Cisco ASA 5505 - please help

From: davor <davor@xxxxxxxxxx>
Date: Mon, 3 Dec 2007 05:28:31 -0800 (PST)

Hallo all!

I'm planning big reconstruction on out office network. Regarding our
plan I have few questions and please, if you can help, please do!
Thank you in advance!

Now we have HP Proliant ML350 server (we are using it mainly as file
and print server), 24 switch HP Procurve 2524, 20 pcs Windows XP
desktop PC and notebooks and 3 Linksys AP. Our internet connection is
shared 5/5 Mbps link with most closed ports except for web, e-mail and
other only basic usage. We have static IP address.

Our plan is to allow our employees to connect to server through VPN,
start Exchange e-mail server with OutlookWebAccess. To do this we plan
to get another slower internet connection 1/1 but with all open ports
with static IP and to buy firewall, probably Cisco ASA 5505. I must
keep my 5/5Mbps connection because contract agreement so my only
option is to get another all-port-open connection for exchange, VPN,
OWA...

Picture shows future network plan, lousy drawn.
http://img339.imageshack.us/img339/2643/scan0006he3.jpg

My questions are:

On ASA 5505 is it possible to configure that some internet traffic go
through first internet provider 5/5 (web, etc...) and other traffic
through second internet provider 1/1 (e-mail, VPN, OWA...)? And maybe
if 5/5 fails that 1/1 takes over all traffic. Some sort load balancing/
failover/specific type traffic all-in-one.

If my only server is fileserver, printserver and exchange server
should I put it in DMZ VLAN or INSIDE VLAN on ASA 5505?

Should I connect network printers and access points to Inside VLAN on
ASA or to my switch? What is better?

Does anyone know link to download FULL USER GUIDE for ASA 5505? I
can't found it, only GETTING STARTED GUIDE...

I am reading Cisco ASA 5505 Getting started guide and cannon find
answers to my questions. I have no experience in using appliance
firewalls so my question may sound stupid... And sorry about my
English...

Best regards
Davor
.

Prev by Date: Re: IP Route Tables - Point to Point Connection - Only Routing 1 way
Next by Date: How can i Upgrade my network to IPV6
Previous by thread: IP Route Tables - Point to Point Connection - Only Routing 1 way
Next by thread: How can i Upgrade my network to IPV6
Index(es):
- Date
- Thread

Relevant Pages

Re: Site to Site VPN - I am lost
... I understand that in order to build the tunnel each ASA needs to be accessible from the Internet. ... Are you using the internal IP address of the receiving server at Site X, when sending to it, and define route via internal interface of your ASA? ...
(comp.dcom.sys.cisco)
Re: Using the windows firewall
... Is this the only firewall between your server and the internet? ... > I plan to open up one of the interfaces on my Excahnge 2003 box to the ...
(microsoft.public.exchange.admin)
VPN ASA Authentication to MS CA
... I'm deploying a PKI and I would like to be able for my clients to ... connect from the internet through a ASA5500 to get authentified ... Is it possible to create a local server on the ASA and put it in RA ...
(comp.dcom.sys.cisco)
Re: Migration From ISA to CISCO ASA (SMTP publishing rule not work
... now ISA 2006 is working as internet FW and it's working fine. ... any doc to follow to configure ISA 2006 as a back-end firwall behind Cisco ... As far as ISA is concerned the ASA is nothing more than the "next hop" ... server, web server, whatever). ...
(microsoft.public.isa)
Create virtual drive.
... I plan to write a application using JAVA for my final year project. ... location in a server across internet when my application is ...
(comp.lang.java.programmer)