Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
520
Views
0
Helpful
1
Replies

Cisco 5516-X with firepower services behind Cisco router

Breejesh
Level 1
Level 1

‎10-19-2020 06:09 AM

Hello Experts,

 

I am tasked to deploy a new Cisco 5516-X ASA (with firepower services) behind an existing Cisco router. Purpose of this addition is to setup remote access and IPsec VPN tunnels on the Cisco ASA. 

So it will be ISP => Cisco Router => Cisco ASA => L2/L3 switches

 

Question is , if ASA will have connectivity with Cisco Router on Outside interface having private IP address (172.27.x.x/24), how remote access clients (anyconnect) and IPSec VPN tunnels will work considering the fact that Outside interface of ASA is not having public IP address? 

 

Apology if this is silly question as I am little bit new to ASA.

 

Thanks in Advance!

 

Labels:
0 Helpful
1 Reply 1

Rob Ingram
VIP
VIP

‎10-19-2020 06:13 AM

Hi @Breejesh

You just need to setup a NAT on the router for the ASA. RAVPN user's will connect to the public IP address (of the router) which will be transalated to the private IP address of the ASA's outside interface.

 

HTH

 

HTH

0 Helpful
Customers Also Viewed These Support Documents