Overlapping WAN's in firewall


New Member
Feb 5, 2023

This is currently my network configuration. I am using my public ip .116 for my PVE e, another public ip .118 as a NAT network for my VMs. The public ip .118 is connected to the firewall as WAN and the firewall then controls all the traffic. Now on the firewall I would like to also add the public ip address .100 as an extra WAN interface but that doesn't work because those ip's overlap because of have subnet (the subnetmasks are /26).

source /etc/network/interfaces.d/*

auto lo
iface lo inet loopback

iface lo inet6 loopback

auto enp41s0
iface enp41s0 inet manual

auto vmbr0
iface vmbr0 inet static
        address x.x.x.116/26
        gateway x.x.x.65
        bridge-ports enp41s0
        bridge-stp off
        bridge-fd 0

        up route add -net x.x.x.64 netmask gw x.x.x.65 dev vmbr0

auto vmbr1
iface vmbr1 inet static
        address 172.16.x.2/24
        bridge-ports none
        bridge-stp off
        bridge-fd 0

Now I would still like to have the .118 and .100 both as WAN interface in my firewall. With what adjustments in the network configuration does this work? Should I create a separate bridge with /32 for both ip's or not? I am new to Proxmox so it is still a bit of a search.

Thanks in advance.


The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get your own in 60 seconds.

Buy now!