I'm thinking of purchasing an ASA 5510 but I want make sure it can do what I need it to do before I purchase it.
Our head office has multiple global ip's and we are bringing our website in house (cost restraints) I would like to have the external ip of the website different than the ip that everyone internal will be using to access the internet (i.e. 5510 external ip 220.127.116.11 and internal 10.0.0.1, put the webserver in a dmz with external ip 18.104.22.168 and internal 192.168.0.2). Is this possible to accomplish with the 5510?
This device will also be connecting our remote offices via VPN with a 5505, pix 506E and sonicwall TZ 180.
The model I'm thinking of purchasing is ASA5510-AIP10-K9, do I need any other modules? Will I have any issues with the Advanced Inspection and Prevention Security module?
the model ASA5510-AIP10-K9 is the Cisco ASA 5510 Adaptive Security Appliance with SSM-AIP-10 (chassis, software, 50 VPN peers, 4 Fast Ethernet interfaces, Triple Data Encryption Standard/Advanced Encryption Standard [3DES/AES])
you taking cost in to consideration so yeah the ASA5510 will do what you want. it comes with 5-10/100, one for your inside network, the rest you can use for DMZ and public network. you can have 250 maxium site-to-site to your other firewalls with 3DES/AES VPN throughput up to 170Mpbs.
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...