I’ve got an addressing issue that I need to clean up.<\/p>\n
Advertisement
One physical network has two segments addressed as: \n172.16.48.0/24 \n172.16.52.0/24<\/p>\n
The other physical network has two segments addressed as: \n172.16.49.0/24 \n172.16.53.0/24<\/p>\n
Due to certain circumstances and firewall quirks IPsec tunneling from other sites to these networks hasn’t been an issue, but we are changing platforms to a newer, stricter firewalling system and I think it’s going to be a problem.<\/p>\n
I can’t conceive of a way to leave the addressing as is and be able to supernet the two networks separately since they overlap.<\/p>\n
The number of active servers in the odd number networks is lower so I’m thinking of changing those to: \n172.17.49.0/24 \n172.17.53/0/24<\/p>\n
This shouldn’t take too long to implement and then I should be able to address the two networks as: \n172.16.0.0/16<\/p>\n
and<\/p>\n
172.17.0.0/16<\/p>\n
As you can probably tell I am not very knowledgeable about subnetting! Does this seem like a sensible approach?<\/p>\n
Seems sensible to me as it provides a much cleaner definition of your IP scopes plus you have room to create more /24’s in either site if required.<\/p>","upvoteCount":1,"datePublished":"2014-09-18T11:13:29.000Z","url":"https://community.spiceworks.com/t/fixing-up-a-subnet-mess/339995/2","author":{"@type":"Person","name":"Gary-D-Williams","url":"https://community.spiceworks.com/u/Gary-D-Williams"}},"suggestedAnswer":[{"@type":"Answer","text":"
Hi all,<\/p>\n
I’ve got an addressing issue that I need to clean up.<\/p>\n
One physical network has two segments addressed as: \n172.16.48.0/24 \n172.16.52.0/24<\/p>\n
The other physical network has two segments addressed as: \n172.16.49.0/24 \n172.16.53.0/24<\/p>\n
Due to certain circumstances and firewall quirks IPsec tunneling from other sites to these networks hasn’t been an issue, but we are changing platforms to a newer, stricter firewalling system and I think it’s going to be a problem.<\/p>\n
I can’t conceive of a way to leave the addressing as is and be able to supernet the two networks separately since they overlap.<\/p>\n
The number of active servers in the odd number networks is lower so I’m thinking of changing those to: \n172.17.49.0/24 \n172.17.53/0/24<\/p>\n
This shouldn’t take too long to implement and then I should be able to address the two networks as: \n172.16.0.0/16<\/p>\n
and<\/p>\n
172.17.0.0/16<\/p>\n
As you can probably tell I am not very knowledgeable about subnetting! Does this seem like a sensible approach?<\/p>\n
The other you can do it is to put each subnet onto its own VLAN but that depends on the type switches that you have.<\/p>","upvoteCount":0,"datePublished":"2014-09-18T11:31:40.000Z","url":"https://community.spiceworks.com/t/fixing-up-a-subnet-mess/339995/3","author":{"@type":"Person","name":"travissimmons2729","url":"https://community.spiceworks.com/u/travissimmons2729"}},{"@type":"Answer","text":"
Thanks People, but how would that help me when it comes to identifying the supernet from a remote location for IPsec tunneling?<\/p>","upvoteCount":0,"datePublished":"2014-09-18T11:34:04.000Z","url":"https://community.spiceworks.com/t/fixing-up-a-subnet-mess/339995/4","author":{"@type":"Person","name":"weslazara","url":"https://community.spiceworks.com/u/weslazara"}},{"@type":"Answer","text":"
