Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
370
Views
0
Helpful
1
Replies

Take a public subnet into two smaller public subnets

ngthen
Level 1
Level 1

‎03-25-2010 03:38 PM - edited ‎03-04-2019 07:55 AM

I have a cable provider who is providing a /28 let's say 200.100.50.0  Can I effectively take that subnet and break it into two smaller?  Basically I would like to host Internet for a tennant in my building however let them use their own firewall and block.

So in essense

Network 1 200.100.50.0 /29

Network 2 200.100.50.8 /29

What is the easiest way to configure my router for this setup?  We'll say Fa0/0 is the public connection, Fa0/1 is Network 1, and Fa0/2 is network 2.

If that is not possible can I break it into the following....

200.100.50.0 /30 (i.e .1 is the service provider, .2 is my router)

200.100.50.4 /30 (Goes to one customer's firewall)

200.100.50.8 /29 (Goes to my firewall)

What would be the best way to handle this setup?

Labels:
0 Helpful
1 Reply 1

Jon Marshall
Hall of Fame
Hall of Fame

‎03-25-2010 04:59 PM 

ngthen@moonark.com
I have a cable provider who is providing a /28 let's say 200.100.50.0  Can I effectively take that subnet and break it into two smaller?  Basically I would like to host Internet for a tennant in my building however let them use their own firewall and block.
So in essense
Network 1 200.100.50.0 /29
Network 2 200.100.50.8 /29
What is the easiest way to configure my router for this setup?  We'll say Fa0/0 is the public connection, Fa0/1 is Network 1, and Fa0/2 is network 2.
If that is not possible can I break it into the following....
200.100.50.0 /30 (i.e .1 is the service provider, .2 is my router)
200.100.50.4 /30 (Goes to one customer's firewall)
200.100.50.8 /29 (Goes to my firewall)
What would be the best way to handle this setup?

You can break up the address space however you want because the provider will simply route the /28 to you. What you do with it is up to you but be aware that when you start splitting it up you will lose available addresses because of the network and broadcast address for each subnet.

If your router connects to the ISP using part of the /29 address space and you then want to use the same /29 address space for your firewall and the customers firewall you will need to do the 2 x /30 + 1 x /29. It would be more efficient if your provider could provide you a separate /30 just for the connection between your router and theirs and then you can use 2 x /29 for you and your customer.

Jon

Cisco are currently donating money to the Haiti earthquake appeal for every rating so please consider rating all helpful posts.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card