Cisco Router: Fast ethernet 0/0 192.168.254.2 255.255.255.0 connection to firewall Fast ethernet 0/1 192.168.1.254 255.255.255.0 connection to lan static routing: 0.0.0.0 0.0.0.0 192.168.254.1
astaro: internal network is 192.168.254.1 255.255.255.0 External wan is ***.***.***.146 255.255.255.240 Static Routes: inside 192.168.0.0 255.255.0.0 192.168.254.2 cant get 0.0.0.0 0.0.0.0 ***.***.***.145 to add on astaro
I'm trying to replace the asa 505 with the astaro asg this setup gets me internet if i use the astaro as the gateway when i have the router as the gateway no internet access?
I'm not sure you even need the extra router; the Astaro can take the place of both the ASA and the router, unless you are using that router for multiple WAN / LAN networks, etc. YOu can place one interface on the outside (using the public IP), and the internal network and any DMZs on other interfaces or VLANs, and just use the NAT/DNAT/SNAT/MASQ function of the Astaro to connect the inside to the outside.
I have allowed the services i want through but i still cant get it to pass the internet traffic through the 2811 and i need the 2811 as i have 4 other remote locations that are using point 2 points to share the internet line.If i plug my laptop into the astaro and bypass the cisco i have internet all day long?Would it not still be a routing issue? How do i get the astaro to pass all outside traffic to ***.***.***.145
you can add the default GW in the interface configuration for the ASG. As I've read your description above, there is one ASG interface that holds a static public IP address. Go to this interface and add the Default GW option there.
Totally unrelated: If you use IPsec site-to-site tunnels, you can also get rid of the ASG, since the device is (at least with the Network subscription) also able to terminate IPSec tunnels.
