Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
We currently have a Catalyst 6509 which terminates the IPSec/GRE tunnels. We would like to then connect our ASA5540 to this 6509 to inspect the traffic once the packets have been decrypted and then send it back again to the 6509 to route it to its fi...
Is there a way I can manage and configure the ASA5540 using ASDM v5.0 when I change it to transparent mode?I CLI to the ASA5540 and change it to transparent mode, then I added an IP address to the device with the same subnet where it is connected to ...
We are using the VPN Spa on our 6509 to create and terminate the IPSec/GRE tunnels and we want to direct all traffic coming out of the GRE tunnels to go to a specific ethernet port. This port on the 6509 then connects to an external Cisco AS5540 fire...
Phil,There are three ways you can terminate the VPN on the SPA. What you mentioned above is using the routed mode. You can also do it in the switched mode where you put the public ip address at your internal VLAN 207 and make your external VLAN 208 o...
Hi Jon,Thanks for your suggestions, unfortunately, we have GRE/IPsec tunnels that end at the same 6509. So, when we route the traffic to the 5540, the packets ignore it since it just goes directly to the tunnel interface which are directly connected....
I don't know if I understood this correctly. It seems that this solution takes care of directing the packets to go into the firewall. How do I then direct the packets that come out of the firewall back to the 6509 to be routed to their final destinat...
Thanks Vibhor. I got it to work on the Transparent mode by adding the http , adding the security level to the interfaces, and adding a name to the interfaces.Regards,-Paul
Thanks. I was undecided whether I should do PBR or VACLs but I think your suggestion makes more sense since it gives me additional choice on which packets to forward it to.I'll try it out.
