[c-nsp] help with the correct choice of a cisco router

Riccardo Giuntoli taglio at gmail.com
Wed Mar 7 09:39:06 EST 2012 

Ok i've investigated a little bit more.

ISP will give my customer a preconfigured and totally closed (we cannot
enter in it) 2811 with a LAN port where i can connect the equipment that i
want to comply to all the points that i've explained in my first email in
this thread. They will statically route the /29 to a host (one interface of
my router or firewall) on the same subnet .

So seeing this point i think that absolutely now the best choice will be
use the ASA5510 and for now directly connect distribution layer 2 core
switches to it and do shaping, router-on-a-stick and an ipsec concentrator
with it.

In a future will be more interesting add a distribution layer 3 switches.

Any more suggestions?

Regards, and thank you for your time.

On Tue, Mar 6, 2012 at 7:07 PM, Josh Farrelly <josh at base-2.co.nz> wrote:

> Hi Riccardo.
>
> The ASA can route between VLANs, though dependant on your configuration
> and requirements you can route before the firewalls if you prefer.
>
> Thanks,
>
> Josh Farrelly
>
> On 7/03/2012, at 0:34, "Riccardo Giuntoli" <taglio at gmail.com> wrote:
>
> Dear Josh, to do routing i imagine that you're using some L3 switches
> correct? ASA can do router-on-a-stick config?
>
> Regards,
>
> On Tue, Mar 6, 2012 at 12:47 AM, Josh Farrelly <josh at base-2.co.nz> wrote:
>
>> From what you've mentioned there'd likely be no reason you couldn't use
>> an ASA5510 for the requirements you've laid out below.
>>
>> We have 2x ASA5510's in an active/passive cluster at a customer site.
>> It's connected to a 100/100Mbps link and it quite happily handles several
>> thousand connections and throughputs at full rates in either direction.
>>
>> We've had no issues with them, apart from a PSU failure and a few
>> configuration issues with WCCP. They've been in service for the better part
>> of 2 years now.
>>
>> I guess it comes down to what you're most comfortable with at the end of
>> the day.
>>
>> Regards,
>>
>> Josh.
>>
>> -----Original Message-----
>> From: cisco-nsp-bounces at puck.nether.net [mailto:
>> cisco-nsp-bounces at puck.nether.net] On Behalf Of Riccardo Giuntoli
>> Sent: Tuesday, 6 March 2012 10:36 a.m.
>> To: Doug McIntyre; cisco-nsp at puck.nether.net
>> Subject: Re: [c-nsp] help with the correct choice of a cisco router
>>
>> Yuhm, i've not think about a firewall for sure... do you speak about some
>> ASA machine? Do you have some suggestions?
>>
>> Regards,
>>
>> On Mon, Mar 5, 2012 at 10:27 PM, Doug McIntyre <merlyn at geeks.org> wrote:
>>
>> > On Mon, Mar 05, 2012 at 11:19:38AM +0100, Riccardo Giuntoli wrote:
>> > > Hello there, first of all nice to talk with us for the first time in
>> > > this ml. My name is Riccardo Giuntoli and i'm writing from Spain,
>> > > how're you guys?
>> > >
>> > > I've got a customer that have some simple task to do and we want to
>> > realize
>> > > this with a cisco router, those are the points to comply:
>> >
>> > Why a router, and not a firewall instead? They will more easily hit
>> > your requirements at a chaper price point.
>> >
>> > _______________________________________________
>> > cisco-nsp mailing list  cisco-nsp at puck.nether.net
>> > https://puck.nether.net/mailman/listinfo/cisco-nsp
>> > archive at http://puck.nether.net/pipermail/cisco-nsp/
>> >
>>
>>
>>
>> --
>> Name: Riccardo Giuntoli
>> Email: taglio at gmail.com
>> Location: Canyelles, BCN, España
>> PGP Key: 0x67123739
>> PGP Fingerprint: CE75 16B5 D855 842FAB54 FB5C DDC6 4640 6712 3739 Key
>> server: hkp://wwwkeys.eu.pgp.net_______________________________________________
>> cisco-nsp mailing list  cisco-nsp at puck.nether.net
>> https://puck.nether.net/mailman/listinfo/cisco-nsp
>> archive at http://puck.nether.net/pipermail/cisco-nsp/
>>
>
>
>
> --
> Name: Riccardo Giuntoli
> Email: taglio at gmail.com
> Location: Canyelles, BCN, España
> PGP Key: 0x67123739
> PGP Fingerprint: CE75 16B5 D855 842FAB54 FB5C DDC6 4640 6712 3739
> Key server: hkp://wwwkeys.eu.pgp.net
>
>


-- 
Name: Riccardo Giuntoli
Email: taglio at gmail.com
Location: Canyelles, BCN, España
PGP Key: 0x67123739
PGP Fingerprint: CE75 16B5 D855 842FAB54 FB5C DDC6 4640 6712 3739
Key server: hkp://wwwkeys.eu.pgp.net

More information about the cisco-nsp mailing list