MusicMan440
asked on
Firewall implementation for branch offices
I am assisting my friend with a school project. Basically I had a few questions. Here is the scenario.
7 branch offices connected to a central office with dedicated T1 lines.
1 network for data and separate for guest wireless network at each location.
All internet comes through proxy at central location
Around 60 hosts at each location
The switch for the data network is plugged into one Ethernet interface and the WAP is plugged into the second Ethernet interface of the router at each location.
IP Scheme example:
Branch 1: Data 192.168.1.0 /24 Wireless 192.168.50.1 /24
Branch 2: Data 192.168.2.0 /24 Wireless 192.168.51.0 /24
Questions:
Should he put Cisco ASA firewalls behind each router at the remote locations?
If so, how do you configure the Cisco ASA if two Ethernet ports are used on the Router?
7 branch offices connected to a central office with dedicated T1 lines.
1 network for data and separate for guest wireless network at each location.
All internet comes through proxy at central location
Around 60 hosts at each location
The switch for the data network is plugged into one Ethernet interface and the WAP is plugged into the second Ethernet interface of the router at each location.
IP Scheme example:
Branch 1: Data 192.168.1.0 /24 Wireless 192.168.50.1 /24
Branch 2: Data 192.168.2.0 /24 Wireless 192.168.51.0 /24
Questions:
Should he put Cisco ASA firewalls behind each router at the remote locations?
If so, how do you configure the Cisco ASA if two Ethernet ports are used on the Router?
Are they using dedicated MPLS networks or just internet T1s and you are providing the VPN?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.