Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Firewalls Community


Cisco ASA - Combination of PUBLIC and LOCAL IP within one ASA 5510.

We configured ASA5510 like this:

Int0 – outside connected to modem

Int1 – inside connected to internal switch

IP Route is managed by configuring PPPOE within ASA


Our inside has IP

Our outside has IP


Obviously, we could use any of the static public IP address within range /29 connected to internal interface int1 which they are all consider behind Firewall and we could manage to open port or services to any. (e.g. if we connect application mail server to one static IP facing inside network like, we could manage to open SMTP ports in/out and or SSH to trusted IP)


What we need now is to have another range of internal IP address (i.e. class C like in 3rd interface ASA (int2) and they have routed to one of the public IP within int1 (inside).


For instant, we want to have routed to and also have an opportunity to do apply firewall rules and NATing from external to internal (i.e. assume we set web-server on IP, we like to open port HTTP and HTTPS to public while external IP would be


Clearly this is possible by adding another router – but we want to use same ASA5510 for both of these requirements.

If anyone done this before or have some solution, we would apricated the help and feedback.


Everyone's tags (4)
VIP Advisor

Re: Cisco ASA - Combination of PUBLIC and LOCAL IP within one ASA 5510.

It would be nice if you can make some network diagram to understand your requirement.


If i understand your question well (correct me if iam wrong)


You have network like this


Cable modem --(outside 170.X.X.X) ASA-- Inside (10.X.X.X) -- Servers and Devices

This is is possible as standard setup ?


if this is not the case, provide some topo for better suggestion.




*** Rate All Helpful Responses ***
CreatePlease to create content
Content for Community-Ad
FusionCharts will render here