Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
372
Views
0
Helpful
1
Replies

Connection Cisco ASA

jorg.ramakers
Level 1
Level 1

‎03-12-2008 06:22 AM - edited ‎02-21-2020 01:56 AM

Hi,

I want to connect my cisco ASA5505 directly to the routers of my provider. My provider has 2 separate router running HSRP in between. Can i connect port 1 of my asa to 1 provider router and port 2 to the other router, each configured as outside without placing a switch between asa and provider router?

I think it can as you create a default route to the hsrp address of the router interface and the hsrp will deliver it to the active router. So if 1 router fails it will deliver its traffic to the other? Is it also possible to build a vpn between other sites in this config?

I think it can but one of my colleagues is doubting about it.

Regards

J

Best regards

0 Helpful
1 Reply 1

JORGE RODRIGUEZ
Level 10
Level 10

‎03-12-2008 03:31 PM

You have it right, yes you can, your asa can point its default route to hsrp address thats hsrp purpose router failover, and as you know trafic will go through active router and vice versa if active router fails standby becomes active and hrsp stays up.. as far as asa5505 already have a switch builtin, your outside interface if Im not mistaken is ethernet0/0 vlan 2 sec level 0, if you connect another port from asa to ISP standby router make sure is in vlan 2 just as your outside interface vlan.

HTH

Jorge

Jorge Rodriguez
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card