Cisco ASA 5540

Unanswered Question
Jan 3rd, 2008
User Badges:

I have a very basic question, but at the same time i need an answer a.s.a.p please!, so if someone can guide me on this i would be grateful. I have a scenario where i have a main campus that i would like to connect to few branch offices using site-to-site vpn, so i decided to use 2 ASAs 5540 for redundancy at the main campus and on each branch i'll use a router with vpn capabilities, so the question is, can i connect each ASA in the main campus directly to the isp, or do i need to have each ASA connected to a router and then connect the router to the isp? Does ASA has routing capabilities? Currently in my network design i have the 2 ASAs connected directly to the ISP, so i'm not really sure if this is possible... By the way i'm going to have eigrp running between the main campus and the branches, i saw that ASA supports EIGRP...

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading. Fri, 01/04/2008 - 01:50
User Badges:
  • Silver, 250 points or more


Here you may view an example of Lan-to-Lan IPSec configuration, between PIX/ASA 7.x Security Appliance to an IOS Router:

Here there is PIX/ASA 7.x Active/Standby Failover Configuration Example:

Here there is PIX/ASA 7.x: Active/Active Failover Configuration Example:

Here there is an example "Dynamic IPsec Between a Statically addressed PIX and a Dynamically addressed IOS Router with NAT Configuration" where the PIX is directly connected to Internet cloud:

Here is IP routing configuration for Cisco Security Appliance version 8.0:

Look at these links.

I hope this helps.

Best regards.



This Discussion