Firewalling 2 live WAN links

Unanswered Question
Sep 4th, 2007
User Badges:

I currently have one ASA 5510 sitting behind one of my edge routers and I'd like to also use this same device to firewall another WAN link. Currently the 2 networks behind each WAN link can talk to each other through our core router. Is this doable? Would I need to configure 2 inside interfaces so that traffic destined for either of those WANs have their own gateway? Can this be accomplished with just one inside interface? Here is an example of how my current network looks like:


WAN B

=

=

Router B

=

=

ASA 5510

=

=

Core Router = = Router A = = Wan A

=

=

Internal Network


WAN B network 192.168.10.0/24

WAN A network 192.168.20.0/24

Internal network 192.168.30.0/24


On the core router I have static routes to forward traffic destined for WAN A to Router A and traffic to WAN B to the ASA 5510. On the ASA I have routers set to forward all traffic coming out of the outside i/f to Router B and all traffic from the inside i/f to the core router. Simple stuff. However now I want to move that Router A link up to the ASA 5510 so that both are firewalled.



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
a.alekseev Thu, 09/06/2007 - 06:39
User Badges:
  • Gold, 750 points or more

If you are using ASA only as filewal you can order IP Security plus license for ASA


So you can make two contexts in trasparent mode, and run any routing protocol through the contexts...

Actions

This Discussion