cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
540
Views
0
Helpful
8
Replies

help Configuring 1811 and asa 5505

Jdpapikas
Level 1
Level 1

Hi, I need some help configuring a 1811 for routing 2 networks and IPS. and a ASA 5505 for Firewall, content filtering and vpn.

Right now I have them setup on a test lan. I have the 5505 and content filtering working , but I am having problems with routing on the 1811

Corp 192.168.1.1

remote site 192.168.2.1 Via T1 Cisco 1720 routers

any example configs would help.

8 Replies 8

Marwan ALshawi
VIP Alumni
VIP Alumni

can u detail more

like how they connected i mean

where the firewall connected

and the networks IPs so the IPs u sent cant lead to anything

for example

are connected like

ASA--router---t1---router

wnats the IPs between them

Sorry for the lack of info.

right now our production network is like you have it ASA--router---t1---router.

conf t

int f0

ip address 192.168.1.10 255.255.255.0

no shut

int s0

ip address 192.168.254.1 255.255.255.252

service-module t1 clock source internal

no shut

exit

ip route 0.0.0.0 0.0.0.0 192.168.1.2

ip route 192.168.2.0 255.255.255.0 s0

exit

Remote:

conf t

int f0

ip address 192.168.2.10 255.255.255.0

no shut

int s0

ip address 192.168.254.2 255.255.255.252

no shut

exit

ip route 0.0.0.0 0.0.0.0 s0

exit

We are replacing all our netgear and 3com crap with all Cisco. so the flow is

ASA--cat2960switch--1720--T1--1720--CatExp500switch--CatExp500switch

so what is required?

the config looks good basecly

I am looking to add a 1811 for routing and IPS. and use the ASA 5505 for Firewall, content filtering and vpn.

Do i need to have vlans?

How do i route the 2 networks to the 1811 then to the ASA?

u mean add make the i811 router the router that have t1 and also connected to asa?

and u private network behind the ASA?

I was thinking of having the 1811 as the core router. so the 1720 would point to the 1811, the 1811 to the ASA.

make static route between them all

normaly

and also static route on the as aswel

I dont think IPS will work like that. It wants to monitor data from a Wan. So do i need to connect my ASA 5505 to FE0 on the 1811 and make it Look like a wan?

do i need to Trunk them? or Vlan between them?

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Innovations in Cisco Full Stack Observability - A new webinar from Cisco