asked on cisco asa proxy arp
My company is purchasing another company that right now has remote offices with ipsec tunnels to a datacenter. We're going to be moving them into our datacenter and for the time being we're going to move their firewall and have it in place with our current juniper fw. I'll put their asa outside ip on the untrust vdc just like our juniper. of course i'll change their asa outside to be an ip address on our current subnet from Verizon which is the same subnet our juniper is on.
I'll reconfigure their Nats with new ips as well. My question is regarding proxy arp. i assume as long as i allow proxy arp in the nat statements and don't have duplicate mapped ips in juniper and asa that traffic to ips on the juniper will go there and traffic to ips on the asa will go there. and that both devices should be able to share the same network segment ok. just wanted to make sure there weren't any gotchas.
I'll reconfigure their Nats with new ips as well. My question is regarding proxy arp. i assume as long as i allow proxy arp in the nat statements and don't have duplicate mapped ips in juniper and asa that traffic to ips on the juniper will go there and traffic to ips on the asa will go there. and that both devices should be able to share the same network segment ok. just wanted to make sure there weren't any gotchas.
Cisco
Last Comment
techlinden
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
ok. thanks. yeah, routing shouldn't be an issue.