Ok I have a complete public class C network that is subnetted and distibuted into vlan's at a core router. The first half of the class C is carved out into Subnets of 255.255.255.224 and thus have 30 useable hosts on each subnet. So my problem is that i've ran out of IP addresses on one of the vlans that goes to a SonicWall Pro 2040. I have created the new subnet and assigned it to a vlan on the switch. The new vlan has a network address of 123.123.123.128 and subnet of 255.255.255.224. I combined the two vlans so they are both coming into a single WAN interface on the SonicWALL. Here is were I ran into my first problem, the firewall will give you an invalid pair error if you try adding a range to your DMZ that is outside of your firewall's subnet. So in order for it to accept the traffic from both networks I had to change the firewalls' WAN interfaces subnet to 255.255.255.0 so it would take the whole Class C. I then made static routes to route the traffic for the other unneeded vlans. Does anyone know a better way to do this??? I can now successfully connect to the new IP address's From the WAN and LAN sides of the firewall, but not from the DMZ. So my already in place servers in the DMZ can not communicate with the servers in the same DMZ that I just added from a diffrent subnet. I am thinking my already in place servers traffic is hitting the firewall and the firewall is saying yeah that IP is in my DMZ but with a subnet of 255.255.255.0 (which is how the sonicwall's WAN see's the class C network). Does anyone know how I can get the servers on the DMZ to be able to communicate??
Start Free Trial
