I replace a linux firewall with a ASA5505-sec-bin-k9.
The customer have two remote sites conected in the following way:
The carrier deliver a LAN connection, a 10/100 wire. But I know the provider has two routers, one goes to a the first remote site and the other for the second remote site.
I plug this cable in a L2 switch and two ASA ports one port of the ASA have an ip and the other with another ip.
The perforamce of the ASA is bad with both interfaces conected simultaneosly to that L2 SW. Testing individually each interface alone, it work fine.
How can I preven that both interfaces are listening the same trafic ?.
With the two interfaces conected simultaneusly , one interface is denying the trafic that the other is forwarding and viceversa but the total efect is that is dropping packets in both interfaces. How can solve this issue.
be aware that is not possible righ now the carrier change the way that is offering the service.