migrating from one firewall vendor to ASA

Unanswered Question
Feb 20th, 2008
User Badges:
  • Silver, 250 points or more

I have a simple scenario. A firewall with two interfaces,

inside and outside. outside interface is 1.1.1.1/24

inside interface is 10.1.1.1/24.


I have hostA and hostB residing on the interface with IP

address of 10.1.1.2/24 and 10.1.1.3/24, respectively.

HostA is static NAT'ed to 1.1.1.2 and hostB is natted

to 1.1.1.3.


I have applications on hostA and hostB that communicate

with each other via public IPs instead of private IP.

In other words, hostA talks to hostB via 1.1.1.3 and

hostB talks to hostA via 1.1.2. Since my firewall

is a Checkpoint firewall, I can do this without any

issues.


Now I want to migrate from Checkpoint over to Cisco

ASA but I want to maintain behavior WITHOUT USING

DNS DOCTORING between hostA and hostB.


Is it possible? Thanks.


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.

Actions

This Discussion