virtual interface

Unanswered Question
Jan 6th, 2006
User Badges:

Hi Gurus,


I have Cisco pix 515E (HA) firewall on production setup. Initially setup was done for less number of private hosts, so setup is like:


Inside Interface IP is 10.10.8.0/255.255.255.0 .. Here I can use only 255 hosts


My question is Can I add one more private IP block on pix as virtual interface. What is the complete procedure to solve this issue or any other good suggestion without disturbing production pix configuration (as ACL also defined with 255.255.255.0).


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
jackko Fri, 01/06/2006 - 06:05
User Badges:
  • Gold, 750 points or more

it's not feasible to configure a secondary ip on pix interface, and virtual interface works with vlan only.


may be you can resolve the issue by modifying the subnet mask.


e.g.

10.10.8.0 255.255.255.0 --> host 10.10.8.1 - 10.10.8.254


10.10.8.0 255.255.254.0 --> host 10.10.8.1 - 10.10.9.254


10.10.8.0 255.255.252.0 --> host 10.10.8.1 - 10.10.11.254



then, you can modify the dhcp scope on the dhcp server for the pc.

arvindsa Fri, 01/06/2006 - 06:34
User Badges:

can u also tell me how do i create a vlan ?



Thanks

Arvind

Actions

This Discussion