I am trying to configure additional vrouters in a SSG140 to isolate network traffic for specific customers. The default trust-vr is working fine. I have created the second vrouter named Customer-VR and added and interface for the internal traffic on an isolated vlan in our switch. I have added a second interface to the new vrouter as its untrust connection.
The second vrouters untrst connection, which is assigned to ethernet0/5, is connected to our same ISP as the default vrouter but it has its own IP block and routing setup. I have created a policy allowing any outbound traffic from the new internal zone to the new untrust zone.
When configuring the IP address on the new vrouter's untrust interface I get a message from the WebUI about an IP conflict being detected even though the addresses space are different and have different routes.