On 1/4/06, Aaron with Morad <aaronc at morad dot ab dot ca> wrote:
> Perhaps not related to m0n0wall but I thought I'd ask here first, many of you know a lot more
about networking than I do.
> My service provider has given me a /30 interconnect address for my router/firewall. They have
also routed a /27 block of IP's to me. Currently I use NAT and run private addressing behind
m0n0wall (1-1 for some clients and Outbound for different WISP sites that I operate). Is there a
way to use the /27 block behind m0n0? Set up some kind of a bridge using the /27 and not have it
NATed to clients behind m0n0? I would like to give a client a public IP (from the /27) but still
monitor / filter traffic and access while not using NAT.
With a routed block, you probably want to put it off its own interface
on m0n0wall. Give m0n0wall one of the IP's out of the /27 on that
interface, and use the rest for public IP'ed machines.
If you want to keep all the machines on the same interface, you should
be able to use 1:1 NAT to machines on the private network.