Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ASA-5505 behind a Cisco Router

Hello, after days of struggle, devices connected to the Cisco router finally have access to internet!


Now I'm trying to put ASA-5505 behind this Cisco router.


Since ASA-5505 also can act as a semi-router/switch, I've been trying to have devices connected to the ASA have access to internet as well.


But so far, I have failed. I have set up two OSPF areas in the Cisco router and just one OSPF area on the ASA. I also set a "out" static route on ASA.


I'm stuck, please help!

1 ACCEPTED SOLUTION

Accepted Solutions
Hall of Fame Super Silver

Re: ASA-5505 behind a Cisco Router

I'd recommend you should learn the foundational topics in 640-554 (and 200-120 if you haven't already) before moving on to ASA VPNs. You will be better prepared then when you start of the Firewall and VPN classes associated with the CCNP Security.

17 REPLIES

ASA-5505 behind a Cisco Router

Post your config for the ASA...what version of IOS?

HTH,
John

*** Please rate all useful posts ***

HTH, John *** Please rate all useful posts ***
New Member

ASA-5505 behind a Cisco Router

I somehow got it to work.

But ASAs use different OS, correct?

ASA-5505 behind a Cisco Router

They're different from routers, and their is a difference between ASA versions 8.25 and 8.3 and up. They've changed the way natting is configured on the later version.

HTH,
John

*** Please rate all useful posts ***

HTH, John *** Please rate all useful posts ***
Hall of Fame Super Gold

ASA-5505 behind a Cisco Router

Wrong forum, post in "security - firewalling". You can move your posting using the Actions panel on the right.

New Member

ASA-5505 behind a Cisco Router

Did I move it to the right one?

ASA-5505 behind a Cisco Router

Hello,

Yes you did,

You said you managed to work so how can we help U now?

For more information about Core and Security Networking follow my website at http://laguiadelnetworking.com

Any question contact me at jcarvaja@laguiadelnetworking.com

Cheers,

Julio Carvajal Segura

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
New Member

ASA-5505 behind a Cisco Router

I managed to have devices connected to ASA have access to Internet.

Now I want to set up AnyConnect VPN system.

But does the client ship with ASA? or do I need to purchase separetly?

Or can other 3rd party clients be used?

Hall of Fame Super Silver

ASA-5505 behind a Cisco Router

Client question answered in your Network Management forum thread.

New Member

ASA-5505 behind a Cisco Router

I managed to acquire a msi package of AnyConnect.

I've never configured a VPN on an ASA or Router.

Should the steps in "Startup Manager" do the trick?

Thanks.

Hall of Fame Super Silver

ASA-5505 behind a Cisco Router

The easiest way for someone new to ASA is to use the Anyconnect VPN Wizard in ASDM, the ASA GUI.

The steps are explained in detail here.

New Member

ASA-5505 behind a Cisco Router

My main question is this.

Long put short, the public WAN IP address that my main router has, is the address that clients outside use to access my network?

Thanks.

Hall of Fame Super Silver

ASA-5505 behind a Cisco Router

Yes that's correct.

New Member

ASA-5505 behind a Cisco Router

Do ISPs like Comcast and AT&T block that kind of VPN for personal use? Or would it not matter?

Hall of Fame Super Silver

ASA-5505 behind a Cisco Router

I misread your earlier question.

The ISPs don't block the ports per se but If your ASA is sitting on a home newtowrk without a dedicated public IP it wont be able to serve as a VPN headend.

A VPN needs a dedicated public IP (for most intents and purposes - there are work arounds but not for a novice).

New Member

ASA-5505 behind a Cisco Router

shame.. how do I provide a work around?

would it do-able for a freshman ccna?

this might help me with 640-554..haha

Hall of Fame Super Silver

Re: ASA-5505 behind a Cisco Router

I'd recommend you should learn the foundational topics in 640-554 (and 200-120 if you haven't already) before moving on to ASA VPNs. You will be better prepared then when you start of the Firewall and VPN classes associated with the CCNP Security.

New Member

ASA-5505 behind a Cisco Router

Oh, settig up VPN is at CCNP level? not even CCNA?

I always wanted to connect to my VPN network when I'm outside on free wi-fi(s).

i guess it'll have to wait..

310
Views
9
Helpful
17
Replies
CreatePlease login to create content