Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
256
Views
0
Helpful
3
Replies

Confuse in Infastructure

Go to solution
hirwan001
Level 1
Level 1

‎04-22-2016 04:30 PM - edited ‎03-08-2019 05:28 AM

Hi

im fairly new and about to sit for my CCENT exam soon. i still confuse on a few set up of Network equipment. if ISP provide static ip for a company, how and where do you set the Static IP to, from this kind of setup:-

1) ISP Modem ----> Firewall ----- > Router --------- > Switch

2) ISP Modem ------> Router ---------> Switch

Bonus question: if the company was given 5 static IPs from ISP provider

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
nspasov
Cisco Employee
Cisco Employee

‎04-22-2016 05:46 PM

Hi there!

#1) Usually, the public IP address will reside on the "outside" interface of your firewall. That way you can NAT/PAT your private IPs to that interface. 

#2) In that case the public IP will go on the router. Again, you will run NAT/PAT on that interface.

Bunus Question: I am not really sure I understand the question :) But if you are given 5 IPs then you can either, assign those IPs directly to hosts inside your network, or configure your perimeter device (router/firewall) to utilize those IPs for static and/or dynamic NAT

I hope this helps!

Thank you for rating helpful posts!

View solution in original post

0 Helpful
3 Replies 3

Go to solution
nspasov
Cisco Employee
Cisco Employee

‎04-22-2016 05:46 PM

Hi there!

#1) Usually, the public IP address will reside on the "outside" interface of your firewall. That way you can NAT/PAT your private IPs to that interface. 

#2) In that case the public IP will go on the router. Again, you will run NAT/PAT on that interface.

Bunus Question: I am not really sure I understand the question :) But if you are given 5 IPs then you can either, assign those IPs directly to hosts inside your network, or configure your perimeter device (router/firewall) to utilize those IPs for static and/or dynamic NAT

I hope this helps!

Thank you for rating helpful posts!

0 Helpful

Go to solution
hirwan001
Level 1
Level 1
In response to nspasov

‎04-24-2016 10:53 PM

Hi

Thanks Neno Spasov for the reply. But if for part 1) since public ip reside at the firewall, what do we set up for the router, for example Router to Firewall is Fa 0/0 and router to switch is Fa 0/1. Sorry for the question, just confuse. i know its still long way for me to go.

0 Helpful

Go to solution
nspasov
Cisco Employee
Cisco Employee
In response to hirwan001

‎04-25-2016 08:43 AM

You would setup a "transit" network like a /30 (for point-to-point) or something like /24 if other devices are to exist on that subnet. That transit network will be based on private/RFC 1918 type address space. 

Thank you for rating helpful posts!

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card