How to subnet hosted VMs

Posted by bwizzy on Server Fault See other posts from Server Fault or by bwizzy
Published on 2010-05-11T13:33:18Z Indexed on 2010/05/11 13:34 UTC
Read the original article Hit count: 360

Filed under:

subnet

|

subnetting

|

pfsense

|

virtualization

I have a network of VMs each having a LAN IP address and a public IP address. They each have a 1:1 NAT map for public access via the public IP for HTTP, SSH etc. I'm trying to figure out a way to restrict the LAN IPs from talking to each other, but there are some cases where a group of LAN IPs will need to communicate.

I'm using pfSense as a firewall / router on a 192.168.0.0/24 configuration. It seems like I could assign each VM it's own subnet and add a static route to the firewall for that VM to get back to the firewall for internet access / other fw rules. Is that right?

I assigned 1 VM with: address 192.168.1.2 netmask 255.255.255.254 gateway 192.168.1.1

Then added a static route on the FW's LAN interface using 192.168.1.0/30 as the destination network and 192.168.1.1 as the gateway.

Nothing appears to be working, anyone have any ideas? Please be aware I'm not that familiar with subnets.

Thanks!

© Server Fault or respective owner

Related posts about subnet

Can I subnet a subnet?

as seen on Server Fault - Search for 'Server Fault'
Apologies in advance for the botched terminology. I have read the Server Fault Subnet Wiki but this is more of an ISP question. I currently have a /27 block of public IPs. I use give my router the first address in this pool and then use 1-to-1 NAT for all the servers behind the firewall, so that… >>> More
Connecting to a remote server through OpenVPN when local network subnet conflicts with remote network's subnet

as seen on Server Fault - Search for 'Server Fault'
After connecting to a remote location via OpenVPN, I am trying to access a server on a network that exists on a subnet such as 10.0.1.0/24. However, the network I am trying to access this remote server from is on the same subnet: 10.0.1.0/24. I am unable to connect to my remote server via typing… >>> More
How to Route Traffic in Case PPTP Remote Client is on Same Subnet as Server

as seen on Server Fault - Search for 'Server Fault'
I've a PPTP server setup on my local home network (192.168.1.0/24, pfSense). Now sometimes when I'm away and want to connect remotely my client (Windows 7) is also on the same network because e.g. the hotel has set it up the same way. Thus the connection works, but I can't reach any PC on my home… >>> More
Changing subnet-mask of class-c network host to 255.255.0.0

as seen on Server Fault - Search for 'Server Fault'
We have a existing class-c network with IP address range 11.22.33.44/24 (just for example). My domain controller has been configured within this subnet. So all servers within this subnet have subnet mask configured to 255.255.255.0. Now we have got a new subnet with IP address 11.22.88.99/24 (note… >>> More
Issues resolving DNS entries for multi-homed servers

as seen on Server Fault - Search for 'Server Fault'
This is difficult to explain, so bear with me. We have 2 domain controllers, each multi-homed to straddle 2 internal subnets, (subnet A and subnet B) and provide dns, dhcp, and ldap authentication. Both domain controllers each have 2 DNS entries. both entries have identical host names, but correspond… >>> More

Related posts about subnetting

ServerFault Wiki: How does Subnetting Work?

as seen on Server Fault - Search for 'Server Fault'
How does Subnetting Work, and How do you do it by hand or in your head? Can someone explain both conceptually and with several examples? Serverfault gets lots of subnetting homework questions, so we could use an answer to point them to on serverfault itself. If I have a network, how do I figure out… >>> More
Server Fault Wiki: How does Subnetting Work?

as seen on Server Fault - Search for 'Server Fault'
How does Subnetting Work, and How do you do it by hand or in your head? Can someone explain both conceptually and with several examples? Server Fault gets lots of subnetting homework questions, so we could use an answer to point them to on Server Fault itself. If I have a network, how do I figure out… >>> More
How does Subnetting Work?

as seen on Server Fault - Search for 'Server Fault'
How does Subnetting Work, and How do you do it by hand or in your head? Can someone explain both conceptually and with several examples? Server Fault gets lots of subnetting homework questions, so we could use an answer to point them to on Server Fault itself. What is classless routing and why… >>> More
subnetting a class c on a cisco 3825

as seen on Server Fault - Search for 'Server Fault'
I have a class C that I want to better understand before I implement a change. Right now, ip address 192.168.0.1 255.255.255.192 ip address 192.168.0.65 255.255.255.240 secondary So, where is the 192.168.0.64 address in that mix? 192.168.0.63 should be the broadcast for the first one, and 192… >>> More
Trouble subnetting...

as seen on Server Fault - Search for 'Server Fault'
I have to learn how to subnet by hand for a test. And I'm having real problems doing it. I keep getting stuck. Here's an example: 138.248.184.17/18 - IP 255.255.192.0 - Subnet Mask 192 = 1100 0000 in binary And I know 184 in the IP address is the "octet of interest". OK I get that far...and then… >>> More