Solved

Change subnet mask to get more addresses

Posted on 2014-10-08
5
413 Views
Last Modified: 2014-10-12
I have a network 192.168.111.0 /24 and I am running out of Dhcp addresses.  I do not want to add another Vlan even though I know that is an option.   I want to change the mask to /22 255.255.252.0 to gain the addresses that way.  My plan is to change the mask on the firewall LAN interface.  Create a new Dhcp scope on the firewall using the new range.  Dhcp devices will need to renew to get a new address.  For the static devices I need to change their mask manually.  My question is will I be able to connect to the static devices remotely when they have the old mask if I've made the change on the firewall already?  I am trying to do this without going to the site and want to verify it will work.  

Old range is 192.168.111.0 - 255

New range 192.168.108.0 - 192.168.111.255
0
Comment
Question by:dmwynne
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
5 Comments
 
LVL 40

Assisted Solution

by:omarfarid
omarfarid earned 167 total points
ID: 40369066
I would suggest to connect to each device / systen and change its subnet mask before doing it in firewall or dhcp
0
 
LVL 81

Assisted Solution

by:David Johnson, CD, MVP
David Johnson, CD, MVP earned 166 total points
ID: 40369220
as long as the new netmask is less restrictive than the old netmask you will be able to connect without any issues.  In other words as long as the network address fits in the defined network area defined by your netmask.
0
 
LVL 26

Accepted Solution

by:
Fred Marshall earned 167 total points
ID: 40369970
Mostly yes.  The issue is whether you need the broadcast addresses to match and, WHEN.
In most cases, it won't matter.
I always change the gateway and DHCP *first*.
Newly addressed devices will be in line with the new settings.
Old settings will still work because:
- If packets are addressed within the old subnet then they will just go out on the wire and that's all there is to it.
- If packets are addressed to the expanded subnet (why would they be?) then they will be directed to the gateway; the gateway will put them back out on the wire and they will reach their destinations after that one hop.
0
 
LVL 17

Expert Comment

by:pergr
ID: 40370373
In order to avoid disruption, you need to keep the firewall IP (which is the default gateway in DHCP and for the hosts) within the 192.168.111.x range.
0
 
LVL 16

Expert Comment

by:vivigatt
ID: 40370379
It will work provided that you do not have any node that currently has an IP address in the "new pool" of addresses .
You must:
- keep all existing routing devices DNS, DHCP, WINS etc. with their existing IP addresses, just change their subnet mask
- change subnet mask on the static devices but keep their existing IP addresses and router/DNS settings
- delete the existing dhcp scope and create a new one with the new subnet mask. Remember to exclude the static devices from the pool.

Some resources that will help you:

http://www.subnet-calculator.com/
http://support2.microsoft.com/kb/255999
http://technet.microsoft.com/en-us/library/dd145324%28v=ws.10%29.aspx
0

Featured Post

Instantly Create Instructional Tutorials

Contextual Guidance at the moment of need helps your employees adopt to new software or processes instantly. Boost knowledge retention and employee engagement step-by-step with one easy solution.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
Most of the applications these days are on Cloud. Cloud is ubiquitous with many service providers in the market. Since it has many benefits such as cost reduction, software updates, remote access, disaster recovery and much more.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question