cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
542
Views
0
Helpful
2
Replies

Firewall for Internet link termination

vicky.dhas
Level 1
Level 1

Hi All,

Can we terminate an internet link with ethernet handoff on a firewall.If yes what are the pros and cons of it.how the routing will be done in this case.

please assit with above queries.

thanks

2 Replies 2

Jon Marshall
Hall of Fame
Hall of Fame

vicky.dhas@bt.com

Hi All,

Can we terminate an internet link with ethernet handoff on a firewall.If yes what are the pros and cons of it.how the routing will be done in this case.

please assit with above queries.

thanks

VIcky

Yes you can and the routing would be quite simple ie. you would simply need a default-route on the ASA pointing to the upstream ISP router eg.

ip route 0.0.0.0 0.0.0.0

As for pros and cons. Well routers have more functionality such as a much more fully featured QOS toolset but then if it is Internet connectivity your   QOS options are limited anyway. An upstream router can also be used to filter out some of the more general traffic ie. you should not see any private RFC addressing coming from the Internet so you can have a basic acl on the router to filter this out.

But probably the most common reason to use a router is that the handoff is not ethernet which was happened a lot in the past. Nowadays with ethernet becoming more prevalent in WAN as well as LAN it is perfectly acceptable to terminate your connection directly to the ASA.

Jon

vicky.dhas
Level 1
Level 1

thank you very much for your quick help

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: