I have a datacentre where we has only one ISP link which is already terminated to cisco PIX with configured VPN's to clients.recently we bought a new cisco asa security + to set up a new VPN's for different data centres. we are looking to use both the firewalls the only problem is we have only 1 ISP link.
please help me on how can i use the one ISP link to different firewalls.
WAN pool: 14.140.0.X/30
Lan Pool: 14.180.0.Y/28
wan pool is configured to cisco pix , can i use the Lan pool of ISP as an outside IP address for the new Cisco ASA(remebering i need to configure L2L ipsec VPN's where the Ip is ideally would be the Peer IP for the other datacentres).
or please suggest meon how to configure this ISP links to two firewalls.
we donot have a router but have L3 switch . can you please explain me how to configure this on L3 switch.
should i use VLANs in the switch say Vlan 10 of wan router and the same VLan to be asigned for two ASA's. if vlans work in my scenario should i have to creat SVI vlan with IP address or just need to assign ports with vlan 10.and that should work.
[toc:faq]The ProblemOn traditional switches whenever we have a trunk
interface we use the VLAN tag to demultiplex the VLANs. The switch needs
to determine which MAC Address table to look in for a forwarding
decision. To do this we require the switch to do...
[toc:faq]Introduction:Netdr is a tool available on a RSP720, Sup720 or
Sup32 that allows one to capture packets on the RP or SP inband. The
netdr command can be used to capture both Tx and Rx packets in the
software switching path. This is not a substitut...
IntroductionOSPF, being a link-state protocol, allows for every router
in the network to know of every link and OSPF speaker in the entire
network. From this picture each router independently runs the Shortest
Path First (SPF) algorithm to determine the b...