I have got a CISCO ASA5510 device.I have to add a firewall between two devices with different subnets.By keeping the IP of one of the ports of firewall similar to the gateway of end device I am able to ping the two device but the problem is with same default gateway another optical network is attached.Hence this option is not possible.Now an option left with me is configuring NAT in the firewall and connecting to a layer 3 switch which has the gateway of the end device.How should I configure this NAT with access list.
- If you need clarification, ask it in the comment box above.
- Better answers use proper spelling and grammar.
- Provide details, support with references or personal experience.
Tell us some more! Your answer needs to include more details to help people.You can't post answers that contain an email address.Please enter a valid email address.The email address entered is already associated to an account.Login to postPlease use English characters only.
Tip: The max point reward for answering a question is 15.
Is the goal to use a different VLAN for each access point (AP)? If so then you will need to configure each NetGear port to use the same VLAN as the AP that is connected to it. You will then need either a switched virtual interface (SVI) for each VLAN on the NetGear or a trunk port (802.1q) from the NetGear to the Cisco. I'm not sure the NetGear will support SVIs but it will support trunks. An SVI basically creates a gateway for each VLAN's subnet. For example, let's say AP1 uses VLAN 10 and the subnet is 10.0.10.0/24 while AP2 uses VLAN 20 with a 10.0.20.0/24 subnet. The NetGear will need 2 SVIs, one for each VLAN/subnet. The first SVI for VLAN 10 can be configured with IP address 10.0.10.1/24 while the second SVI can be configured with 10.0.20.1/24 for VLAN 20. These IP addresses will be the gateway for each VLAN. Finally, the NetGear would need to act as a router and route each VLAN's subnet to the Cisco device. Once again I don't believe the FS726TP supports this.
The other solution would be to create a VLAN trunk port between the NetGear and the Cisco device but I believe the Cisco RV042 does not support trunking. If it does the trunk would be configured to carry all of the VLANs to the Cisco device which would then have SVIs created on it.
If neither of the above is possible you would need to use the same VLAN for each AP and each of the interfaces on the NetGear and Cisco devices which negates the need for the VLANs.
Hello,
There are two things you could do from the routers end..
1) You can take the IP add of your device( X-box, PS3) and then contact the device vendor(Xbox or PS3) and ask them to give port numbers for your device. Once u get the port numbers you can either open ports on the router by logging into the router interface using your Default gateway of the router or you could put the IP add of your device in DMZ on the router. Basically this will keep the device out of the firewall of the router( Which is the main reason for this issue).
2) If the first step didnt work you could disable the firewall on the router.
If both the steps didnt work you could check if your router has any firmware update or it has to be reset and re-configured and the above steps should be re-done.
Hope this helped.
Its like router on stick configuration??enter the interface which you have to configure and in that interface as mentioned below Hostname(config)#interface FastEthernet0/1 Hostname(config-if)#noip address Hostname(config-if)#no shutdown Hostname(config)#interface FastEthernet0/1.1 Hostname(config-if)#encapsulation dot1Q 1 native Hostname(config-if)#ip address x.x.y.y < subnet mask > interface FastEthernet0/1.2 Hostname(config-if)#encapsulation dot1Q 2 Hostname(config-if)#ip address x.x.y.y < subnet mask >
Hello , the Steps which u want to export and import configuration in Cisco ASA5510 1- connect yourself to your Cisco gateway by IP 2- Get TFTP server to your PC like( solarwind , Tftp server , ... ) any tftp download and upload program 3- now u need to copy running configuration to your pc by order #copy run tftp , then follow the steps NOTE: u should be in the same network or u need your pc and cisco box both have publick IP
4- if u want to put prepair config files to your gateway , you will need to type order #copy tftp run , then foloow the steps
If u need anything else please let us know by leave your completely request or join us with www.fixya.com
1. Pix does not like class A address, make sure you are using B or C.
2. The VPN subnet always has to be differant to the LAN.
3. Has to have a working DNS server.
4. Add static route, and last resort to main ethernet port that has the DNS & R62. (or 2 if on differant sub)
×