Solved

Cisco Asa Multiple Customers

Posted on 2014-10-29
1
211 Views
Last Modified: 2015-01-12
Hello,

We have a cisco asa 5505.   I just learned that we need to provide internet service to a second party that wants to host their own firewall in a remote location .  The remote location I have several fiber runs to.  Since all our external ips come into the asa, Im going to assign a port on our 5505 to our vlan associated with our ISP.  From there Im going to give the second company a /21 block.

My concern is they would also like to keep equipment in our location on their local lan.  So off our asa I will connect to a switch (layer 3 I believe)  that switch will fiber connect to the second parties switch.  the second party will plug in their sonicwall to the remote switch.  In order to have local equipment in the same location as the asa Im guessing they have to create a vlan on the local and remote switch and sonicwall?
0
Comment
Question by:silvercas
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 62

Accepted Solution

by:
gheist earned 500 total points
ID: 40412858
/21 is very generous
Double the number of people should suffice ofr all the needs.
You can make virtual firewall in ASA and hand over management to them. It is very handy for customer to have control over other end of link
0

Featured Post

Secure Your WordPress Site: 5 Essential Approaches

WordPress is the web's most popular CMS, but its dominance also makes it a target for attackers. Our eBook will show you how to:

Prevent costly exploits of core and plugin vulnerabilities
Repel automated attacks
Lock down your dashboard, secure your code, and protect your users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
Keystroke loggers have been around for a very long time. While the threat is old, some of the remedies are new!
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

729 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question