My configuration has different subnet masks at the global level, a /23 for the ethernet interface and 2 /24 masks for the nat pools. Is there anything wrong with this on the PIX?
Also, I would like to set up an access-list for a subnet of the /23 address space. Any problem there?
Would it be more normal to see separate class c address spaces on separate interfaces, if routing between them is required?
global (outside) 1 207.94.218.100-207.94.218.110 netmask 255.255.255.0
global (outside) 2 207.94.218.120-207.94.218.140 netmask 255.255.255.0
nat (inside) 1 10.0.4.0 255.255.255.0 0 0
nat (inside) 2 10.0.5.0 255.255.255.0 0 0
ip address inside 10.0.4.17 255.255.254.0