Solved

Extending  a subnet

Posted on 2016-11-10
9
86 Views
Last Modified: 2016-11-11
Hello All

I have  10.90.1.0 /24  wifi subnet that terminates on my  ASA Firewall. The Wifi team want  to make the subnet  a  /16.
The current default gateway is 10.90.1.1 Will the Gateway have to change  ? are any changes that will have to made.
Thanks
in advance.
0
Comment
Question by:thombie
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
9 Comments
 
LVL 25

Accepted Solution

by:
Ken Boone earned 250 total points
ID: 41882318
So you can leave the gateway Ip address the same, but just change the mask.
So your network will now be 10.90.0.0 /16

Your first usable address is 10.90.0.1     -- I would probably change my gateway to this but you don't have to as 10.90.1.1 is still in the subnet.

Why do they want to make the subnet so large?  If it is getting a little tight, why not move it out to a /23 instead of /16?

Other things to thing about - if this is guest wifi - change the lease time down to hours instead of days.. That frees up unused IP addresses in the pool quicker.

Hope that helps.
0
 
LVL 27

Assisted Solution

by:skullnobrains
skullnobrains earned 250 total points
ID: 41882330
don't forget to change the network mask on the gateway and all the clients.
since the clients receive their ips through dhcp ( at least i assume they do since this is a wifi network ), you probably can do all the setup on the gateway. just remember that existing clients won't be able to reach the hosts outside of their /24 until they renew their leases.
0
 

Author Comment

by:thombie
ID: 41882367
Thanks Guys
 In answer to the questions.
1. the Subnet is for a large public space and the  WIFI Insist on make it a /16 ( might make it a /22  as compromise.)
2. The clients only have  30 minute leases. from DHCP.
0
Turn your laptop into a mobile console!

The CV211 Laptop USB Console Adapter provides a direct Laptop-to-Computer connection for fast and easy remote desktop access with no software to install.

 
LVL 3

Expert Comment

by:Wirelessnerd
ID: 41882379
As said by others: you do not have to change your default gateway ip address. You will have to change to subnet mask setting on that default gateway though

So you will need to change:

- your firewall interface (if it is directly connected)
- your firewall routing (if it is not directly connected)
- your firewall rules concerning that network
- any router that may have a static route configured or an interface in said subnet
- dhcp server (scope and options)
- any devices with a fixed ip address in that range

And hopefully you have no other network in use inside that 10.90.0.0/16 space?
1
 

Author Closing Comment

by:thombie
ID: 41882381
Thanks Guys very useful
0
 
LVL 27

Expert Comment

by:skullnobrains
ID: 41882429
1. the Subnet is for a large public space and the  WIFI Insist on make it a /16 ( might make it a /22  as compromise.)

i see little to no reason for /22 as a general rule
unless you lack ip space, it is much easier to maintain /24 /16 /8 ranges
easy to read and understand by non-professionnals and instant conversion between quad notation and masklen

usually, you divide the ip space into /24 subnets and end up with partial subnets when you need to split existing subnets

basically, either you expect many hosts and a complex network and you need some kind of logic for subnet attributions ( maybe 10.datacenter.room.machine in which case you might split the resulting subnets to handle multiple lans ) or you had better use /16 for mostly everything and split whenever needed

obvioulsy there is no "good" way of doing stuff. what matters is taking a while to figure out where you are going.

2. The clients only have  30 minute leases. from DHCP.

depending on your workflow, this might be a bit long
even if you had 65k hosts connected at a time, 5 minutes would not put a huge strain on the dhcp server
if you provide wifi to your employees, 30 minutes seems reasonable, if you are operating a hotspot in a railway station, 5-10 minutes seem more economic

--

do not forget that dhcp servers have lease durations and also lease reservation durations ( possibly called "backoff" or whatever similar term ).
if you take a default server with for example a 1 day default lease duration and 2days reservation, and only change the lease duration, the ips are still reserved for a couple of days. you might want to double-check
0
 

Author Comment

by:thombie
ID: 41882457
skullnobrains   - Good call  I will check out the leases durations,. I have not messed with windows dhcp servers for a while.
0
 
LVL 27

Expert Comment

by:skullnobrains
ID: 41883451
neither did I : does win2k even count ? i'm pretty sure i never setup ms's dhcp since so i won't be able to help you much with that part
0
 

Author Comment

by:thombie
ID: 41883990
skullnobrains: No worries I have that covered I am going to make the changes  20:00  tonight.  we will see what happens.
0

Featured Post

Free NetCrunch network monitor licenses!

Only on Experts-Exchange: Sign-up for a free-trial and we'll send you your permanent license!

Here is what you get: 30 Nodes | Unlimited Sensors | No Time Restrictions | Absolutely FREE!

Act now. This offer ends July 14, 2017.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When speed and performance are vital to revenue, companies must have complete confidence in their cloud environment.
During and after that shift to cloud, one area that still poses a struggle for many organizations is what to do with their department file shares.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…

687 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question