Solved

Route Public IP to DMZ

Posted on 2008-10-30
1
1,124 Views
Last Modified: 2012-05-05
Current config
Outside x.x.x.2/27
Inside x.x.x.1/16 Private Address
DMZ x.x.x.1/16 Private Address
We are using static NAT to publish all of our servers in the DMZ this works very well no issues. We are installing a OCS 2007 Edge server and one of the requirements is to have a public routable IP on the interface that does voice and video. Entry my problem, how do I get one of my public IPs routed through our ASA 5510 to the server.

I thought about adding a sub interface on another VLAN for this and assigning one of my public IPs to the sub interface and then another to the server nic. My question is will this cause routing issues? because basicly I would have the same network assigned to 2 interfaces but my default route statments are assined by interface. Very confusing, would like some guidance on this before I jump in and make a mess of things.
0
Comment
Question by:DAKARG
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 32

Accepted Solution

by:
harbor235 earned 500 total points
ID: 22842750


You have plent of interfaces you could also use a dedicated interface or the sub interface, either wayt it works.
The only problem is you need a unique network IP block for the sub or the physical interface, it cannot not be an IP in the same network as the outside interface.

You cannot have the same network assigned to 2 different interfaces

harbor235 ;}
0

Featured Post

Free NetCrunch network monitor licenses!

Only on Experts-Exchange: Sign-up for a free-trial and we'll send you your permanent license!

Here is what you get: 30 Nodes | Unlimited Sensors | No Time Restrictions | Absolutely FREE!

Act now. This offer ends July 14, 2017.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you have an ASA5510 then this sort of thing would be better handled with a CSC Module, however on an ASA5505 thats not an option, and if you want to throw in a quick solution to stop your staff going to facebook during work time, then this is the…
You deserve ‘straight talk’ from your cloud provider about your risk, your costs, security, uptime and the processes that are in place to protect your mission-critical applications.
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question