Solved: Network Design for Integration - Page 2

MrBeginner · ‎03-26-2019

Dear all,

I have concern the existing network design and i would like to change.On our existing design ,we two network.

Network 1 is primary.we have other network,network 2, that network need to access our server.

So previous design is we use L2 switch and create two vlan(one for network 1 ,one for network 2).

our server have two network interface and one interface connect to vlan1 and one interface connect to vlan2.

server guy run persistence route in server for two network.Please see below diagram.

I would like to change below design.But i also concern my new design.i consider to use L3 swithch to integrate network 2 and run static route to network 2.

So please help me which one is the best practice in design ?

What kind of protocol should i need to use to integrate Network 2 Firewall links ,Ether-channel?

Deepak Kumar · ‎03-26-2019

Hi @Leo Laohoo

I am looking for benefits for avoiding asymmetric routing.

As I understand his question, he is facing issue with routing between both Networks because he installed second ASA (which are in HA) in Routed mode. so whenever network 2 want's to communicate with Network 1's server reply packet's are getting drops due to asymmetric routing.

Why is it happening:

Network 2's server is sending a packet to Network 1 server then as per normal "AND" rule server will reply to the default gateway and main ASA is getting a drop because he is not configured for asymmetric routing. So he found another way and added routes on the server itself.

There is also a solution to allow asymmetric routing on the main ASA but he already designed the network so we would go with layer 3 switch. It will resolve his asymmetric routing issue.

Regards,
Deepak Kumar

Regards,
Deepak Kumar,
Don't forget to vote and accept the solution if this comment will help you!