Can someone please explain me..

1) if say i want to put mail and web server (two separate machines) in DMZ, do I need two assigned static IP addresses for them purchased from my ISP (BT UK)?

2) if the answer to Q.1 is yes, then can ASA 5505 handle multiple static IP addresses at all?

thank you

1. The answer is no since it runs on different Ports. You can direct port 25 to one server and port 80 to the other server.

2. Yes and No, you don't actually assign the address to the Interface, the use of the Static command will map it to the external interface. So you could have 2.2.2.2 on your external interface and then within the static command you could reference 2.2.2.3, this address would then apper on the interface.

Cheers

Hey Wayne,

had to rewrite my question after googling a bit.

sorry if it sounds stupid but how many public static IPs can ASA assign using Static? i take it as many as there are ports, right?

I dont know if there are any limits within the ASA Coding (cisco may only allow so many Static Commands to be configured) but if there are no limits then it would be pretty much as many as you want.

You can add Statics that are not actually part of the external interfaces subnet, providing the internet knows to route the traffic to that subnet.