02-12-2019 05:17 PM
Hi all,
I really, really need help to place my ASA 5505 between a L3 c3757 switch and a 1921 Series router.
Switch: ip routing with all the Vlans interface up, the interface gi1/0/1 is configured as a trunk port to allow all the Vlans accessing the internet through the router. Servers and workstations are connected to the switch on different Vlan ports. The default gateway is the router inside interface address.
Router: Configured as router on the stick, Nat overloads, the interface inside ge0/1 is a trunk port facing the switch.
With this configuration everything is working fine, but I am trying to place an ASA firewall for features like IPS, URL filtering, Application control and so on, I am really struggling for almost a week so I decided to seek for help from the expert.
Please help me to where I should place the firewall and what should I change, your help will be highly appreciate.
Many thanks,
Solved! Go to Solution.
02-13-2019 08:09 AM
there are several options.
most simple could be placing the firewall in transparent mode (not routing mode) between the switch and the router-on-a-stick
for each vlan create subinterfaces on both side, assign each pair a BVI
and let the firewall "bridge" between the subinterfaces.
02-13-2019 08:09 AM
there are several options.
most simple could be placing the firewall in transparent mode (not routing mode) between the switch and the router-on-a-stick
for each vlan create subinterfaces on both side, assign each pair a BVI
and let the firewall "bridge" between the subinterfaces.
02-14-2019 02:01 AM
Many thanks for your help,
But another question is with the firewall in bridged mode, I will still get all the features I need from the firewall such as packets inspection, anti-bot, anti-virus, url filtering etc...
Thanks,
02-14-2019 02:58 AM
most inspection/filtering is still possible.
here some links that may help you
02-14-2019 04:07 AM
Many thanks.
Your help is appreciate
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide