Routing to 2 different outside IP ranges on PIX

[30362]

I currently have a public IP range from my ISP of /29, we have run out of addresses so I requested more and they gave me a second range with /28, the new range is configured to use the same router IP as the gateway but I am not 100% what I need to change on my PIX so it will handle that new range.

Under Routing / Static Routes on the PIX I have only one outside interface configured with the old /29 range but the netmask is 0.0.0.0, do I need to change that netmask to 255.255.255.248 and then add another outside interface with the new range and netmask?

 

[30362]

One other question, since the new IP range uses the same router IP on the WAN side do I need to make any route changes on my WAN router?

 

[lgarner]

Are these different IP ranges? If so, how do they both use the same WAN IP address for a default gateway?

 

[30362]

Yes, the OLD.IP.RANGE/29 and NEW.IP.RANGE/28 are totally different IP ranges, however they are both from the same provider so they are both configured to use the WAN router serial interface IP address.

 

[308win]

If you want to use the entire range inside your firewall then have the ISP change the route for the address range to the firewall. You can NAT them on your outside interface. You might find yourself needing to either put the new subnet behind a router or an additional interface or VLAN on the firewall if you use identity NAT