Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Firewall for Internet link termination

Hi All,

Can we terminate an internet link with ethernet handoff on a firewall.If yes what are the pros and cons of it.how the routing will be done in this case.

please assit with above queries.

thanks

2 REPLIES
Hall of Fame Super Blue

Re: Firewall for Internet link termination

vicky.dhas@bt.com

Hi All,

Can we terminate an internet link with ethernet handoff on a firewall.If yes what are the pros and cons of it.how the routing will be done in this case.

please assit with above queries.

thanks

VIcky

Yes you can and the routing would be quite simple ie. you would simply need a default-route on the ASA pointing to the upstream ISP router eg.

ip route 0.0.0.0 0.0.0.0

As for pros and cons. Well routers have more functionality such as a much more fully featured QOS toolset but then if it is Internet connectivity your   QOS options are limited anyway. An upstream router can also be used to filter out some of the more general traffic ie. you should not see any private RFC addressing coming from the Internet so you can have a basic acl on the router to filter this out.

But probably the most common reason to use a router is that the handoff is not ethernet which was happened a lot in the past. Nowadays with ethernet becoming more prevalent in WAN as well as LAN it is perfectly acceptable to terminate your connection directly to the ASA.

Jon

New Member

Re: Firewall for Internet link termination

thank you very much for your quick help

211
Views
0
Helpful
2
Replies