it depends on a service that you have with your ISP. If you've been assigned /29 public IP range then it probably means that the /29 range ISP will route towards your router. In that case ISP needs to give you another /30 block that will be configured on point to point link between your network and the ISP router (public or private, it works anyway)
As already mentioned by Mate Gulic, your ISP will use the /30 for the connection between your firewall and their router. They will then add a route for the /29 range pointing to the IP you were assigned from the /30 subnet.
You would have a default route on your firewall pointing to the IP from the /30 assigned to the ISP.
You are then free to use the /29 subnet however you want ie. you do not need to use an IP from this range on a physical interface4, you can simply use them in your NAT config on the firewall.
where you own the CE router as well as the firewall ?
If so the CE -> PE link will probably use the /30 and the ISP will route the /29 to the outside of your CE router. In which case you could then either -
1) use 2 addresses from the /29 subnet for the firewall outside to CE inside interfaces and the rest for NAT
2) use a private address range between firewall outside and CE inside and then you have all the /29 range for NAT but you would need to use at least one for NAT of all internal clients whereas with option 1) you can overload all the internal clients with NAT to the firewall outside interface.
Note also with option 2) you would need to add a route for the /29 to point to the outside interface of your firewall because you are using a private range for the interconnection.
[toc:faq]The ProblemOn traditional switches whenever we have a trunk
interface we use the VLAN tag to demultiplex the VLANs. The switch needs
to determine which MAC Address table to look in for a forwarding
decision. To do this we require the switch to do...
[toc:faq]Introduction:Netdr is a tool available on a RSP720, Sup720 or
Sup32 that allows one to capture packets on the RP or SP inband. The
netdr command can be used to capture both Tx and Rx packets in the
software switching path. This is not a substitut...
IntroductionOSPF, being a link-state protocol, allows for every router
in the network to know of every link and OSPF speaker in the entire
network. From this picture each router independently runs the Shortest
Path First (SPF) algorithm to determine the b...