12-20-2011 12:43:31 AM
I've seen several posts about putting a router behind U-verse CG/modem - but they all seem using a single external IP address.
I have a 8 static IP with our service - the bloody U-verse CG/modem is forcing me to have a dedicate hardware interface for each static IP address I want to use - defeating the powerful ability of any decent commercial router or server to be easiiy configured for a single hardware interface to respond to multiple IP address.
Is anyone else on board see these issues too? ... work arounds?
I'm not mad as far as I can tell as these links seem to indicate this is U-verse related:
- Rick and Julie
Solved! Go to Solution.
12-20-2011 07:24:33 AM
Also, the 2Wire unit does not have any facility to insert a static route, which would allow routing through another gateway.
The only work-around I've seen is a person who did some custom configuration to a Linux machine that created multiple virtual Ethernet interfaces that each had a different MAC address.
Otherwise, what you will have to do is either:
1. Use a single IP address with NAT on your routing device, or
2. Eliminate your routing device and use your separate static IP addresses on machines that are directly connected to the 2Wire.
12-20-2011 08:53:41 AM
Thanks. That sums up it well - unfortunately.
Yes I can work around it by having multiple HW firewalls in front of each static IP server / or use use soft firewall (e.g. iptables, ...) or by having virtual machines provide mulitple virtual network interfaces. Also, having both local network subnet and external subnet on same network cable feels wrong but seems to work.
How likely do you think U-verse firmware will be patched to 'fix' this ridiculous warped routing for muitple static IP's. My sense is it may be 'by design'.
12-20-2011 02:21:54 PM
Working around this in the original 2Wire firmware was easy because it has a bridge mode which turns off routing.
AT&T, however, had special firmware build for the U-Verse product that disables the bridge mode, replacing it instead with the DMZ mode (which still routes behind the scenes). AT&T does this to maintain the 2Wire as a system-manageable unit on their network. Because bridge mode is disabled, now the 1:1 IP-to-MAC restriction becomes even more bothersome.