Ubiquiti Edge Router - Multiple IPs
-
I've thinking of replacing a Draytek here at HeadOffice and possible 2nd Location for some EdgeRouters.
But I have no question. Both these drayteks have 5 IP's assigned to them and are used for different things, 1 IP for CCTV1, other for CCTV2 etc.
How is this setup with the EdgeRouter?Will I need to setup a VDSL modem in bridge mode to the EdgeRouter? Or have it with one of the IP's and let routing take over?.
-
Do you mean that your ISP assigned 1 IP for your public interface, and then gave you 5 more public IPs that need to ARP to WAN interface?
-
@hobbit666 said in Ubiquiti Edge Router - Multiple IPs:
Will I need to setup a VDSL modem in bridge mode to the EdgeRouter? Or have it with one of the IP's and let routing take over?.
If the Draytek is a modem, then of course you will need a modem in bridged mode. The ERL is a router, not a modem.
-
@hobbit666 said in Ubiquiti Edge Router - Multiple IPs:
But I have no question. Both these drayteks have 5 IP's assigned to them and are used for different things, 1 IP for CCTV1, other for CCTV2 etc.
How is this setup with the EdgeRouter?Will I need to setup a VDSL modem in bridge mode to the EdgeRouter? Or have it with one of the IP's and let routing take over?.
How are you getting the IP addresses? If it is a statically assigned thing, then you simply assign the IP addresses in the router on the WAN port and make SNAT & DNAT rules for things.
ubnt@erl# show interfaces ethernet eth0 { address XXX.XXX.XXX.42/29 address XXX.XXX.XXX.43/29 address XXX.XXX.XXX.44/29 description WAN duplex auto firewall { in { name WAN_IN } local { name WAN_LOCAL } } poe { output off } speed auto } ubnt@erl# show service nat rule 1 { description "NginX Proxy" destination { address XXX.XXX.XXX.43 group { port-group HTTP_HTTPS } } inbound-interface eth0 inside-address { address 10.202.1.16 } log disable protocol tcp_udp type destination } rule 3 { description "RDS HTTPS" destination { address XXX.XXX.XXX.44 port 443 } inbound-interface eth0 inside-address { address 10.202.1.13 port 443 } log disable protocol tcp type destination } rule 4 { description "RDS RDP" destination { address XXX.XXX.XXX.44 port 3389 } inbound-interface eth0 inside-address { address 10.202.1.13 port 3389 } log disable protocol tcp source { group { address-group RDP_Allowed_IP } } type destination } rule 5 { description "PBX Restricted Port Forward" destination { address XXX.XXX.XXX.42 group { port-group PBX_Ports } } inbound-interface eth0 inside-address { address 10.202.1.9 } log disable protocol udp type destination } rule 5000 { description "Nginx Proxy" destination { } log disable outbound-interface eth0 outside-address { address XXX.XXX.XXX.43 } protocol all source { address 10.202.1.16 group { } } type source } rule 5002 { description "RDS HTTPS" log disable outbound-interface eth0 outside-address { address XXX.XXX.XXX.44 port 443 } protocol tcp source { address 10.202.1.13 port 443 } type source } rule 5003 { description "RDS RDP" destination { group { address-group RDP_Allowed_IP } } log disable outbound-interface eth0 outside-address { address XXX.XXX.XXX.44 port 3389 } protocol tcp source { address 10.202.1.13 port 3389 } type source } rule 5005 { description "Default NAT Masquerade" log disable outbound-interface eth0 protocol all type masquerade } -
@JaredBusch Yes they are static assign /29 IP's from the ISP.
In the draytek you specify the IP's you have and then use the NAT screen to open ports on each IP to a local IP on the network.Just wanted to check a similar thing can be done with the EdgeRouter.
And yes I know the EdgeRouter has no modem, just want to check if Bridge mode would work or would I need to assign the Modem an IP and the others to the EdgeRouter.
