Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Basic Question

Status
Not open for further replies.
Lost2M8

Lost2M8

IS-IT--Management
Mar 17, 2009
6
CA
Question:

I have just started a new job....

We have a Cisco 2800 series internally (behind a pix, but offsite). Now for some reason the internal LAN IP (e0/0)is not a valid internal IP (IE 212.212.212.x) but the e/01(WAN) is a valid internal address (192.168.100.1).

Now I of course want to change the LAN address from 212.212.212.1 to 192.168.100.2 but is this proper standards? In my previous job our external would be x.x.100.x and LAN ip would be x.x.101.1

Hopefully someone understands me....

Thanks in advance.
 
Sort by date Sort by votes
I wouldn't recommend you change anything until you understand that routers functionality completely. Is your local network 212.212.212.x? Post a copy of the config.
 
Upvote 0 Downvote
I can post it tomorrow. I am obviously not doing anything for a few months but the all the routes use the correct WAN addresses.

There are 6 sites. Each site has a 2800

1. LAN IP 212.212.212.x WAN IP is 192.168.212.x
2. LAN IP 212.212.213.x WAN IP is 192.168.213.x
3. LAN IP 212.212.214.x WAN IP is 192.168.214.x
4. LAN IP 212.212.215.x WAN IP is 192.168.215.x
5. LAN IP 212.212.216.x WAN IP is 192.168.216.x
6. LAN IP 212.212.217.x WAN IP is 192.168.217.x

All I am wondering is can the LAN be the same subnet. So say E0/0 is 192.168.212.1(WAN) and the E0/1 (LAN) be 192.168.212.2 or should I use a different IP such as 192.168.222.1 for the e0/1 port.

I know I will have to change all the statics inside the LAN, update the DNS server, change the port forwarding IPs (yes i know I have a lot of planning!) but this will help me start planning my addys.


 
Upvote 0 Downvote
Oh and I should add they are behind a sinlge pix firewall.
 
Upvote 0 Downvote
Thanks Burt?? I can tell u the technology coming in and between each site....that has nothing to do with the question.
 
Upvote 0 Downvote
If you say so...I mean, the fact that you have 6 public IP addresses INSIDE for public access and privates on the WAN for interlan comms has NOTHING to do with the fact that this is how T1 technology is sometimes handled...change it if you want to, then...NAT everything to one public IP on the outside...what can I say? But thanks for pointing that out...

Burt
 
Upvote 0 Downvote
Incase you missed the top, I just started here. I never implemented those addresses. I know I can make it anything I want and NAT, I am asking if there is a common standard for this.
 
Upvote 0 Downvote
It seemed that you were asking why the addresses seemed to be reversed, and I was merely pointing out that this is one way to do it. I mentioned what the technology looked like in the hopes that you would confirm/deny---that is a starting point.
I have seen it done this way because it seems people want to have public IP addresses for their FTP/ and what-not rather than NAT them. Sometimes people like to see this as not wasting their 6 addresses that come with the T1. Myself---I have the same, and I NAT to one address. It seems safer this way...

HTH

Burt
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Zero6
  • Locked
  • Question
question about cisco cbs 350-12xs 12 port 10g sfp+
Replies
0
Views
235
Zero6
Zero6
Mogles49
  • Locked
  • Question
Firewall ACL question
Replies
1
Views
190
burtsbees
burtsbees
mkc1962
  • Locked
  • Question
Cisco 2602e connection question
Replies
0
Views
106
mkc1962
mkc1962
azrael2000
  • Locked
  • Question
quick question...re layer 3 with routing
Replies
1
Views
183
chieftan
chieftan
lwhalo
  • Locked
  • Question
ASA 5520 Packet Capture Question
Replies
0
Views
118
lwhalo
lwhalo

Part and Inventory Search

Sponsor

Back
Top