set devices to use an additional address for outbound and inbound. I can only set inbound through DNAT at the moment.
--------
EDIT:
It seems like I was able to get only 1 single VLAN to communicate out over one of my additional addresses. I setup a masquerade for VLAN_300(Network) -> External (WAN_2).
Now if I try to assign another VLAN a different IP in the same fashion, that vlan fails to resolve webpages.
Here is how I have my network Setup
Interfaces:
External (WAN) on eth0 - 1.2.3.78/21
Internal on eth1 - 10.0.1.1/24
VLAN_100 on eth1 -10.0.2.1/24
VLAN_200 on eth1 -10.0.3.1/24
VLAN_300 on eth1 -10.0.4.1/24
VLAN_400 on eth1 -10.0.5.1/24
Additional Addresses:
WAN_2 - 1.2.3.79/32 on eth0
WAN_3 - 1.2.3.80/32 on eth0
WAN_4 - 1.2.3.81/32 on eth0
WAN_5 - 1.2.3.82/32 on eth0
I created a host definition group called "LANS" and added All of the networks to it. (internal, vlan100, 200, 300 and 400). I added LANS to allowed networks in DNS and NTP.
Firewall Rules.
LANS -> Any -> Any - Allow
Internal Network \
Vlan_100 Network \
Vlan_200 Network - -> Any -> LANS - Allow
Vlan_400 Network /
NAT Rules
Masquerading:
Internal -> External WAN
VLAN_100 -> External WAN_4
VLAN_200 -> External WAN_5
VLAN_300 -> External WAN_2
VLAN_400 -> External WAN
------
After doing all of this, I was able to successfully use VLAN_300 on another WAN_2. But all other vlans will not go outside the network.
This thread was automatically locked due to age.
