Protecting Multiple ip ranges with one PIX 525?

[Kevyn]

I have the ip ranges a.b.c.d, e.f.g.h, and i.j.k.l
I have one Cisco PIX 525 with two interfaces ethernet0 and ethernet1.


Do I need to purchase additional interfaces (PIX-4FE-66), one for each ip range?
OR can I assign all three ip ranges to the outside interface, ethernet0?


Thanks,
Kevyn

 

[gconnect]

Only if PIX 525 and the software version on it does vlans.
I am not sure if 525 does, but if so then here's how....

i.e.,
interface ethernet0 vlan10 physical
interface ethernet0 vlan20 logical
interface ethernet0 vlan30 logical
nameif ethernet0 outside sec0
nameif vlan20 DMZ2 sec 50
nameif vlan30 DMZ3 sec 75
ip address inside x.x.x.x x.x.x.x
ip address outside 1.1.1.1 255.255.255.0
ip address DMZ2 1.2.1.1 255.255.255.0
ip address DMZ3 1.3.1.1 255.255.255.0

You will need a switch that does 802.1q Trunking for this to work.