Link to home
Create AccountLog in
Avatar of gopher_49
gopher_49

asked on

multiple subnet on outside interface of ASA 5510

My ISP has issued me two subnets which each having 5 useable IP's.  The first subnet is bound to interface 0/0.  I want to bind the other subnet to a virtual interface for I only have one physical port on my ASA plugged into their router.  Below is my current interface config.  What are the commands to create a virtual interface for my outside interface? ALso, how can I perform a one to one NAT on to an IP address of 192.168.1.12 that is accessble via my 0/1 interface?  This one to one NAT being from one of the useable IP's on the new subnet?

ASA Version 8.4(2)

interface Ethernet0/0
 nameif outside
 security-level 0
 ip address xx.xx.xx.xx 255.255.255.248
!
interface Ethernet0/1
 speed 100
 duplex full
 nameif inside
 security-level 100
 ip address 192.168.1.1 255.255.255.0
Avatar of Pete Long
Pete Long
Flag of United Kingdom of Great Britain and Northern Ireland image

Why not simply use the second range on Ethernet0/2 ?
Avatar of gopher_49
gopher_49

ASKER

I only have 1 physical interface on the ISP's router.  So, I would have to introduce a new physical switch on my end to be able to plug in two physical ports from my ASA into the switch and in return their router into my switch.  I do not wish to create a VLAN on my existing switch to place public devices into..  As I understand this is why the virtual interfaces get their value..
ASKER CERTIFIED SOLUTION
Avatar of Les Moore
Les Moore
Flag of United States of America image

Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
See answer