Re: 2nd DHCP Scope?
- From: "Stranger" <strangerx@xxxxxxxx>
- Date: Tue, 27 Dec 2005 11:46:45 -0500
I know when I go into the configuration of the firewall, there is a tab
called router. There is a static route in there for the 172.20.5.x network.
For the other networks 172.20.8.x, .7.x, .4.x, there are policies under the
firewall tab. Of course the 7 and 8 network are connected via the IPSEC
tunel.
Since I'm adding the 9.x network "on top" of the .4.x network and the
firewall only has an ip on the lan side for the 4.x network, I wonder if I
need to add another ip for the 9.x network. I know that the firewall can
also act as a layer 3 router if adding virutal lans to it. I do have a call
into the manufacturer to see what they say.
I would think that adding an ip range would not be this difficult. It is
the first time I'm trying it. :)
"Ace Fekay [MVP]"
<PleaseSubstituteMyActualFirstName&LastNameHere@xxxxxxxxxxx> wrote in
message news:OamOjauCGHA.3876@xxxxxxxxxxxxxxxxxxxxxxx
> In news:%23MHDCuqCGHA.412@xxxxxxxxxxxxxxxxxxxx,
> Stranger <strangerx@xxxxxxxx> stated, which I commented on below:
>> I see what you are saying. I removed the static route in the
>> firewall and then tried the tracert. It goes to the router
>> (172.20.4.1) then to the firewall (172.20.4.2) this part looks ok,
>> then it goes out to the internet. So, I think I need to somehow tell
>> the firewall that the 172.20.9.x is an internal range. Not sure how
>> to do that one if that is what it is. It was easy to do this with
>> the other IP ranges since they were coming from other buildings.
>
> The firewall appears to be a bridge, and not a router in your scenario
> beacuse it has a 4 interface as well as the "gateway". Is that
> intentional?? I'm totally confused. Your drawing is confusing.
>
> If the firewall is just bridged, then nothing needs to be done, however,
> if it were not bridged, and it has a different IP, then the static rules
> apply to it just as if it were a regular old non-firewall router. Follow
> my example, in this case the firewall would be like Router A, where as the
> "router" is Router B.
>
> Internal net --- Router --- Firewall -- Internet
>
> Internal net is 172.20.9.0, where these machines are sitting on
> 172.20.4.0.
> "Router" above would need nothing sine I am assuming the one of it's
> interfaces is on the 172.20.9.0 side, and the other interface would be on
> the 172.20.4.0 side, but the firewall is.
>
> Ace
>
.
- Follow-Ups:
- Re: 2nd DHCP Scope?
- From: Ace Fekay [MVP]
- Re: 2nd DHCP Scope?
- References:
- 2nd DHCP Scope?
- From: Stranger
- Re: 2nd DHCP Scope?
- From: Oliver O'Boyle
- Re: 2nd DHCP Scope?
- From: Jack H
- Re: 2nd DHCP Scope?
- From: Oliver O'Boyle
- Re: 2nd DHCP Scope?
- From: Jack H
- Re: 2nd DHCP Scope?
- From: Oliver O'Boyle
- Re: 2nd DHCP Scope?
- From: Jack H
- Re: 2nd DHCP Scope?
- From: Oliver O'Boyle
- Re: 2nd DHCP Scope?
- From: Stranger
- Re: 2nd DHCP Scope?
- From: Ace Fekay [MVP]
- Re: 2nd DHCP Scope?
- From: Jack H
- Re: 2nd DHCP Scope?
- From: Stranger
- Re: 2nd DHCP Scope?
- From: Ace Fekay [MVP]
- Re: 2nd DHCP Scope?
- From: Stranger
- Re: 2nd DHCP Scope?
- From: Ace Fekay [MVP]
- Re: 2nd DHCP Scope?
- From: Stranger
- Re: 2nd DHCP Scope?
- From: Ace Fekay [MVP]
- 2nd DHCP Scope?
- Prev by Date: Re: hp 2300dn printer ? Strange!
- Next by Date: Re: Windows 2003 NSLOOKUP
- Previous by thread: Re: 2nd DHCP Scope?
- Next by thread: Re: 2nd DHCP Scope?
- Index(es):
Relevant Pages
|
Loading
