Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
755
Views
0
Helpful
4
Replies

Dual DMVPN with ASA

Raimund Schimanovits
Level 1
Level 1

‎05-24-2017 11:46 AM - edited ‎03-05-2019 08:35 AM

Hello

I have to install 2 ASA Firewalls in a dual DMVPN Router system. 

Is it better to install them behind or in front of the router? 

Where do i find some information ?

Thanks 

Labels:
0 Helpful
4 Replies 4

Karsten Iwen
VIP
VIP

‎05-24-2017 02:24 PM

As always: It depends ...

Do you want to protect the routers? Then install the firewalls in front of the routers. Do you want to filter on the user-traffic that leaves the tunnel? Then install them behind the routers. You could also do both by placing the routers inside a DMZ, but that makes the routing-config more difficult.

0 Helpful

Raimund Schimanovits
Level 1
Level 1
In response to Karsten Iwen

‎05-26-2017 01:00 AM

It would be nice if i can see the traffic from the VPN´s and the routers protected.

So do you know where i can find some information about the Router inside a DMZ?

Thanks

0 Helpful

dperezoquendo
Level 1
Level 1
In response to Raimund Schimanovits

‎06-02-2017 11:10 AM

Hello,

This design guide might help: http://www.cisco.com/c/dam/en/us/td/docs/solutions/CVD/Aug2014/CVD-VPNWANDesignGuide-AUG14.pdf

0 Helpful

Raimund Schimanovits
Level 1
Level 1
In response to dperezoquendo

‎06-02-2017 12:16 PM

Thanks i will read this document

best regards

0 Helpful
Customers Also Viewed These Support Documents
Top