Our current network only has a handful of vlans with vlan1 with an ip range for PC's and servers of 10.255.0.0 255.255.0.0.
We have started to create new Vlans and our first test one is VLAN2 with an IP address range of 10.254.25.0/24.
We have a new 6500 switch and the subnet and dhcp is created on that with a static default gateway set to our firewall of 10.255.251.211.
On the firewall for testing purposes has an any any rule allowing everyone internally access out to the internet (or so I thought)
Currently anyone on the 10.255.0.0 range has internet access, those on the 10.254.25.0 range don't.
Have I missed something on the firewall config for this new subnet?
Thanks in advance
Your config shows a NAT statement for users in the 10.255.x.x subnet- nat (inside) 1 10.255.0.0 255.255.0.0, but this does not cover the users in the new subnet, 10.254.25.0. I would remove the current nat (inside) command and add the following line- nat (inside) 1 0.0.0.0 0.0.0.0 - this command will cover all of your internal subnets and will PAT them to the outside interface.
Please let me know if this works for you.