Hi everybody ...
Please your help and suggestions in this case.
I have an Internet connection from an ISP, they gave me the fiber optic connection of 3Mbps.
The ISP gave us the following information:
ip address in fiber optics: 10.120.2.88 / 30. We used the 10.120.2.90 and the ISP site has 10.120.2.89.
internet public addresse: 190.X.Y.Z / 29.
In the JPG attached you can see the schema.
The interfases configuration:
ip address 192.168.21.254 255.255.255.0
ip address 10.120.2.90 255.255.255.252
switchport access vlan 2
1-. I had configured the global and nat commands for Internet access of inside network:
global (outside) 1 190.X.Y.89 netmask 255.255.255.248
nat (inside) 1 192.168.21.0 255.255.255.0
2-. I configured and tested the static command with internal server for internet access.
static (inside,outside) 190.X.Y.90 192.168.21.26 netmask 255.255.255.255
with some access-list to permit access to some services.
This two configurations worked good.
But I need to assign an public (legal) internet address to the firewall because we need VPN remote access and VPN L2L with other office.
I don't know how to configure the firewall for this.
I tried making an static with firewall inside interface and opening the access, with "debug icmp trace" I could see the test icmp packets arrive to inside interface but the inside interface doesn't answer.
I just need to configure the firewall for VPN access... Any suggestions ???
Thanks in advance ...