ā07-16-2012 06:42 PM - edited ā03-04-2019 04:59 PM
we have cisco2841 router and asa5510
they have connected in the following way
in the above scenario we got the two subnets of ipaddresses from ISP pubip/30 and pubip's/29 ....
my doubt is ..because everything is done in ASA 5510 firewall why do we need router...can i remove router...
Solved! Go to Solution.
ā07-16-2012 09:50 PM
Having a seperate device in edge of the network is usefull when it connects to several devices inside the internal network. For example if have more than one ASA or other routers that needs internet directly. In your case even ASA5510 is more powerfull in backplane than 1841 so you can remove it.
The other case is that if you want to have redundant ASA then it would be better to have a router in the edge.
What's the ASA image you are using?
ā07-16-2012 09:50 PM
Having a seperate device in edge of the network is usefull when it connects to several devices inside the internal network. For example if have more than one ASA or other routers that needs internet directly. In your case even ASA5510 is more powerfull in backplane than 1841 so you can remove it.
The other case is that if you want to have redundant ASA then it would be better to have a router in the edge.
What's the ASA image you are using?
ā07-17-2012 03:47 AM
thank you for response,
we are not going to have any redundant devices...we are using 8.2(2) image
for knowledge sake...if we have other products like TMG or Juniper firewall and at the Edge 1841 is this preferable..?
ā07-17-2012 04:04 AM
Hi
Having a router before a firewall is normally because of things like ADSL or you need to do some BGP stuff to ISP and has already said more than one firewall etc.
Thanks
Kev
ā07-17-2012 04:11 AM
thanks
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide