help Configuring 1811 and asa 5505

Unanswered Question
Aug 7th, 2008

Hi, I need some help configuring a 1811 for routing 2 networks and IPS. and a ASA 5505 for Firewall, content filtering and vpn.

Right now I have them setup on a test lan. I have the 5505 and content filtering working , but I am having problems with routing on the 1811

Corp 192.168.1.1

remote site 192.168.2.1 Via T1 Cisco 1720 routers

any example configs would help.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Marwan ALshawi Thu, 08/07/2008 - 05:55

can u detail more

like how they connected i mean

where the firewall connected

and the networks IPs so the IPs u sent cant lead to anything

for example

are connected like

ASA--router---t1---router

wnats the IPs between them

Jdpapikas Thu, 08/07/2008 - 06:24

Sorry for the lack of info.

right now our production network is like you have it ASA--router---t1---router.

conf t

int f0

ip address 192.168.1.10 255.255.255.0

no shut

int s0

ip address 192.168.254.1 255.255.255.252

service-module t1 clock source internal

no shut

exit

ip route 0.0.0.0 0.0.0.0 192.168.1.2

ip route 192.168.2.0 255.255.255.0 s0

exit

Remote:

conf t

int f0

ip address 192.168.2.10 255.255.255.0

no shut

int s0

ip address 192.168.254.2 255.255.255.252

no shut

exit

ip route 0.0.0.0 0.0.0.0 s0

exit

We are replacing all our netgear and 3com crap with all Cisco. so the flow is

ASA--cat2960switch--1720--T1--1720--CatExp500switch--CatExp500switch

Jdpapikas Thu, 08/07/2008 - 07:07

I am looking to add a 1811 for routing and IPS. and use the ASA 5505 for Firewall, content filtering and vpn.

Do i need to have vlans?

How do i route the 2 networks to the 1811 then to the ASA?

Marwan ALshawi Thu, 08/07/2008 - 07:19

u mean add make the i811 router the router that have t1 and also connected to asa?

and u private network behind the ASA?

Jdpapikas Thu, 08/07/2008 - 07:27

I was thinking of having the 1811 as the core router. so the 1720 would point to the 1811, the 1811 to the ASA.

Jdpapikas Tue, 08/12/2008 - 10:35

I dont think IPS will work like that. It wants to monitor data from a Wan. So do i need to connect my ASA 5505 to FE0 on the 1811 and make it Look like a wan?

do i need to Trunk them? or Vlan between them?

Actions

This Discussion