Router - TG582N - Subnet Routing: Difference between revisions
No edit summary |
m (ADSL IP is allocated by PPP rather than DHCP) |
||
Line 3: | Line 3: | ||
Use this guide if you have a subnet of addresses that you want to use internally and you want your own server managing the firewall, and the router just passing everything through. |
Use this guide if you have a subnet of addresses that you want to use internally and you want your own server managing the firewall, and the router just passing everything through. |
||
This assumes you have a have 3 sets |
This assumes you have a have 3 sets of addresses: |
||
# A /29 or /28 subnet that you want to route to your firewall server, lets say 80.2.2.0/28 |
# A /29 or /28 subnet that you want to route to your firewall server, lets say 80.2.2.0/28 |
||
# A /30 subnet used for the router and firewall server, lets call them 90.1.1.0/30, the router has 90.1.1.1 and your firewall has 90.1.1.2 |
# A /30 subnet used for the router and firewall server, lets call them 90.1.1.0/30, the router has 90.1.1.1 and your firewall has 90.1.1.2 |
||
# A single |
# A single IP address for the router ADSL link (allocated by PPP) |
||
First set the router up as normal on the GUI, selecting ADSL expert and on subnet type the independent router IP. This should deal with your /30 and single IP now working. I personally set the firewall to disabled and turned off all services including the wifi. |
First set the router up as normal on the GUI, selecting ADSL expert and on subnet type the independent router IP. This should deal with your /30 and single IP now working. I personally set the firewall to disabled and turned off all services including the wifi. |
Revision as of 16:49, 2 Mayıs 2015
Use this guide if you have a subnet of addresses that you want to use internally and you want your own server managing the firewall, and the router just passing everything through.
This assumes you have a have 3 sets of addresses:
- A /29 or /28 subnet that you want to route to your firewall server, lets say 80.2.2.0/28
- A /30 subnet used for the router and firewall server, lets call them 90.1.1.0/30, the router has 90.1.1.1 and your firewall has 90.1.1.2
- A single IP address for the router ADSL link (allocated by PPP)
First set the router up as normal on the GUI, selecting ADSL expert and on subnet type the independent router IP. This should deal with your /30 and single IP now working. I personally set the firewall to disabled and turned off all services including the wifi.
Telnet/ssh to your router
You need to do 2 things, add routing for the subnet to your firewall and add a mapping so that incoming connections work. (obviously substitute your own addresses here)
ip rtadd dst=80.2.2.0/28 gateway=90.1.1.2 static=enabled nat mapadd intf=Internet type=nat outside_addr=80.2.2.0/28 inside_addr=80.2.2.0/28