Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
A practical dillemma led me here:A customer has several remote sites wich each have a pc that connects to a virtual IP in the HQ lan, which in term is natted to a real HQ server IP on the asa. Now the need has risen to nat a specific group of remote ...
I've been implementing the immensly performant fwsm for some time now, but allways at new customer sites. But now I've stumbled into a re-design of a huge existing network. 2 issues arrise; the transparent mode = the way to go obviously. To minimize ...
Dear all,I'm gooing NUTS! Let me elaborate on why:We have 3 head-offices call them A, B and C. These are linked to each other via High BW leased lines. The smaller remote sites are connected to the main sites via internet-vpn. Now the problem is that...
perhaps idd... I was just staring myself blind at the asdm gui. In commandline this makes perfect sense. So in effect we have 2 static policy Nat's with for the Original source 192.168.1.a(192.168.1.b for 2nd packet), original destination object grou...
Sir,Indeed, that was my 3rd prefered solution.My seccond prefered is the one I have setup now; I had a spare F5 LB lying around and put it to use The most prefered one is of course to have it all cleanly configured in one device; The asa. Cisco has ...
Thanx for the reply but this does not tackle the issue at hand.I have 2 internal servers (a,b) who need to be reached on a virtual ip c.If Ip address group X connecting to address c, the natting should lead them to internal server a. Addtionally when...
This was my first question too, but the devices at the remote sites are in fact a type of apliances that require (costly) 3rd party intervention if we need to change a system setting plus there are over 600 remote sites... so no ...
Hmmm okay... either my english is very bad or you have not read what I typed in my question.Thank you for the effort tough.Design wise I know what is the current/ recommended practice. I am asking what I can do in this particular situation technicall...
