We are running a clustered Junos SRX550. Our ISP has assgined us two subnets of public IP addresses. Currently the primary subnet is configured and working. This includes static and dynamic NAT. The issue I am running into is trying to get the second subnet to be usable.
Here is some configuration info.
reth0 is our trust zone (10.x.y.z)
reth1 is our DMZ zone
reth2 is our untrust zone (64.x.y.z/28)
The two subnets from our isp are as follows.
64.x.y.z/28
67.x.y.z/27
I have attempted to add an IP from the second subnet to the reth2 interface, but this doesn't seem to help. The way I have been testing is by having a computer with a static IP in the trust zone setup to NAT to a 67.x.y.z address. Once I setup the NAT, the computer seems to lose connection to the internet.
Is there an article I could be pointed to that has this?
Am I missing someing simple?
Please let me know if there is additional information that is needed.