[pfSense] pfSense help with creating rules

Jason T. Slack-Moehrle slackmoehrle at gmail.com
Fri Feb 10 13:13:47 EST 2012 

Hi Ryan,


> I am a little confused at how I would know if they are handing me a /29 or just 5 IP's?
>  
> range: 75.xx.xx.25 - .29
> subnet: 255.255.255.248 (which is /29, IIRC)
> GW: 75.xx.xx.30
>  
> Comcast is faster, but is not dedicated. You should always get the same speeds (or reasonable close) with Snnic. You may also have an SLA with Snnic. I am sure you don’t have that with Comcast. That said, all use ISP’s are shared traffic. It is either shared via the same wire, or with DLS shared at the DSLAM or in all cases shared at the head office. It is very difficult for an ISP with say 1,000 customers at 10megs each to pay for a 10G so they can all have dedicated traffic. This gets worse as the number goes up. ISP’s understand that not all users will use the bandwidth at the same time so they have way less than they sell. For instance one service provider here locally has a single OS3 (45Meg) link and offers a 6 meg internet connection. They have a couple of hundred users. 200 x 6 = 1.2 Gigs. Way less than what they have. However, the 45Meg link is very rarely saturated. The better business oriented ISP’s will prioritize business customers over residential customers and have a lower ration of what’s sold to what’s available. I can tell you that Comcast Business in South Louisiana has a very good service and I have never measured less than 10 down and 4 up. This beats your 3/3 hands down. The same may not be able to true in your area as every area is different. Comcast does not however offer to have a routed subnet as you are asking. The provide 5 ip addresses that you can access directly on their modem. You can get 14 address and subnet yourself, but that really waist a lot of IP addresses. You could also setup to Bridge the DMZ and WAN and run a filtered bridge setup.
Wait, are you saying I could just pay Comcast for 14 addresses and create a routed subnet myself and not have them do it?

Or could I just have them create for me a 2nd IP block of 1 IP, load that on the modem with my block of 5 and somehow created a routed subnet from the /31 to my /29 without them? so that pfSense is setup the correct way?

Sorry for the confusion!

-Jason

More information about the List mailing list