Announcement

Collapse
No announcement yet.

Can Cisco PIX 515 have more than one IP on one interface?

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Can Cisco PIX 515 have more than one IP on one interface?

    Hello all, searched google, cisco etc. but cannot find an answer regarding if my Cisco Pix 515 (yes the old one) will allow multiple outside IPs.

    Example, i got a pack of 5 IPs from the ISP, where I would like to break it down to the following:

    75.xx.xx.xx2 - http 1st domain
    75.xx.xx.xx3 - smtp 1st domain
    75.xx.xx.xx4 - http 2nd domain
    75.xx.xx.xx5 - smtp 2nd domain
    75.xx.xx.xx6 - VPN access


    Inside Network

    Cable Modem -> Cisco 851 Router -> Cisco Pix 515 Firewall -> 2x Dell PowerConnect 2724 Switches

    The cable modem and Cisco router belong to the ISP company and I am not allowed to reconfigure them. They said the the router is already assigned to have the 5 IPs.

    The Cisco Pix 515 firewall, has 2 port one WAN one LAN. The LAN port was configured to be 10.10.19.1 address for the internal network.

    10.10.19.2 - Domain Server
    10.10.19.3 - http & smtp server
    10.10.19.4 - 2nd http

    Firewall 10.10.19.1 - is also the VPN

    My main problem that I have right now is that apparently the PIX only accepts ONE outside IP being 75.xx.xx.xx2 or any of the other xx3-xx4-xx5-xx6.

    I am not able to configure the PIX to say that it has multpile IP addresses on the outside interface, then tell it to route them to its inside address.


    If you know of any firewall that is able to do this, could you please share the light...

  • #2
    Re: Can Cisco PIX 515 have more than one IP on one interface?

    You dont have to assign multiple ip's to the interface to allow traffic in from a block of ip addresses. Just assign one of the public ip addresses to your outside interface and configure static nat statements for the other addresses pointing to servers in your internal network. Your isp knows your range of addresses and they will route traffic to you appropriately.
    CCNP,MCSA (Win2k),Net +,A+

    Comment


    • #3
      Re: Can Cisco PIX 515 have more than one IP on one interface?

      You can't assign more than one address to an interface, but if you own the particular range you can set static maps based on the IPs in your range to pipe to specific servers/IPs on the inside.

      Comment

      Working...
      X