Hello Alain,
Not sure you if you can reply but I tried what you suggested and am running into minor issues. I think it has to do with the default route in my switch. Below is what I was originally trying to accomplish...
GE 1/0 x.x.1.5 - server - currently server/office network are the same. has dedicated switch directly connected
GE 1/3 x.x.4.5 - new office subnet. want to use same switch as the server and vlan/trunk each subnet to different asa interfaces
So on the ASA..
GE 1/0 x.x.1.5 - server subnet is good to go. can ping the outside world - directly connected to switch
GE 1/3 x.x.4.5 - Interface is up on the ASA, able to ping devices on on the server subnet and of course the office, outside world, no go. These interfaces are directly connected to a 3750x.
On my switch, I created 2 VLANs....
interface Vlan 1
description Server VLAN
ip address x.x.1.1 255.255.255.0
interface Vlan 4
description Office VLAN
ip address x.x..4.1 255.255.255.0
All ports have appropriate vlan access (swtichport access) "should i be trunking my switch ports that are directly connected to the ASA or I can leave them as is?"
Now I think my issue is with my default routes...
ip route 0.0.0.0 0.0.0.0.0 x.x.1.5 ---- Server Subnet - When it was just the servers default, I had full access.
when i added the next default route for the office subnet this is where it seemed issues began
ip route 0.0.0.0 0.0.0.0 x.x.x.4.5 ---- I saw both routes establish for each VLAN but it didn't seem i could get out
Are my default routes right or should they be something else. I'm assuming this is why I cant see my new office subnet from the outside. I can't even access the office switch vlan of 4.1. im able to get to the server switch vlan 1.1 just fine. for now, i only left a default route pointing to 1.5.
Again, hope I didn't lose you. If anyone else can shed some light, I would greatly appreciate it.
Thanks in advance,
-j
