Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
617
Views
0
Helpful
3
Replies

Cisco Firewall Overlapping Internal Network Issue

vesiclife1
Level 1
Level 1

‎11-07-2016 03:25 PM - edited ‎03-12-2019 01:30 AM

I am trying to protect an internal network from another internal network on the same subnet with a cisco 5505 firewall. I don't know if it is possible with the conifguration my boss would like to implement but I have attached a jpeg photo of the layout. 

Labels:
0 Helpful
3 Replies 3

vesiclife1
Level 1
Level 1

‎11-07-2016 03:34 PM

Do I need a router to get traffic on the same subnet to anoter network on the same subnet through the firewall?

0 Helpful

Pablo
Cisco Employee
Cisco Employee
In response to vesiclife1

‎11-07-2016 06:38 PM

Hi,
Yeah you need another device in between, it's not possible to configure 2 firewall interfaces on the same subnet unless you have multi-context mode which is not supported on the 5505.
Even if you get that router in between, you'll have to do full network source address translation on the ASA and the router in order to protect the overlapping network.
I know you mentioned the addressing can't be changed but it seems the best route you can take is to break that class C subnet into two /25 nets.
HTH
Pablo
0 Helpful

vesiclife1
Level 1
Level 1
In response to Pablo

‎11-08-2016 09:17 AM

Yep. I am going to change the subnet on one network and assign others to the servers. 

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card