Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
475
Views
0
Helpful
5
Replies

what product of firewall can support 8 back up isp

Go to solution
M0711141984
Level 1
Level 1

‎02-17-2017 06:13 PM - edited ‎03-12-2019 01:57 AM

Hi Sir/ Madam

Good Day!

i would like to ask about cisco firewall that can support 8 isp and what model of firewall would you recommend 

thanks

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Karsten Iwen
VIP
VIP

‎02-18-2017 12:34 AM

You don't need physical interfaces in that case. I would build it the following way:

  • Use two external switches, each switch connects four ISPs in different VLANs. Both switches are connected to each other.
  • Your redundant firewalls connect with redundant interfaces to both switches.
  • You use subinterfaces on the redundant interfaces for each ISP

Now only throughput and other features like contexts and amout of VPN-peers drive your decision. And that could range from an ASA 5508-X up t the high-end devices.

View solution in original post

0 Helpful
5 Replies 5

Go to solution
Mohammed al Baqari
Level 11
Level 11

‎02-17-2017 11:56 PM

Hi,

5525-X, 5545-X, 5555-X support 8 I/O integrated ports which is the maximum built-in. Now I am assuming you need more than 8-ports to accommodate other zones as well such as your LAN. For this you can get expansion card installed which can provide 6 additional ports.

For sizing and hardware specs it all depends on what features you want to run. Check the product sheet below for better understanding.

http://www.cisco.com/c/en/us/products/collateral/security/asa-5500-x-series-next-generation-firewalls/data-sheet-c78-729807.html

0 Helpful

Go to solution
M0711141984
Level 1
Level 1
In response to Mohammed al Baqari

‎02-18-2017 04:35 PM

thanks Mohammed al Baqari for your suggestion, i keep that in mind.

can i ask you regarding network topology. I have two routers which is connected to separate isp. however we don't have firewall. can you give me an idea the best way and secure network topology about firewall implementation.

thanks regards

Carlo

0 Helpful

Go to solution
Mohammed al Baqari
Level 11
Level 11
In response to M0711141984

‎02-18-2017 09:16 PM

Assuming you are referring to enterprise design, the best design I see is to have two routers connected to ISPs followed by two L2 switches followed by firewall pair for redundancy.

From there you can create your zones for corporate users, dmz, serverfarm, connect to distribution, etc.

Look for the CVD below.

http://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/Security/IE_DG.html

0 Helpful

Go to solution
Karsten Iwen
VIP
VIP

‎02-18-2017 12:34 AM

You don't need physical interfaces in that case. I would build it the following way:

  • Use two external switches, each switch connects four ISPs in different VLANs. Both switches are connected to each other.
  • Your redundant firewalls connect with redundant interfaces to both switches.
  • You use subinterfaces on the redundant interfaces for each ISP

Now only throughput and other features like contexts and amout of VPN-peers drive your decision. And that could range from an ASA 5508-X up t the high-end devices.

0 Helpful

Go to solution
M0711141984
Level 1
Level 1
In response to Karsten Iwen

‎02-18-2017 04:31 PM

thanks Karsten Iwen for your suggestion

i'll try that 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card