Guest_imported
New member
- Jan 1, 1970
- 0
We have two sets of /24 public addresses, would like to 'partition' a four-interface pix 515 as follows:
outside 200.200.200.1/24 (security level 0)
pub 100.100.100.1/24 (50)
pub-inside 172.16.1.1/24 (75)
inside 172.16.2.1/24 (100)
The goal is to provide translation between outside and inside, and between pub and pub-inside. The two 'outside' interfaces (outside and pub) are both going to be connected to an router interface via a dump switch (will this work? or do I need two separate switches?).
Will the whole scheme work? If not, what's are the problems you see? or what's a better way to utilize the two sets of public IP addresses?
Your opinions are greatly appreciated!
outside 200.200.200.1/24 (security level 0)
pub 100.100.100.1/24 (50)
pub-inside 172.16.1.1/24 (75)
inside 172.16.2.1/24 (100)
The goal is to provide translation between outside and inside, and between pub and pub-inside. The two 'outside' interfaces (outside and pub) are both going to be connected to an router interface via a dump switch (will this work? or do I need two separate switches?).
Will the whole scheme work? If not, what's are the problems you see? or what's a better way to utilize the two sets of public IP addresses?
Your opinions are greatly appreciated!