VMware Lab Environment

bobbydigital · January 31, 2017, 4:00pm

Hi All,

I am new to Vyos and I am testing it out in my lab.

I have Vyos installed within VMware and 2 PFsense firewalls with a host behind each firewall.

My real LAN is a 10.1.1.0/24 network.

The Vyos gateway is 10.1.1.250. The 2 networks for the PFsense firewall are 192.168.50.1/24 & 192.168.51.1/24

eth0 10.1.1.250/24
eth1 192.168.50.1/24
eth2 192.168.51.1/24

Based on this setup is it possible to create a static NAT that I could give the firewalls so my REAL LAN can connect to it.

I.E. PFsense = 10.1.1.252 NAT’d to 192.168.51.2

This is not a deal breaker just makes it easier to access the firewalls without having to always login to a VMware connected workstation.

Thank for all responses.

16again · January 31, 2017, 6:30pm

Add secondary IP addresses 10.1.1.251 and 10.1.1.252 onto VyOS eth0.
Add destination NAT rules onto eth0, so that incoming traffic to destination 10.1.1.251 is translated to destination 192.168.50.1
Add destination NAT rules onto eth0, so that incoming traffic to destination 10.1.1.252 is translated to destination 192.168.51.1
Add masquerade rules on eth1 and eth2.

Now you can access pfsense firewall from 10.1.1.250/24 network, without having any routes set on pfsense or on hosts on 10.1.1.250/24 network