Networking Design

ahmedzniti · ‎02-15-2013

Hello

In a building I have two ASA 5520 by clustering connected to a switch ethernet (internet) and behind the 2 Two ASA there are two Cores switches Cisco 4500 the intervlan routing is configured in firewall and switch core another building is connected to two switches 'access 4500 cascaded fiber with two cores so is that possible to put two another ASA 5510 connected to 2 switches to access ?if yes so what are the possible scenarios ?

Y'll find attached files regarding the schema of network

Regards

Jouni Forss · ‎02-15-2013

Hi,

Just to confirm,

Is the situation the following

Building 1

ASA5520 Failover Pair
4500 Core Pair

Building 2

ASA5510 Failover Pair (to be installed)
4500 Core Pair

Do you want to do so that

ASA5520 Failover Pair handles all the routing for Building 1 and ASA5510 Failover Pair handles all the routing for Building 2?
Any connections between Building 1 local Vlans to Building 2 local Vlans have to go through the both of the ASA firewalls? In essence that the newly added ASA5510 Failover pair would sit at the edge between the Building 1 and Building 2 LAN networks?

Which part of this network is already in production? Are the ASA5510 the only devices that need to be installed to the network?

- Jouni

ahmedzniti · ‎02-15-2013

Hi

The Bulding 1 which are installed ASA 5520 failover pair and 2 CORES SWITCHES (hsrp) is in prodution (Intervlan routing internet connection )and the bulding 2 which are installed the ACCESS SWITCH is cascaded or connected fiber on SW Core of the building 1 but i want to add the ASA 5510 Failover pair in bulding 2 how can i proceeed ?

Regards