Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
224
Views
0
Helpful
1
Replies

High Availability with Security design - Please help -

jszinzuwadia
Level 1
Level 1

‎06-24-2008 10:13 AM - edited ‎03-05-2019 11:47 PM

Hi all,

Could someone please validate the below proposed design per redundancy perspective:

BOM:

2 Cisco 4506 as core with Catalyst 4500 Supervisor IV (2 GE),Console(RJ-45)

2 Cisco 2821 series routers with 2821 w/ AC PWR,2GE,4HWICs,3PVDM,1NME-X,2AIM,IP

BASE,64F/256D

2 Cisco 3750 Distribution switches Catalyst 3750 12 SFP + IPB Image

10 Catalyst 3560 48 10/100 PoE + 4 SFP IPB Image access switch AND

2 ASA 5520 Appliance with SW, HA, 4GE+1FE, 3DES/AE including AIP-SSM 20.

SOW:

-- The two different ISP routers are connected with two Layer 2 switches. Is this right approach?

-- The two ASAs are configured in Active-Standby mode and connected to Layer-2 switch on 'outside' port.

-- The two 4506 switch configured with HSRP on LAN side and connected to both the ASAs on 'inside' port.

Let me write if i am wrong somewhere.

Thanks,

JBP

Labels:
0 Helpful
1 Reply 1

trippi
Level 1
Level 1

‎06-30-2008 06:16 PM

If you are going with BGP, upgrade the RAM on the 2821s...or move to 2851s.

What 2 layer 2 switches will you be using on the outside? I don't see any in your list...but that is fine, you could even use dumb switches on the outside...

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card