Morning, I need a little clarity and advice setting up an ASA 5512-X, specifically how traffic is routed.
Currently at the edge I have an ASA 5510 which has been great but has limitations in the number of ports, the speed of the ports and module capacity so I purchased a 5512-X with IPS as a replacement.
Each comms cab within the LAN forms its own VLAN, in addition to this I have a server VLAN, a wireless VLAN and a management VLAN.
All clients within the various VLANs acquire an IP address from the DHCP server within the server VLAN - I do this by using the 'IP Helper Address' command on the core switches ( Cisco 4900Ms ) and this works well. In addition to this I have a helper address for the Microsoft Distribution Server for deploying images.
Traditionally the Wireless VLAN's traffic was forwarded directly out to the Internet via the firewall; but with the introduction of the VLE / Moodle server ( Virtual Learning Environment - teaching and learning resources ) in the server VLAN I would like to direct traffic from wireless clients directly to the VLE server bypassing the firewall so clients have access to the full 10Gb bandwidth rather then just the 1Gb at the firewall. At the same time I would like to direct all other traffic to a proxy which also resides in the server VLAN.
If I add the IPs of the VLE and proxy servers to the helper addresses would this resolve the issue or am I looking at this all wrong?
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :