Two subnets on ASA5510

tnelson1992 · ‎05-04-2017

Hi,

New to Cisco so sorry if these are basic questions..Recently received an ASA5510 that was setup with a single IP subnet from our ISP fiber modem and worked fine. We've just added a second block of IPs (different subnet/gateway) that I'm having issues being able to access. Both blocks are sent to the ASA over a single interface from the fiber modem. I've tried several different configurations and have succeeded in confusing myself at this point. I'm hoping there is a simple way to accomplish this that this forum can point me to. Thanks very much for any direction/information.

Richard Burts · ‎05-04-2017

If I am understanding the post correctly then your ISP has provided a second block of IP addresses. The most common way to use these is to create address translation that uses these new addresses for translation. There is no need to assign the new IPs to interfaces, but just use for translation.

HTH

Rick

HTH

Rick

Karsten Iwen · ‎05-04-2017

And not to forget "arp permit-nonconnected" which is needed in this scenario.

tnelson1992 · ‎05-05-2017

Thanks for the information. We are currently running 9.1.7 on our 5510 which I've read may have an issue with the arp permit-nonconnected feature. Can anyone confirm this? If this is an issue, would rolling back to 9.1.6 be a good next step? Thanks again.

Karsten Iwen · ‎05-05-2017

What problems should that be? And you should better upgrade to the newest 9.1(7) interims-version.