05-15-2019 06:31 AM
HI
I have 2 public IPs coming over a single circuit terminating in a firewall (Cisco ASA 5525)
One is for a SIP trunk and one is for Internet connectivity.
I am wondering how to configure the firewall interface to use both Public IPs on the single interface. Would it be sub-interfaces?
Solved! Go to Solution.
05-15-2019 12:02 PM
You can use proxy ARP with NAT, then you will not need to configure the IPs on the physical interface. Optionally you could configure the IP for internet traffic on the interface and NAT the SIP IP
05-15-2019 09:17 AM
You do not required to configure IP address to interface, if they are routed to your FW interface, you can do NAT based on the requirement.
if this was not the case explain, how they routed ?
05-16-2019 03:35 AM
I am not sure how the ISP are routing but originally it was a single public IP for internet connectivity to the FW interface and we had to add second public IP to that link for a SIP trunk.
I think NAT the second IP for the SIP trunk is the way forward.
Thank you for your reply.
05-15-2019 12:02 PM
You can use proxy ARP with NAT, then you will not need to configure the IPs on the physical interface. Optionally you could configure the IP for internet traffic on the interface and NAT the SIP IP
05-16-2019 03:37 AM
This is exactly what I need to do. My confusion was coming from the physical interface being originally configured with a public IP just for Internet and additional IP added for SIP trunk and had me scratching my head how both Public IPs will come into that interface.
Thanks for the reply.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide