Re: routing for servers

suthomas1 · ‎08-28-2012

Hello,

Our core switch is currently hosting all application servers. Remote sites connecting to our head office access these servers via leased lines.

The plan is to add a ASA firewall so that all these servers can be protected.

But, the teams are not willing to physically relocate the server behind the firewall. So the firewall needs to be attached in such a way to the core switch that all

the server bound traffic passes through the firewall rules.

Please suggest ways to achieve this plan.

Thanks in advance.

Scott Fella · ‎08-28-2012

You should move your post to the route switch forum. They would be able to help you there.

Sent from Cisco Technical Support iPad App

-Scott
*** Please rate helpful posts ***

Joseph W. Doherty · ‎08-29-2012

Disclaimer

The Author of this posting offers the information contained within this posting without consideration and with the reader's understanding that there's no implied or expressed suitability or fitness for any purpose. Information provided is for informational purposes only and should not be construed as rendering professional advice of any kind. Usage of this posting's information is solely at reader's own risk.

Liability Disclaimer

In no event shall Author be liable for any damages whatsoever (including, without limitation, damages for loss of use, data or profit) arising out of the use or inability to use the posting's information even if Author has been advised of the possibility of such damage.

Posting

Yes it may be possible. You configure the forwarding such that the server traffic must transit the firewall. How depends on the equipment. VRF support can be very useful in these situations.

colinmcallister · ‎08-29-2012

Sounds like a use-case for the FWSM if you're running a 6500 core switch..

http://www.cisco.com/en/US/products/hw/modules/ps2706/ps4452/index.html