Typically, our remote office has a WAN router with T1 Internet connection. Then, we put an ASA behind the router LAN for firewall/NAT those kind of function.
Recently, we are planning to replace the T1 Internet connection with Ethernet 10Mbps Internet connection. I am think to have the Ethernet Internet connection goes directly to the ASA external interface, elminiating the border router.
Is this a common approach? Any downside if I decide to go with this option?
In fact this is a common approach talking about scenarios being used using an ASA, this because the ASA can route, can nat, can be the end-termination of a vpn, etc,etc. And all of this also with the major security features not seeing before on any firewal that will protect your internal network from the outside world.
So If you want to do it go for it, the ASA will work for this setup.
Julio Carvajal Senior Network Security and Core Specialist CCIE #42930, 2xCCNP, JNCIP-SEC
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...