The exsisting network consist of core 6513 and edge 3560 switches.
There 6 floor vlans are configured and SVI L3 ip as the gateway for those floor vlans are used. The ISA server inside NIC connected to the server farm vlan and the ISA server outside NIC connected to the MPLS internet router.
The floor end users are using the switch SVI interface as the gateway and the switch 6513 default gateway points to the ISA server inside NIC interface and the ISA points to the MPLS swtich to the internet.
Now in the new network setup we need to add the FWSM then ASA will be used between FWSM and MPLS switch. ISA server needs to be integrated in te setup.
Please anyone could help me how to design
the network which has 2 firewalls (FWSM,ASA 5520).
If you want to use the switch (with FWSM) and ASA parallelly connected to the internet and to do load balancing among them, then I don't think it is possible. You can use ASA between your internet connection and the ISA server. The 6513 switch with FWSM can be used for inter vlan traffic checking and control. Following links may help you
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...