we have a main site that contains (1)CAM and (1) CAS and 250 users. we have 5 remote sites that connect to an ASA 5520 via DSL point to point VPN connections. There is no internet at these sites locally, they all access the internet through the main site. The remote sites have the same vlan setup as the main site. my core switch is a 3750 stack and all switches at remote sites are 3750's.
my question is do I need to place a CAS at each one of these locations or is there a possiblity to use the CAS at the main site. also if you could give recommedation on IB or OOB for this deployment. thanks
we have the main site. the main site has an asa for internet access. a cisco stack that contains our distrubution and access client. this is where our cam and cas connect. we have another ASA 5520 that is doing point to point connections to the 5 sites. those remote sites all have asa 5520's and are configured to use the vpn asa at the main site as thier default gateway.
we swithed the nac to real IP mode from oob today to start attempting the remote sites tomorrow.
That is exactly what we are planning, routing all traffic from the untrusted vlan to the main site CAS interface using PBR.
is this going to work with the ASA's?
what is the downside of doing it this way? do you see any issues or can you give any examples. some of these links are low bandwidth links.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...