Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
578
Views
0
Helpful
1
Replies

Connecting office to datacenter

active-energy
Level 1
Level 1

‎03-11-2012 05:30 AM - edited ‎03-04-2019 03:37 PM

Hi Together,

we are currently planning to relocate some of our systems from our office into a datacenter. Basically our configuration is the following:

Office:

LAN and WLAN clients which should receive their IPs from the Datacenter DHCP (172.50.0.0 Network)

development servers within the internal network

Local backup

Cisco ASA 5505 will be installed

Datacenter:

Productive servers within the local and dmz network (Exchange, Web, etc.)

2 VLANS one for the DMZ (172.10.0 Network) and one for the internal network (172.50.0.0 Network)

NAT Forwarding of public IPs to DMZ IPs

Cisco ASA 5505 will be installed

What we want to do:

All internet traffic is routed within the location

Clients in the office shall be able to reach any server on the network and servers shall be able to reach any client on the network (both office and datacenter)

My question is, can this be done with an ASA 5505 or do we require something else? Further what are your experiences in such a setup and what would be the best setup to make this setup work ?

Thank you very much

Wolf

Labels:
0 Helpful
1 Reply 1

r.malviya
Level 1
Level 1

‎03-15-2012 05:31 AM

Hi

What i understand with above scenario is

Internal network (172.50.0.0 >>>>>ASA>>>>>>>>DMZ (172.10.0.0)

okey as u mentioned u created 2 vlan ( DMZ & Internal ) on firewall & u want to route traffic in between of them

then as per my understanding u have to check is there any ACL on internal netwrok device if yes then pls allow there

& on ASA u need to allow on acl & as well as u need to check NAT option , becasue its thumb rule in firewall when u wan to communcate in between of any interface (i.e internal to external / DMZ ) u need to allow ACL & do the NAT

for NAT u can also try with NAT Zero config (means No nat ) vice versa

try it ................hope it will work .

Regards

Ritesh

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card