Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

Configuring aASA5505 for two separate networks using ASDM

Posted on 2015-02-10
2
Medium Priority
?
282 Views
Last Modified: 2015-02-11
Hi I am a not very confident with Cisco ASA 5505 and have managed to get 4 sites connecting to our main site with site to site VPN’s
The network in the main site is on 192.168.0.1 the remote sites are 192.168.8.1, 192.168.6.1, 192.168.10.1 and 192.168.2.1 all works well without problem
We have 7 external addresses with our ISDN and are using two of them one for exchange and one for everything else.
A company is renting some office space from us and would like their own separate network of 192.168.12.1 internally and wants to use one of our spare external IP addresses.
My question is:
Is this possible on a ASA 5505 and would it configurable using the ASDM ?

Thank you in advance.
0
Comment
Question by:dances1960
2 Comments
 
LVL 7

Accepted Solution

by:
Daniel Sheppard earned 2000 total points
ID: 40601288
The ASA 5505 cannot handle multiple routed networks.  You can create a DMZ, however that is not the best way to go about it if you can help it.

The DMZ isn't 100% bad, it will only mean that the two networks can't exchange traffic.  Not a big deal I suppose.

If you want to try using the ASA 5505 for this, you will need to:

- Configure a second interface with the other companies subnet (or a /30 and add a static route to their subnet through that /30)
- Set the security level
- Create a NAT policy for their systems
- Create a IP Access List to prevent traffic flowing between the two subnets (not strictly required however still recommended for portability)

So to answer, yes it is the possible.  Yes it is configurable through ASDM.
0
 

Author Closing Comment

by:dances1960
ID: 40602597
Wonderful, many thanks Daniel
0

Featured Post

Who's Defending Your Organization from Threats?

Protecting against advanced threats requires an IT dream team – a well-oiled machine of people and solutions working together to defend your organization. Download our resource kit today to learn more about the tools you need to build you IT Dream Team!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article will show you step-by-step instructions to build your own NTP CentOS server.  The network diagram shows the best practice to setup the NTP server farm for redundancy.  This article also serves as your NTP server documentation.
In this article I will be showing you how to subnet the easiest way possible for IPv4 (Internet Protocol version 4). This article does not cover IPv6. Keep in mind that subnetting requires lots of practice and time.
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…

581 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question