Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Adding Subnet

We are trying to add another subnet to our LAN. We have a static address scheme and that we prefer not to change. We've set up a 2600 router on the inside and everything works find inside but the firewall does not recognise the new subnet. In fact the pix thinks addresses of the second subnet are being spoofed and denies packet transfer.

Is there any way to have two classfull subnets going through one interface of a pix?

3 REPLIES
Green

Re: Adding Subnet

You should be able to add an "access-list allow ip

any" to the inside address ACL of the PIX config and get the traffic through.

The router has a default route to the PIX, the PIX has a next-hop to the router, the router sends the traffic to the right subnet. It should be pretty straight forward.

Good Luck

Scott

New Member

Re: Adding Subnet

Hi, your going to have to ad a route statement in the PIX pointing the new subnet to the router.......something like this......

route inside 10.10.10.0 255.255.255.0 192.168.1.1

Hope that helps....

Re: Adding Subnet

Hi,

this should not be a problem. Is it possible to post the config file?

A few suggestions:

- did you add a NAT command for the new subnet?

- did you add a ROUTE command for the new subnet?

route inside new_subnet new_mask ipaddress_internal_router

Kind Regards,

Tom

375
Views
0
Helpful
3
Replies
CreatePlease to create content