Hello all and thanks for all your help on these forums.
Our VOIP phone company wants to move their VOIP Service off of a T1 line and onto our existing 50/50 fiber internet.
We have multiple IP addresses from our ISP. What I would like to do is keep our existing internet traffic, WAN IP Address, NAT & DHCP on Ether2 and take a 2nd WAN/ISP address and forward that on to Ether3. The VOIP company has their own router to handle whatever IP address we give them. We can reset and start over on the router if needed.
Here is our current configuration - We have a pretty basic setup:
That version is rather old, and has multiple remotely exploitable vulnerabilities - I’d suggest upgrading to at least the current long-term version first. Note that master/slave ports don’t exist in version 6.41 onwards, the functionality has been moved to bridges so keep backups.
If there are any signs of it having been compromised such as socks settings or scripts you haven’t created you should do a fresh install using netinstall.
Having upgraded or re-installed, rather than using VLAN-aware bridges, I’d suggest having a bridge-wan containing ether1 & ether3 as members with hw=no, and a bridge-lan containing ether2, ether4 & ether5 with hw=yes if you keep your existing port assignments (ether1&2 for the WAN bridge and ether3/4/5 for the LAN bridge may be a better choice).
The VoIP router would need a static address setting using one of your spare public IPs, if that isn’t easy and your ISP doesn’t run a DHCP server (unlikely) you can configure one on bridge-wan to hand out an address.
