Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
624
Views
0
Helpful
2
Replies

sandwich ASA with contexts mode

oscar cordero
Level 1
Level 1

‎07-25-2012 11:59 PM - edited ‎03-11-2019 04:34 PM

Hello,

we are trying to design a sandwich ASA with contexts mode.

we have a couple ASA 5505 with licences for context and failover.

we are thinking on Active-Pasive and two context:

internet --- ASA1andASA2 in failover Context 1 ---- DMZ  --- ASA1andASA2 in failover with NAT context 2  ---- LAN.

with 3 interfaces physic is possible? (beacuse probably is necesary to use one for failover and one for management)

no problem for use NAT on context 2?

no problems for use static routes?

can you give us your advice?. also if possible some link were we can found information about the configuration?.

kind regards.

Labels:
0 Helpful
2 Replies 2

Ramraj Sivagnanam Sivajanam
Level 4
Level 4

‎07-26-2012 09:33 AM

Hi Bro

Yes, 3 physical interfaces on each FW will do just fine. This is what you're gonna do.

Step 1: Create 2 contexts CONTEXT1 and CONTEXT2

Step 2: CONTEXT1 OUTSIDE = ISP E0/0 |  CONTEXT1 INSIDE = DMZ E0/1 <-- NATs

Step 3: CONTEXT2 OUTSIDE = DMZ E0/0 | CONTEXT2 INSIDE = LAN E0/1 <-- No Nat Control (v8.2 and below)

Note: E0/2 on both FW will be used for Failover

Warm regards,
Ramraj Sivagnanam Sivajanam
0 Helpful

itfordave
Level 1
Level 1

‎05-17-2015 09:59 PM

 thread seems quite old ,nevertheless I am just curious which 5505 that supports context mode,

I have not seen none yet.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card