ASA 5510 multiple outside networks multiple IP

Discussion in 'Cisco' started by Gerry, Mar 16, 2008.

  1. Gerry

    Gerry Guest

    Hi

    our ISP provides us with two C-Class Networks lets say 1.1.1.0 and
    1.1.2.0.
    with the gateways 1.1.1.1 and 1.1.2.1.

    Now we have on different networks different services running

    e.g. 1.1.1.2 (vpn)
    1.1.2.2 (www)
    1.1.2.3 (special application)

    which we want to consolidate to come into our private network over one
    ASA5510

    when we try to configure
    one outside interface to 1.1.2.2/255.255.255.0
    and then the next outside interface to 1.1.2.3/255.255.255.0

    the ASA tells us that this is not possible due to overlapping networks

    is there any solution for that.
    The second question which appears is how to configure two default
    routes
    as the 1.1.1.2 requests need to go back to 1.1.1.1
    and the 1.1.2.3 and the 1.1.2.2 requests need to go back to 1.1.2.1

    Can anybody help us?

    Thanks
    Gerry
     
    Gerry, Mar 16, 2008
    #1
    1. Advertisements

  2. Gerry

    akant Guest

    Gerry,

    I will tell you that we are fighting the same problem here on our
    end. We have worked with TAC over these last couple of weeks and also
    consulted some folks inside Cisco. The specialists at Cisco say that
    there is a way to support what you are describing, we just cannot find
    anyone to tell us the correct information. As it stands we are still
    working with them. I will post our results once I hear more. We are
    working with an ASA 5510 with no sec plus license 7.2.2(3)

    Kenny
     
    akant, Mar 16, 2008
    #2
    1. Advertisements

  3. Gerry

    Morph Guest

    In the message
    <>
    Gerry wrote:

    | our ISP provides us with two C-Class Networks lets say 1.1.1.0 and
    | 1.1.2.0.
    | with the gateways 1.1.1.1 and 1.1.2.1.
    |
    | Now we have on different networks different services running
    |
    | e.g. 1.1.1.2 (vpn)
    | 1.1.2.2 (www)
    | 1.1.2.3 (special application)
    |
    | which we want to consolidate to come into our private network over one
    | ASA5510
    |
    | when we try to configure
    | one outside interface to 1.1.2.2/255.255.255.0
    | and then the next outside interface to 1.1.2.3/255.255.255.0
    |
    | the ASA tells us that this is not possible due to overlapping networks
    |
    | is there any solution for that.
    | The second question which appears is how to configure two default
    | routes
    | as the 1.1.1.2 requests need to go back to 1.1.1.1
    | and the 1.1.2.3 and the 1.1.2.2 requests need to go back to 1.1.2.1

    Hi Gary.
    Why do you need one outside interface with 1.1.2.2/24 and then another
    interface with 1.1.2.3/24?
    If I understand you correctly you want two phisical interfaces
    configured with the addresses above and not only one phisical interface?
     
    Morph, Mar 16, 2008
    #3
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.