double firewall and vpn

Answered Question
Apr 9th, 2007

I'm preparing to implement a double firewall dmz with a couple of ASAs and while drawing it am getting a little confused on how to allow remote access and tunnels to work using the same ASAs that are being used for the double firewall DMZ configuration. Anyone have any advice or maybe a note outlining the config?

thank you,

Bill

I have this problem too.
0 votes
Correct Answer by ivillegas about 9 years 9 months ago

Instead of multiple Firewall, you can use ASA with multi-context

You can partition a single security appliance into multiple virtual devices, known as security contexts. Each context is an independent device, with its own security policy, interfaces, and administrators. Multiple contexts are similar to having multiple standalone devices. Many features are supported in multiple context mode, including routing tables, firewall features, IPS, and management.

Refer this doc:

http://www.cisco.com/en/US/products/ps6120/products_configuration_guide_chapter09186a0080450b42.html#wp1035807

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
ivillegas Fri, 04/13/2007 - 06:01

Instead of multiple Firewall, you can use ASA with multi-context

You can partition a single security appliance into multiple virtual devices, known as security contexts. Each context is an independent device, with its own security policy, interfaces, and administrators. Multiple contexts are similar to having multiple standalone devices. Many features are supported in multiple context mode, including routing tables, firewall features, IPS, and management.

Refer this doc:

http://www.cisco.com/en/US/products/ps6120/products_configuration_guide_chapter09186a0080450b42.html#wp1035807

Actions

This Discussion