Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
444
Views
0
Helpful
1
Replies

Introduce new cisco equiment to network

moimyrtho
Level 1
Level 1

‎03-08-2011 01:20 PM - edited ‎03-10-2019 05:17 AM

diagram-in.JPG

I need to introduce 2 ASAs 5520, 1 IPS 4240 and 1 ADE 1010 in the network above. I need  help on where to place them in the network. Experts, please provide your inputs.

Labels:
0 Helpful
1 Reply 1

mwinnett
Level 3
Level 3

‎03-23-2011 01:17 PM

A lot depends on exactly what you want to do. I would probably place the ASAs as a failover pair at the outskirts of the LAN switch

assuming that your internal network lies behind that. I would place the IPS behind that. The ASA with proper access-lists will clean up the traffic quite a lot and minimise traffic inspection load on the IPS. You really want the IPS only to inspect relevant traffic (not ipsec, https etc). The ASAs can also be used to terminate VPN using the anyconnect client. Not sure what the ADEs do.

Matthew

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card