We have a network which has two MPLS connections that route from two ports on a Cisco ASA Firewall (default gateway) which sits just off the main network switch.
1) MPLS 1 routes to our sister company (ERP related traffic only).
2) MPLS 2 routes internal Internet traffic out via an ISP router. Our ISP also provides an offsite firewall and domain hosting services.
The internal network IP range is as follows:
10.213.0.0/19 or 255.255.224.0 (10.213.0.1 – 10.213.31.254)
(MPLS 2) The router network to the Internet is:
10.213.253.8/29 or 255.255.255.248 (10.213.253.9 – 10.213.253.14)
The ASA firewall has two IP address one internal and one external (10.213.10.1 and 10.213.253.9).
For various reasons I need to place a BLOXX device between the ASA firewall and the ISP router. This device basically performs web monitoring and filtering for the internal network. My question is how do I set this up? The device will be configured in pass through mode and will be connected in line between the ASA firewall and the ISP router.
From which IP range do I assign an IP address? Will the default gateway for the device be the ISP router? Do I assign internal DNS servers or DNS addresses of the ISP to the device?