ASA5510 multiple Ext IPS, multiple inside networks

[kp1658]

I have a ASA5510 setup and working perfectly for 1 external live IP and a single inside network of servers. VPN also works.

I have 2 more Ext live IPS and have 2 more separate inernal networks to connect to. They are SBS2008 networks, mostly with Exchange, Sharepoint and Web intranets running - for separate clients. So all 3 internal networks cannot see other.

So, I essentially need to just duplicate my working setup 2 more times. Read through several threads, but multi-contexts is out because of needed VPNs for each customer. I tried to just add another outside interface with a second live IP - but got the "overlapping subnet" message.

I have my 1st IP assigned to E0/0 -outside and the 1st internal interface is E0/1 . I was thinking that maybe assigning all 3 live ips to the outside interface and then adding some static routes to point to the internals? Since all 3 internal networks will be using the same ports, is this feasible?

You can probably tell this is my 1st venture into an ASA - coming from an ISA environment.

Any guidance or help is greatly appreciated...I can post a scrubbed config if it'll help.

Kevin

 

[North323]

post a config...but why dont you use a NAT from your internal network to your 1 external IP

 

[kp1658]

Pretty weak with this Cisco / routing stuff, but with all 3 internal networks needing their own 443, 25, 967 ports - is that possible with NATing?

Also - most all of the traffic will be incoming as these will be remote 'hosted' services for each customer.

 

[North323]

well, then you may have an issue, you may be able to with static NAT's and static routes, would have to see a config