We are building an infrastructure for hosting at a shared data center. The goal is to have redundancy throughout the infrastructure. Can someone please take a look at the rough draft design and give any feedback (good or bad)?
The goal is to have multiple clients residing on ESX with respective vlan's. We will have two ASA5540's with multiple security contexts and customers will terminate to Cisco 3925's utilizing IPSec tunnels.
My questions are as follows:
1. How do I utilize the front end 3750's for redundancy? Do I stack them and call it a day?
2. Do I put my ASA's in Active/Active mode or Active/Passive mode?
3. Should the 3925's use HSRP?
Again, any feedback is greatly appreciated.