Hey Guys, Im new to the EdgeMax line and have some questions. I tried some of the other suggested threads but nothing for exactly what I want.
From my provider i get a WAN IP via PPPoE (that part seems easy as the wizards can set that up.) They assign my a static IP via that method.
Then they also route a /28 to my static WAN address. lets say 66.103.58.16/28
What I have setup now is a CIsco 2851 router that is working great. But I've been drinking the UBNT KoolAid and want to switch over to the ER-6 Image may be NSFW.
Clik here to view.
So it looks something like:
WAN --> (2851: outside=66.128.123.5 ---- inside eth1.1=10.10.1.1/24 eth1.100=66.103.58.17/28) ----> Trunk to switch (switch then has vlan 1 for my local LAN and vlan 100 for my "DMZ" with all those publics)
I dont use NAT on the cisco ... its a straight routed connection to get to the /28 block.
What I have done so far on the ER-6 is run the WAN+2LAN2 wizard to get the following:
eth0 = configed for WAN and pppoe
Eth1 = (optional) Secondary LAN with an ipof 172.16.1.1
eth2-4 = configed as a switch with 10.10.1.1 as their native VLAN ip
Then I went in on the dashboard and created switch0.100 (vlan 100 vif) and assigned it an interface of 66.103.58.17
I can ping from a laptop on the 172.16.1.0/24 network to the vif ip of 66.103.58.17
I havent taken my cisco 2851 offline to swap this ER-6 into place yet, but Im wondering if there are any other firewall fules that I need to configure in order to allow routing of traffic from the WAN interface to the switch0.100 interface ?
does anything else with that layout stand out as needing to be configured before it will work?
I only want NAT for traffic from 172.16.1.0/24 and 10.10.1.0/24 LAN subnets and not from the DMZ subnet (that traffic should just be routed right on through)
Thanks in advance.