Cisco help
I have an old Cisco 3825 router that I am replacing with ASA 5525x Firepower IPS and ISR 4431 router. My old router has 2 outside interfaces (handoffs) that bandwidth comes in from COLO and 1 interface that is a cross connect to my circuits. The old router is running the following roles/protocols: VPN (few different flavors dynamic and isakmp client), BGP, DHCP for voip/users, with some extended access lists. The question is, do I use 2 outside IPs that were previously on my router outside interfaces on the 2 outside ASA interfaces since it will be in front of the router facing the handoffs, then use the inside interfaces to connect to 2 router internal IPs interfaces?
ASKER
I really don't want to buy another piece of equipment as far as outside switch goes, just want to plug the 2 handoffs from ISP with external static IPs into ASA and take it from there. The circuits are fiber metro E, that connect to 2 locations of of the company. Is it better to handle DHCP on ASA or Router since I have both, never liked server DHCP. The BGP is same provider, 2 separate handoffs. VPN is a must on ASA, that I know now.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thank you! This has pointed me in the right direction, I will get started on the config.
I would put a External Switch to handle the external ports first off just to make it easier to monitor and function
Yo mention one external to Colo and one for cross connects circuits(what kind of circuits) ISP, Wan, telco etc?
The ASA Firepower can do the Procider connections, DHCP for internal and ACLs, but I would recommend something internal do DHCP for Coice/Users like an internal Server or Switch. Heck you can has the ASA do all th eBorder work and use the Router as an internal Routing/Gwateway function
What BGP is running? Multi ISp connections? VPN connections can be done on the ASA also