Need input on running multiple subnets on one LAN

Posted on 2008-11-07
Last Modified: 2012-06-21
I have a primary LAN subnet of 192.168.0.x. We are running out of IPs. I added and use It works but I have concerns. Here is how I set it up.

1. I have a SonicWall Pro 3060. The LAN port is my gateway ( I created an object
2. Created a static ARP entry of for the gateway which points to the same LAN interface on the SonicWall.
3. Allowed all traffic outbound from that subnet. Inbound abides by existing rules.
4. On my DHCP server I already had so I created the subnet then created a Superscope. Added both of them to the super scope.
5. Because I wanted to use Static DHCP I added the full range then excluded, Then reserved using the MAC address of one of the PCs so everytime it connected to the LAN it gets that address.

I am wondering if I can do away with the Static ARP entry on the SonicWall and do all work on the DHCP server regarding the gateway. I did go into the scope options and change the router address from to and it seems to work but I still wonder if I am missing somthing or if there will be negative consequences later.

What do you all think about this setup?

Question by:pbhcpa
    LVL 79

    Assisted Solution

    I think that it may work most of the time, but is not ideal. Creating two separate IP subnets on the same wire creates some ARP issues as you already seem to be aware of, as well as broadcast issues.
    A "better" way would be to use VLAN's and route between the vlans either with a L3 switch or on the sonicwall (don't know enough about the sonicwall to be much help there).
    The issue with vlans becomes Windows and netbios broadcasts. Now you need name resolution between the subnets and a browse master per subnet...maybe even a dns server per vlan. DHCP would not be a superscope, but would be two individual scopes and you would have to use dhcp-relay or have 2 dhcp servers.
    We do not recommend more than the 250 or so hosts that a single class C network supports on a single broadcast domain anyway, so breaking it up into logical vlan chunks will bring some efficiencies.

    You could use what you have described here as a temporary measure until you can get everyone over to a 10.10.x.x IP address and then revert back to one big happy network by dropping all the 192.168.0.x addresses everywhere.


    Accepted Solution

    Investigating the VLAN possibility with my SonicWall. May need input. Thanks.

    Author Comment

    Using static ARP entries and Super Scopes on my DHCP server seem to be working fine but we may explore VLANs later on. Thanks for the direction.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    How to run any project with ease

    Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
    - Combine task lists, docs, spreadsheets, and chat in one
    - View and edit from mobile/offline
    - Cut down on emails

    Security is one of the biggest concerns when moving and migrating your data from your on-premise location to the Public Cloud.  Where is your data? Who can access it? Will it be safe from accidental deletion?  All of these questions and more are imp…
    Learn about cloud computing and its benefits for small business owners.
    After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
    After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

    761 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    8 Experts available now in Live!

    Get 1:1 Help Now