Is it possible to configure Cisco IOS and Juniper in the same bridge group?
I have a need to bridge one particular VLAN (VLAN224) between SWITCH-A and SWITCH-B. SWITCH-A belongs to company-A and SWITCH-B belongs to company-B. Company-A will be using a Cisco 2691VPN IOS based firewall while company-B will be using a Juniper netscreen-208. Each company will be responsible for theor own swcurity model. Both companies work side by side and the company administrators will build the security model allowing specified access to resources needed across these switches.
Above is the scenario that I'm trying to work through. Using a single 2691, I have successfully created a transparent firewall solution. However, that is good for company-A, but what is comoany-B going to do?
I've tried building a test environment using a Cisco 2691 and a netscreen 208, but because the same RFC 1918 172.30.224.0/20 network exists on each core switch, I'm having a terrible time trying to get routed firewalling working. my problem is hosts on company-B's network needs to be accessible from company-A's wide area network via OSPF.
Therefore, I'm thinking that two transparent firewalls might do the trick. But, for company-B, I will be using a netscreen.
Enough of this bologna, down to the question:
Is there anyone out there that has a Cisco and Netscreen appliance back-to-back in transparent mode? I'd be interested in your thoughts.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...