[isalist] Re: Cisco --> ISA
- From: "Andrew Hodgson" <Andrew.Hodgson@xxxxxxxxxx>
- To: isalist <isalist@xxxxxxxxxxxxx>
- Date: Mon, 3 Nov 2008 13:06:32 +0000
Hi,
Certainly on the ASA box you can assign the outside interface to a range
of IP addresses, then use static NAT to ensure that the web server on
the inside is presented on the outside using a specific IP address. I
have no idea whether you can do this on an ISA box. You can do this on
an ASA 5505 with a base license (i.e, without any license at all), what
you can however not do is to use the DMZ functions of the ASA device,
i.e, have multiple VLANs with different security levels etc.
Andrew.
_____
From: MarvinC [mailto:marvinc@xxxxxxxxx]
Sent: 03 November 2008 12:58
To: isalist@xxxxxxxxxxxxx
Subject: [isalist] Re: Cisco --> ISA
I currently have a Windows web server and now want to add a linux web
server to my test network. Since I have 5 static IP addresses I want to
assign a different IP for the linux server. To do this I know I'll have
to add another NIC and create a second listener on the ISA server. This
isn't a problem but since I have the Cisco equipment and have had it for
a while I figure this would be a good time to break it out and start
using it. I knew there'd be some blow-back about adding the Cisco in
place of ISA but I'm not in a position to upgrade to 2006 and figure
playing with the ASA would also enhance my Cisco skills. Since I didn't
buy the ASA device from a "reputable retailer" I'm unsure about the
license so I may run into an issue there.
As of right now it's just a thought and after reading up on it there
seems to be a lot that has to be taken into account in regards to
managing it. So I'll continue to do research and just add the listener
as time is an issue with adding the web server.
thanks
On Fri, Oct 31, 2008 at 11:46 AM, Jerry Young <jerrygyoungii@xxxxxxxxx>
wrote:
Marvin,
Start here.
http://www.cisco.com/en/US/docs/security/asa/asa72/configuration/guide/i
nt5505.html
You might also want to give Cisco Support a call, too. I hear they're
pretty good at helping customers get up and running (although, I haven't
worked with them personally because I don't really play with Cisco
devices).
Out of curiousity, why the change from ISA to Cisco?
On Fri, Oct 31, 2008 at 12:01 PM, MarvinC <marvinc@xxxxxxxxx> wrote:
Would anyone happen to have any steps for configuring a Cisco 5505? I
have one that I'd like to either replace my existing ISA 2004 server
with or sit it in front of the ISA server.
tia
--
Cordially yours,
Jerry G. Young II
Microsoft Certified Systems Engineer
--
allpay.net Limited, Fortis et Fides, Whitestone Business Park, Whitestone,
Hereford, HR1 3SE.
Registered in England No. 02933191. UK VAT Reg. No. 666 9148 88.
Telephone: 0870 243 3434, Fax: 0870 243 6041.
Website: www.allpay.net
Email: enquiries@xxxxxxxxxx
This email, and any files transmitted with it, is confidential and intended
solely for the use of the individual or entity to whom it is addressed. If you
have received this email in error please notify the allpay.net Information
Security Manager at the number above.
Other related posts: