Cisco ASA Mixed routed and transparent

rasoftware · ‎04-16-2013

I have a requirements for the following but not sure if its possible

PPoE on the WAN - picks up an IP from the ISP then private behind - NATed - this is no issues.

But the connection also comes with an additional 5 IPs public IPs. Traditionally I would have installed a router and then hung off devices with public IPs behind this router.

Is this possible on a single unit.

I was thinking maybe it can be done via sub interfaces.

Basically this is possible on a BT hub but I want to replace with a Cisco.

James Leinweber · ‎04-16-2013

Provided the ISP is routing the 5 public IPs to the outside interface of the ASA, you can pretty much do whatever you want with them once they get there. An ASA makes a mediocre router, but it can do more than enough to handle this scenario. Three standard choices would be:

1) NAT them to internal addresses

2) use route statements to send them to particular inside devices

3) directly attach a /29-ish subnet to an interface or subinterface

Is your ASA running in routed mode or transparent mode?

-- Jim Leinweber, WI State Lab of Hygiene

rasoftware · ‎04-23-2013

PPPoE is working which assigned a dynamic to the outside interface. I can map the various IPs in the range to internal addresses. I can even make all outgoing via nat appear as one IP but...

Is there anyway I can get the outside address to appear as one of the static IPs? It causing me a problems for site to site IPSEC.

I only have base license and if I had other would NAT all out going and use the for IPSEC.