Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
235
Views
0
Helpful
1
Replies

migrating from one firewall vendor to ASA

cisco24x7
Level 6
Level 6

‎02-20-2008 08:25 AM - edited ‎03-11-2019 05:05 AM

I have a simple scenario. A firewall with two interfaces,

inside and outside. outside interface is 1.1.1.1/24

inside interface is 10.1.1.1/24.

I have hostA and hostB residing on the interface with IP

address of 10.1.1.2/24 and 10.1.1.3/24, respectively.

HostA is static NAT'ed to 1.1.1.2 and hostB is natted

to 1.1.1.3.

I have applications on hostA and hostB that communicate

with each other via public IPs instead of private IP.

In other words, hostA talks to hostB via 1.1.1.3 and

hostB talks to hostA via 1.1.2. Since my firewall

is a Checkpoint firewall, I can do this without any

issues.

Now I want to migrate from Checkpoint over to Cisco

ASA but I want to maintain behavior WITHOUT USING

DNS DOCTORING between hostA and hostB.

Is it possible? Thanks.

Labels:
0 Helpful
1 Reply 1

abinjola
Cisco Employee
Cisco Employee

‎02-20-2008 09:03 PM

YES..

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card