I am currently receiving my High Speed Internet via Cable Modem through Mediacom. They do not offer a Static (they call it “sticky”) IP Address on residential accounts. I have acquired the following equipment so this is what I have to work with.
1 – Cisco 1811 Integrated Services Router
1 – Cisco ASA 5505 Adaptive Security Appliance
1 – Cisco Catalyst 2960G (20 + 4 10/100/1000MB)
2 – Cisco 1130AG Wireless Access Points
Due to port density limitations in place on the ASA5505 I have the 2960 available to me. However, I’m confused as to how I can utilize multiple VLANs on a separate switch.
If I have VLAN1 – Personal, VLAN2 – ISP, and VLAN3 – Business all configured on the ASA5055, but I want to have VLAN1 & VLAN3 split on the 2960 how do I go about this? I’m sure I will have to do 802.1q on some port(s), or can I create VLANs on ASA and run cross-over cable down to switch that is configured accordingly?
The ASA5505 also has two POE ports!! Can I assign each POE port to its own VLAN? If so, I would like to assign FastEthernet0/6 to VLAN3 and FastEthernet0/7 to VLAN1. I would then connect a Cisco 1130AG WAP to each POE port. Is this possible?
I would then like to get DYNdns set up so I could create a L2L VPN Tunnel between VLAN3 and the corporate office. We run ASA 5520’s at Corporate so compatibility isn’t an issue. The biggest issue here is my limitations set forth by Mediacom not offering me a Static IP Address. Right?
I also have a couple game consoles (Xbox 360 & Wii) that don’t play well with Cisco NAT. I would like to put them out in a DMZ with full access to the Internet, but I’m not sure if this will work on the ASA appliance.
All recommendations are greatly appreciated and I’m sure will be very helpful. Please feel free to ask questions, and I will do my best to answer them for you...
Thanks in advance…