I have searched and searched, drawn a lot of concepts, but I just can’t figure out how its possible… So gotta ask again (but keeping myself to 1 subject this time for simplicity).
My setup is:
RB493AH
DSL line with 5 public IPs provided by ISP (due to my ISPs technic, I HAVE to assign each of those 5 IPs, to 5 different MAC address!! Annoying since it have been easier to just have a scope that I could route by myself).
NAS server in local, which need a local IP for the rest of the LAN PCs, and a Public IP for web accessing.
I use Eth0 as WAN, and my NAS server are connected to Eth8 (and currently assign to static local IP 192.168.8.2). Right now the WAN (Eth0) are setup to as DHCP client, and on my ISP webinterface its working fine, with 1 assigned public IP for the router itself.
So, I need some help how I can make it, so the MAC address of the NAS server can be seen on my ISPs webinterface, or how I can assign WAN (eth0) with another MAC address, so the WAN can have 2 address assign, and then just NAT one of the IPs to the local NAS.
I could ofc NAT port based on 1 single IP, but I can’t see the point when I have and pay for 5 public IPs, then its would be nice to control them in some way.
Picture of the setup:
So, how can I make my NAS MAC address viewable behind my router so the ISP can see it? Or how can I make another MAC Address for same interface??
It seems that there are some views, but my question/purpose ain’t clear enough.
In other words, are there a way that I can assign/spoof/clone more than 1 MAC address to a single Eth port (Eth0)? Because in that way I will be enable to get more than 1 public IP to my Eth0 port, and can NAT it from there.
I try’d to play around with the ‘Virtual Ethernet’ function, to make a WAN2, that could be assigned to its own DHCP client, but when I assign DHCP Client to Vf1, its status says ‘Stopped’. Dunno if virtual eth is the correct solution, but it was an attempt at least.
Virtual ethernet, if I’m not mistaken, is supposed to be for metarouter.
So, how can I make my NAS MAC address viewable behind my router so the ISP can see it?
Create bridge with current WAN and NAS ports and move WAN config to bridge interface. LAN will still work as before. And NAS will have real non-NATed public IP. Only thing left to solve is accessing NAS from LAN. If it has more ethernets, you can simply connect second one to LAN with private IP from your used range. Or you can access it using it’s new public IP.
Or how can I make another MAC Address for same interface??
It’s kind of hack, but you can add several VRRP interfaces with different VRID to WAN interface and they will have different MAC addresses. Quick test shows that it works fine. But if DHCP is used to get addresses, it seems to be better to assign some static and completely unused IP address to physical interface (e.g. 10.10.10.10/32) and use VRRP interfaces for all public addresses. But then you’ll have to play with NAT and it generally sucks. With single address you can just use masquerade, but with multiple addresses you’ll need srcnat. And srcnat needs specific address and when it’s dynamic it’s not exactly easy with ROS. So I’d go with the bridge.
Or another option, just stick switch before router and connect there everything that’s supposed to get public IP. It’s basically the same as with bridge, except you don’t have to mess with router at all. But it’s additional device.
