I have a SSG5 and I need to setup a a few servers behind it with public IP adresses.
The network is pretty simple, with a static IP on the SSG on the Untrust interface, and I have a few VLAN on a Trust interface for servers and clients on the inside.
From our ISP, we have received a whole /24 network, which is different from our static IP on the SSG it self. Until now, I have managed with MIP's on the Untrust interface, meaning NAT is in Place.
Now I need to setup some servers with public IP's, which mean I can not use MIP anymore.
Can someone please tell me how I can divide my /24 network i.e into 2 parts withour loosing my MIP setup?
At the moment I have only used the 20 first IP adresses in the /24 network, and I would like to make it into 2 /25 network, but still retain the current config of MIP's.
Until now, I have not used the DMZ zone at all, but thinking of putting the second half of my /24 network here, so I have ample amount of addresses to use for the future.
Thanks for your help!