Buy or Renew
Buy or Renew
NEW: Try the Beta AI Summary feature on posts in the Routing and SD-WAN forum. Click to go to the forum.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
489
Views
0
Helpful
2
Replies

General Network Infrastructure Help

chrs944
Community Member

‎04-05-2018 11:37 AM - edited ‎03-08-2019 02:32 PM

I'm setting up a new network.

 

There will be 4 WS-C3750E-48PD-SF 48 Port switches for workstation / voip access

There will be 2 WS-C3750E-24TD-S 24 Port switches for server access.

 

I need a recommendation for a core switch. Since the switches listed above have 10G uplink ports, I was hoping to find a switch that has 10G ports. Obviously I would purchase 2 core switches and connect an uplink from each of the above switches to its own port on each of the core switches so each core switch would need 6 ports at minimum.

 

I also have a questions about router vs. firewall.

 

My plan is to setup a VPN so I was looking at the ASA5525-x.

 

Would this be sufficient for client VPN access? I'm not so much concerned with having site to site access. What client software does the ASA5525-x support, is it Cisco client only? do I need a license for each client?

 

Would the ASA5525-x be sufficient to also serve as a router? We aren't doing anything extreme when it comes to routing. Maybe a few NAT rules to one or 2 servers.

 

Any help would be appreciated.

 

Thanks

Labels:
0 Helpful
2 Replies 2

Reza Sharifi
Hall of Fame
Hall of Fame

‎04-05-2018 12:40 PM

For core switches, you can use a set of 16 port 4500x switches. If you configure them as VSS, you have 2 physical devices but you manage only one logical device and no need for HSRP, VRRP, etc..

All 16 ports are fiber and can be gig or 10Gig.

As for your second questions, you can use the ASA for VPN access. Your users need to download the Cisco VPN client or if you have an AD environment, it can be pushed to their devices using a GPO. Not sure how many licenses the  ASA comes with but you may have to purchase some.

HTH

 

0 Helpful

chrs944
Community Member
In response to Reza Sharifi

‎04-05-2018 03:58 PM

Thanks for the reply.

 

I'm on a pretty tight budget so I want to try and avoid the 4500x switches. What do you think about the WS-C3560E-12D-E ? I should be able to use these and then get the X2-10GB-LR modules along with some SC-SC single mode fiber correct?

 

Also, apart from using the ASA for VPN connections, can it also serve as a router or will I need to get a separate device for that? The routing is simple, just some NATing 

0 Helpful
Customers Also Viewed These Support Documents