Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I am attempting to cleanup some of the NAT configurations on our ASA before we upgrade from 8.2.5 to 8.3+. I had a question regarding the global nat configurations.
I understand of the purpose of most the statements below, but I don't understand the ...
Could anyone tell me if this scenario would be possible and point me in the right direction in order to research the topic? Is it possible for a hosting company to order a single Layer 3 MPLS-VPN circuit from a provider (Sprint) and have themselves a...
Our main DC site has a /25 public IP range (starting with 207.x.x.x), and our DR site has a /26 public IP range (starting with 209.x.x.x). Both are assigned from the same ISP, and are advertised back out with BGP. There is a distance of about 50 mile...
I am in the middle of discussions with a vendor to purchase a 5515X. I mentioned that I need the option to buy more Security Contexts licenses in the future, beyond the initial two that come with the ASA. He stated that I would need the 5515X SSD ver...
I was researching Static NAT with DNS Modification. Please see the link below. If the User in the example was to do a Reverse DNS lookup (in Step 1) instead of a standard DNS Query, would the NAT rule still modify the reverse lookup IP as it crosses ...
Thanks for the explanation. I guess it was my misunderstanding of BGP. I thought that if other ISPs would filter out our routes, then no traffic could get back. I now see that they would send the traffic to the AS assigned to my ISP, and my ISP would...
You described out situation accurately.I agree that it would work in theory, but I figured the advertisements might be affected by the summarization of the routes at the ISP level. If our ISP advertises the 209 prefix for a particular geographic loc...
We decided to use a site-to-site VPN between two ASAs to keep the traffic separated. The routers at both ends of the PTP are only used to carry the traffic.After doing some research into traffic shaping, I think that will probably help with limiting ...
