Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
295
Views
0
Helpful
1
Replies

Internet directly on ASA device?

ramkunta
Level 1
Level 1

‎04-17-2013 11:13 AM - edited ‎03-11-2019 06:30 PM

Hi all,

I need a suggestion on something very basic. There is a requirement for having a Site-to-Site tunnel.

Instead of terminating internet connectvity on a cisco router and connecting router to an ASA firewall, can we terminate the internet connectivity directly on the Firewall and have a site-to-site tunnel? Will there be any disadvantages if we do this? Kindly help me understand.

Regards,

Ram

Labels:
0 Helpful
1 Reply 1

Jouni Forss
VIP Alumni
VIP Alumni

‎04-17-2013 11:17 AM

Hi,

There should be no problems doing this.

It depends totally on the media which is used to connect the ISP to your firewall.

If you have some xDSL type connection you would traditionally use a modem/router in bridged mode and have the public IP address directly on the ASA either statictly configured or with DHCP depending how your connection with ISP is.

I would see having the public IP address directly on the ASA the preferred setup. If the public IP address was on the router you would have to do NAT and access control on 2 devices and it would needlesly complicated the setup.

- Jouni

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card