08-07-2008 05:22 AM - edited 03-06-2019 12:40 AM
Hi, I need some help configuring a 1811 for routing 2 networks and IPS. and a ASA 5505 for Firewall, content filtering and vpn.
Right now I have them setup on a test lan. I have the 5505 and content filtering working , but I am having problems with routing on the 1811
Corp 192.168.1.1
remote site 192.168.2.1 Via T1 Cisco 1720 routers
any example configs would help.
08-07-2008 05:55 AM
can u detail more
like how they connected i mean
where the firewall connected
and the networks IPs so the IPs u sent cant lead to anything
for example
are connected like
ASA--router---t1---router
wnats the IPs between them
08-07-2008 06:24 AM
Sorry for the lack of info.
right now our production network is like you have it ASA--router---t1---router.
conf t
int f0
ip address 192.168.1.10 255.255.255.0
no shut
int s0
ip address 192.168.254.1 255.255.255.252
service-module t1 clock source internal
no shut
exit
ip route 0.0.0.0 0.0.0.0 192.168.1.2
ip route 192.168.2.0 255.255.255.0 s0
exit
Remote:
conf t
int f0
ip address 192.168.2.10 255.255.255.0
no shut
int s0
ip address 192.168.254.2 255.255.255.252
no shut
exit
ip route 0.0.0.0 0.0.0.0 s0
exit
We are replacing all our netgear and 3com crap with all Cisco. so the flow is
ASA--cat2960switch--1720--T1--1720--CatExp500switch--CatExp500switch
08-07-2008 06:59 AM
so what is required?
the config looks good basecly
08-07-2008 07:07 AM
I am looking to add a 1811 for routing and IPS. and use the ASA 5505 for Firewall, content filtering and vpn.
Do i need to have vlans?
How do i route the 2 networks to the 1811 then to the ASA?
08-07-2008 07:19 AM
u mean add make the i811 router the router that have t1 and also connected to asa?
and u private network behind the ASA?
08-07-2008 07:27 AM
I was thinking of having the 1811 as the core router. so the 1720 would point to the 1811, the 1811 to the ASA.
08-07-2008 07:51 AM
make static route between them all
normaly
and also static route on the as aswel
08-12-2008 10:35 AM
I dont think IPS will work like that. It wants to monitor data from a Wan. So do i need to connect my ASA 5505 to FE0 on the 1811 and make it Look like a wan?
do i need to Trunk them? or Vlan between them?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide