Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
238
Views
0
Helpful
1
Replies

NAT on router with ASA hanging off

Collin Clark
VIP Alumni
VIP Alumni

‎03-21-2013 10:49 AM - edited ‎03-07-2019 12:24 PM

I have attached a diagram that hopefully shows what I'm trying to explain here. I have an 891W router. I have /30 address space between the router and the ISP. The ISP routes down a /29 address space. What I am looking to do is put an ASA with one of the public IP's on the internet. I also have two NAT's on the router; one to a host on the inside and another NAT to a host in a DMZ. On the router I created VLAN 6 and gave it an IP from my /29 address space. I then assigned the ASA one of the public IP's. From a remote location I can access ASA but I can't access the NAT's on the router. If I unplug the ASA the NAT's on the router work. I don't want a private IP on the 'outside' interface of the ASA. Any ideas on how to resolve this?

home_problem.png

Labels:
0 Helpful
1 Reply 1

Gregory Snipes
Level 4
Level 4

‎03-21-2013 11:00 AM

Well you could use IRB to bridge the two WAN ports on the router and convert the outside interface to a BVI instead. Then the Firewall could be configured in parallel with the router.

Why is it that you do not just want to place the router behind the firewall?

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card