Please note firstly this isn't the way I want/would/would like to do this, simply just what we have inherited and are being told to do by the powers at be. We have two Cisco ASA's 5510/5505.
We have a leased line which terminates at a BT NTE Box with an IP of 188.8.131.52 and this has a link to the Cisco ASA 5510 with WAN IP: 184.108.40.206.
Now we have another firewall, and they want the leased line to be shared out to this as well, so we have put a switch in behind the NTE box, so NTE box to switch, switch to both firewalls. There were no IPs avaiable in the above range left (the 220.127.116.11-42) so we have been given two additional IPs in a totally seperate subnet. One of these IPs needs to go to the Cisco 5505, but what do we set as the default gateway for that route? The IP of the NTE box? A totally seperate IP? How would this routing work? New IPs are: 18.104.22.168/31 (22.214.171.124 - 126.96.36.199)
You have to talk to the provider. The box has to have one IP that is reachable to the 5505. Either they need a secondary IP or they need to use an larger subnet for the two Asa's "this can be any network" then the box needs routes to reach each ASA IP. You would NAT the valid addresses on ASA and route it to the box on through this new transit network.
Inviting all network professionals in operations! We'd like to understand what would be valuable for you in a mobile application. Your response will help Cisco improve a product feature that could benefit you. Thanks!
Click here to take the sur...
Cisco’s software-defined wide area network (SD-WAN) solution allows user to quickly and seamlessly establish an overlay fabric to connect an enterprise’s data centers, branch and campus locations, as well as colocation facilities in order to imp...
1. Log into CLI of DNAC:
ssh maglev@< DNAC appliance IP> -p 2222
2. Run this curl command to get token to get member id:
curl -X POST -u admin:<admin user password> -H -V https://<CLUSTER-IP>/api/system/v1/identitymgmt/token
Enterprise Switching Business Unit is glad to announce Beta release 16.12.2 for all Catalyst 9200/9300/9400/9500/9600 and Catalyst 3650/3850 Platforms. This release is made available to allow users to test, evaluate and share fee...
Purpose of the document
This document describes the general recommendations or best practices when designing and deploying the Cisco SD-Access technology. The document assumes that the reader has a general overview of Cisco's SD-Access for Distributed C...