Hello Community,
I am having a hard time adding a new IP block to my PIX 520.
Here are my specs:
| Hostname | AGNIPIX520 | Device | PIX 520 |
| PDM Version | 3.0(4) | PIX Version | 6.3(5) |
| User | root | Privilege Level | 15 |
| JavaScript | Enabled | Java | Enabled |
| Browser | Internet Explorer 8.0 | JDK Version | 1.5.0_05 |
| OS | Windows XP 5.1 |
I have an existing external IP block on eth1 which is working fine. I have another eth3 card which I want to use for my additional IP range.
So my ISP gave me a new /27 block is addition to what I have now. This block is supposily active and nothing is needed to configure on the ISP router, it is said that it is autmatically available and ready to use once I configure my PIX.
I am using the PIX GUI and running into an error while trying to create a NAT pool "Start and end addresses overlap with existing range"
I have done the following:
1. I have filled in the eth3 IP address info:
a. enabled: YES
b. name: NewBlock
c. security level: 30
d. ip address: 173.xxx.xx.65
e. subnet mask: 255.255.255.224
f. hardware: ethernet3
2. physically plugged an ethernet cable in the ethernet3 port then to a laptop who has an ip address of 173.xxx.xx.66, mask: 255.255.255.224 (just as a test laptop to see if I can get the internet)
3. Used the GUI and clicked the "host/networks" tab and selectted the interface "NewBlock".
4. Edited the NewBlock-pool, clicked the "NAT" tab, clicked "Manage Pools".
5. Tried to add a pool to "NewBlock" using range 173.xxx.xx.66 - 173.xxx.xx.91
6. Receive error stating that "Start and end addresses overlap with existing range", my other range is nothing like this new range. This is the actual command that the PIX does not like: global (NewBlock) 1 173.xxx.xx.67-173.xxx.xx.91
I have searched all throughout my PIX and cannot find any conflicting IP addresses anywhere. I have no idea what I am doing wrong.
I have posted some screen shots. Please let me know if you need me to post any other screen shot
Thanks in advance!
