I'm messing around with our new UC520 and was wondering a thing.
We happen to have a few public IPs at work, but since we want to have the UC520 as our gateway, I was wondering if all those IPs would be useful. I've read the Design Guide but it's only mentionning that SBS networks rarely have more than one public IP so that topic isn't covered in the document.
The thing is, I want to make sure we'll be able to do all we need with only one public IP :
- 4 or 5 Tunnels between us and a few clients' networks (ASA/PIX on their side) including 2 with clients owning a UC520 so we'll be able to route calls directly
- Host different services on a SBS server (mail, PPTP, DNS, HTTP, FTP) -> static nating to the internal server
- Connect remotely to other clients networks with Cisco VPN Client and PPTP (up to 5-6 users connecting remotely at the same time)
I'm pretty sure all this can be done with a single IP, got the static nating, and remote connections with VPN client and PPTP working.
But was wondering if there would be an advantage of using another public IP for this setup, maybe to use for the NAT?
Say everyone connects to remote networks and to the Internet using a (this is fictive public IP address) 184.108.40.206 and all hosted services would be on 220.127.116.11
Now, if this would be a better setup, could someone point me out a documentation on how to do this?
If not, well thanks for taking the time to respond!
You can do all of this with a single IP. I think the only thing another IP would get you is if you wanted to have 2 static NAT configs with the same port, ie two web servers.
If you wanted a second IP address, you config simply put it under the fastethernet 0/0 config.
int fa 0/0
ip address 10.0.0.1 255.255.255.0
ip address 10.0.0.2 255.255.255.0 secondary
That would get you a second IP address.