I just switched ISP and I'm getting 5 IP. Unfortuantely the ISP doesn't give true static IP options, they use DHCP static binding to serve static IPs. In order to utilize all the IPs, I have to configure 5 interfaces each with DHCP option in the untrust zone. All the 5 IPs are in the same /24 subnet.
I'm wondering if this is possible.
I want to use
- ge0/0/0 for source nat internet access only -done already
- ge0/0/1 for trust zone - done already
- ge0/0/2 for dmz - done already
- ge0/0/3 for server destination nat - I'm having trouble getting this done.
My ISP blocks some ports like http/https/smtp. The only way those ports are opened is the IP is static. However, they don't assign static IP in the proper way, instead, they use mac binding to assign static IP through DHCP.
That mean I need 5 mac-addresses to get 5 IPs and I can't use ip alias to assign IPs to the same interface. For instance, I will have to use g0/0/0 - ge0/0/4 to get 5 IPs and asssign them in the same trust zone. The problem is the 5 IPs are in the same subnet.
I don't think it's going to work but just want to see if there is any workaround.
Basically I want to use
- ge0/0/0 for source nat for internet connection
- ge0/0/1-ge0/0/4 for server destination/static nat.