Need help with LAN Architecture - ASA/IPS, and ISR placement

Dear friends, I am new to Cisco community, had no previous experience with managed networks and desperately need an advice setting up a LAN for my small business. Here is what I did so far:
ASA w IPS is facing internet, has a webserver connected to DMZ and then ISR on the inside interface. ISR is used for running CCME/CUE VOIP and VLAN NAT. Switch is connected to the ISR with a trunk interface. I setup multiple VLANs with ACL to separate engineering/management/sales/fileserver. Inter VLAN routing is enabled on the switch to allow Gigabit routing from the Fileserver VLAN to the Engineering VLAN.
I know this is probably overkill for a 4 people company, but my objective is to be ready for possible attacks form both outside and inside and to ensure business continuity and minimal service interruptions.
My question, would it be more practical to connect ASA directly to the switch and do VLAN NAT on the ASA instead of the router? This way if router fails, I loose VOIP but not Internet and if ASA fails, I only loose internet, while phones will stay operational. This approach should also let me use ASA IPS to monitor inter VLAN traffic, so if 1 of the user PCs gets infected, hopefully IPS will contain the damage to a single VLAN.
What would experienced network architect do in my case? Any suggestions?
Please, forgive me if I misunderstood something or did something silly, as this is my first network setup (not including household grade routers)
Thank you very much in advance!

Thank you for your response!
I still keep debating if it has any advantages to use a Router in between ASA and the switch, or should I connect switch directly to
ASA, so the only function of the router is to run VOIP?
I saw multiple network diagrams which all had a border router, then ASA then switches. In my case router runs VOIP and I would want it to be behind ASA. Any benefits of running internet traffic through both ASA and a router?
For redundancy, we can’t really afford 2nd ASA at this time, for now I would want to make sure there is as little chance as possible that both phones and internet go out simultaneously. 

Similar Messages

  • Need help with how to reset bios and admin password to reformat hard drive in 8440p elitebook.......

    need help with how to reset bios and admin password to reformat hard drive in 8440p elitebook? removal of cmos, resetting laptop, using cccleaner, windows password recovery and hiren's was noneffective, any help is appreciated. thanks

    Hi,
    As your notebook is a business class machine, security is more stringent - the password is stored in non-volatile memory and there are no 'backdoor' passwords.  Your best option would be to contact HP regarding this.
    Regards,
    DP-K
    ****Click the White thumb to say thanks****
    ****Please mark Accept As Solution if it solves your problem****
    ****I don't work for HP****
    Microsoft MVP - Windows Experience

  • HT4061 I need help with my I-phone 4S and the Cloud,  I can't locate my serial number  I also have a new 4g I-Pad  Can someone help me

    I need help to locate my pictures in the cloud
    When my son updated my phone early this year it wiped out all my pictues on my I-phone 4S
    How do I access the cloud to view my pictures??

    Do you have Photo Stream enabled with your iCloud account on your computer?
    iCloud is temporary storage - limited to 1,000 photos and 30 days for each photo.
    Photos/videos in your iPhone's Camera Roll can and should be imported by your computer as with any other digital camera especially before installing an iOS update.

  • Need performance! - Need help with Server Architecture for SSAS on Azure VM

    I would like to build 100% Azure VM base solution. We can install as many as needed.
    I have large amount data in DW. (100GB-1000GB)
    I would like to provide PowerView reports in SharePoints.
    I would like to have report data be as real time as possible. (Min data is updated once in 2 hours)
    These are requirements:
    -SharePoint 2013
    -PowerView
    -SSAS OLAP Cube
    -SQL Server DW&Staging DB (Currently DW&Staging on same server)
    I need help specially what can be done with SSAS to meet requirements? Should be installed to own application server? Possible to install multiple SSAS? SSRS needs own server?
    I appreciate also links to server topology diagrams.
    Kenny_I

    I assume you mean 100GB-1000GB (not 1000TB) right?
    For Sharepoint I would refer to the sizing guide for diagrams and sizing:
    http://technet.microsoft.com/en-us/library/ff758647(v=office.15).aspx
    SSRS (and Power View) will run in the SharePoint farm on a SharePoint app server potentially with other SharePoint services.
    I would definitely put SSAS on a dedicated server for a cube that size. Depending on how well your data compresses, there may not be a VM in Azure with enough RAM to put your model into a Tabular SSAS model. I would prototype it with a subset of data to see
    how well it compresses. You can always use a Multidimensional model as a fallback.
    Depending on how much processing the SSAS model impacts user queries (since it is happening during the day) you could build an SSAS processing server and a separate SSAS query server and run the XMLA Synchronize command to copy the cube incrementally from processing
    to query servers.
    Does that help?
    http://artisconsulting.com/Blogs/GregGalloway

  • Need help with Color Profiles between Photoshop and iPhoto

    Hey guys, I'm a photographer and have always used Photoshop in comination with iPhoto. I am having great difficulty lately with color profiles randomly changing within albums of pictures. I need all of my images to be in sRGB, but some somehow end up in Adobe RGB. It seems to happen at random. Apple seems to think it's an Adobe problem. Adobe isn't sure what to do. Anybody aware of any known issues between CS5 and iPhoto using OS 10.8.4 with regard to color profiles and how to fix them?

    SRiegel schrieb:
    I don't know inkscape, but this article seems to indicate that is will support cmyk.
    The article also says you need Scribus to then further process the SVG file.
    @shaunamm You need to open the SVGin Illustrator, not place it. But I doubt that you will be able to get the effects in Illustrator.

  • Need help with Go Pro Hero 3 and Premiere Pro CS6

    Hello,
    I recently acquired PP CS6. I put my clip (30 seconds long) and I go to preview while editing, for the first 1.5 seconds it is fine but then it is very choppy. The audio is fine but the video does not play smoothly. When I save and process the video it is fine. It is frustrating to try to edit video this way. I'm sure I'm missing a step when creating the project but I haven't used Premiere Pro since CS6. This is only happening with Go Pro Hero 3 videos, any of my other cameras are fine. Any ideas? Thanks

    There's a lot of confusion over how video encoding affects subsequent editing performance - a higher data rate has no direct relation to how much effort is required to decode and play the footage, in fact a higher data rate often makes playback easier - which is why transcoding to AVI can help with playback even though the files can be hundreds of times larger. Data rates with the same codec depend on the frame contents and recording quality, but for playback and editing what matters is the GOP (group-of-pictures) structure and the complexity of the encoding algorithm. Provided your disks are fast enough the data rate is immaterial to Premiere.
    With long-GOP files (as typically created by consumer DSLRs and helmet cams) we have keyframes (I-frames) with a complete set of pixel data, then a series of intervening P- and B-frames which only store the difference between 'now' and 'one frame before' or 'one frame after'. Unless you're on an I-frame you have to calculate the chain of differences from the nearest I-frame, and when editing or applying an effect we must  re-calculate the entire GOP, so Premiere has to hold a lot of data in the buffer. Remember all timelines in Premiere are internally transcoded to 32-bit floating point, so it's more work to 'play' the footage in the monitors than would be done by a simple playback-only application such as VLC, or in some other brands of NLE that only work in the footage's color space. Premiere's hardware acceleration (MPE) only kicks in once the buffer has been ingested, all the decoding of the original H.264 frames happens in your CPU.
    With digital cinema cameras and some hacked DSLRs, we record "all-I" footage - so there's no GOP overhead and playback/editing is massively smoother. I can scrub all-I footage from a hacked 7D no problem on my relatively-ancient spare laptop, but the  long-GOP files from a factory 7D struggle to play at all. Our all-I 7D footage can hit 300MBit/s compared to 35 for long-GOP. Helmet cams such as the GoPro do all they possibly can to squeeze data onto their storage cards, which means they have long-GOP codecs that have some of the most complicated compression algorithms out there. The Hero3's implementation of H.264 uses the Ambarella chip, whose files are very small but an utter nightmare to decode - hence far more of a demand on your CPU than an equivalent clip from a DSLR.
    Jim Simon wrote:
    Might be the 35 Mbps that is causing the choppy playback.
    It shouldn't, assuming sufficient hardware.  My GH2 clips often get up to over 90 Mb/s and play just fine on an older i7 920.

  • I need help with changing my payment info and I have to accounts I want to delete one can u please help

    I need help trying to change my payment info I can't but I have to accounts and I want to delete one please help me

    We can't help.  We're not Apple.  Contact the iTunes store support.  There's a link on the bottom of every page of the iTunes store

  • Need help with ORACLE ADMIN, NETWORKING CONCEPTS and SQL, ASAP!

    Hey everyone. Basically my major is going to be computer science, however I haven't started the course yet. However I got a job offering to the position as a SEO. A friend told me as long as I can answer the questions, the job will be no problem, I mainly just google oracle commands to put in all day. So I'm really needing someone who knows about this stuff, that could help me with some of these questions. If you can help, and have the time, my skype ID is drakkarnc
    I greatly appreciate this, thank you. :)

    841784 wrote:
    Hey everyone. Basically my major is going to be computer science, however I haven't started the course yet. However I got a job offering to the position as a SEO. What is "SEO"?
    A friend told me as long as I can answer the questions, the job will be no problem, I mainly just google oracle commands to put in all day. So I'm really needing someone who knows about this stuff, that could help me with some of these questions. If you can help, and have the time, my skype ID is drakkarnc
    I greatly appreciate this, thank you. :)YOu think you can learn this stuff in a few days? Think again.
    Re: What to learn first for DBA/DEV?

  • Need help with Low disk space issue and blue screen

    Hi Everyone, just seen a message stating a low disk space on my Mac pro bought last November and tried plugging in an external hard drive to remove some pictures to free up some space but it seems that the computer did not have enough space left to start up and run the hard drive. I then tried to restart and ended up with a blue screen and have no knowledge now how to fix this problem. I phoned support but they say I have no technical support left but do have warranty and I would need to either try with the community here or take the unit to an apple store for an appointment. The store is an 1 and 1/2 from me and I really want o see if there is another fix that could allow me to start again then remove some files and then add external drive to remove more. I was blown away at the low amount of storage.....looked for the icloud option last night to upload there as i was told about this by a UK client of mine and now see it is not up and running. Any advice or help by the communtiy would be greatly appreciated as this is my business and travelling laptop. Cheers, Dean <")))><

    Great to hear Dean, thanks!
    Further notes: OSX needs about 15% or 10GB Free space minimum, but will run mucch faster/safer with 30-40% or 50GB of Free Space... Free Space is no longer ours to use.
    Another tool to help clear up assorted things is Applejack...
    http://www.macupdate.com/info.php/id/15667/applejack
    After installing, reboot holding down CMD+s, (+s), then when the DOS like prompt shows, type in...
    applejack AUTO
    Then let it do all 6 of it's things.
    At least it'll eliminate some questions if it doesn't fix it.
    The 6 things it does are...
    Correct any Disk problems.
    Repair Permissions.
    Clear out Cache Files.
    Repair/check several plist files.
    Dump the VM files for a fresh start.
    Trash old Log files.
    First reboot will be slower, sometimes 2 or 3 restarts will be required for full benefit... my guess is files relying upon other files relying upon other files! :-)
    Disconnect the USB cable from any Uninterruptible Power Supply so the system doesn't shut down in the middle of the process.

  • Need help with choosing a 6 cell and 9 cell battery (mo06, mo09)

    Hey hi all,
    I have a pavilion m6 series notebook which comes with mo06(6 cell) battery by default.
    I need to replace the battery with a new one and I've come across a mo09 (9 cell) battery with the same price as that of mo06.
    I've no idea if mo09 batteries can be used instead of mo06.
    If anyone who knows anything about this please help me choose.
    Here's the link
    http://hpshopping.in/Accessories/Batteries
    Thanks a lot in advance

    Hi
    Sorry was the delay wanted to make sure the battery should work fine for your unit.
    672412-001  SPS-BATT 9C 100WHr 3.0AH LI MO09100-CL  
    Let us know how it goes!
    "I work for HP."
    ****Click the (purple thumbs up icon in the lower right corner of a post) to say thanks****
    ****Please mark Accept As Solution if it solves your problem****
    Regards
    Manjunath

  • Need help with total hard drive replacement and reinstall

    Hello everyone, let me first say thank you for all the help I hope I get. I have a HP Envy 14 1260se Beats Edition Laptop and I recently purchased a new SSD which really made my laptop speedy. The only problem I am having is that I purchased the recovery disks from HP so I could get all the drivers and everything restored but it does not work at all. So I used a windows 7 professional iso disk my friend had and installed windows (64 bit) and everything works perfectly, but I am missing the volume controls that show up on the screen. Usually when I press volume up or down using the keys on my keyboard it would show a bar in the middle of the screen telling me where my volume is. Now I just see the little volume icon in the taskbar which is just a little annoyance. Also I no longer have the beats on off button working. Is there a way I can download these little things to make my laptop almost the same as it was out of the box without all the bloatware? Any help would be appreciated and sorry in advance if this is confusing. 
    This question was solved.
    View Solution.

    Hi:
    I don't know about the Beats audio thing but I think you need the HP OSD utility to get the volume control to show up on the screen.
    http://h10025.www1.hp.com/ewfrf/wc/softwareDownloadIndex?softwareitem=ob-106851-1&cc=us&dlc=en&lc=en
    Did you install the quick launch software?
    http://h10025.www1.hp.com/ewfrf/wc/softwareDownloadIndex?softwareitem=ob-97078-1&cc=us&dlc=en&lc=en&...=
    The probable reason the recovery disks didn't work is your SSD was of a smaller capacity than the mechanical HDD the notebook originally came with.
    They won't work normally on any hard drive that is smaller than the one the PC came with.

  • Need help with Canon Vixia HF S200 and FCP settings looks awful, help!

    Shot footage on Canon Vixia HF S200 HD at PF24 looks great in camera. Used Wondershare video converter to go from .MTS file to MPEG4 file. Brought into FCP 6.0.6 now image has a lag time or slightly blocky/mosaic when people or camera moves; the sound is good. What should my sequence settings be? Did I miss a setting in Wondershare? I've never used this camera before and my boss needs me to impress our new school superintendent...help!
    Andrew

    Thanks Jerry, that helped alot. Read my latest post please:
    ...Pro Res 422 for a 4 minute project using FCP 6.0.6. It's a Mac Pro 2x3Ghz Quad with GB 800 Mhz. The project is almost done but it is freezing up during playback. Plays for 20 second then playhead freezes then jumps ahead. I've copied timeline sequence 2 times and created new sequences and that does not help. If anyone has suggestions I'm all ears, thanks.
    Andrew

  • Need help with k8t neo ms-6702 and cpu compatiblility question.

    I have a msi k8t neo motherboard socket 754 ms-6702 bios version 2.2 with a athlon 64 2800+ in my computer. I just bought a AMD Athlon 64 3700+ CPU Socket 754 .1MB cache. When i install it, my power goes on and i get no activity. Im wondering if i got a bad cpu off ebay or my bios isnt current enough ( i used msi live updating software and its currently at v 2.2) or does my motherboard not support this high of a cpu? Im not very computer literate.  Thanks for any help and info. If i need to update my bios, i downloaded version 7.1 but i dont know how to flash it, can somone give me the steps 

    I had a bad experience with a 3700 bought on e bay ,turned out to be an engineering sample ."special m/b bios reqd" in my case I did get a boot and the engineering cmos message. genuine 3700 754's are quite rare and fetch premium prices.

  • I need help with my External DVD-RW and my iMac

    I hope there is someone out there that can help me out. I was using my PC for burning DVDs and it just died. I've been using my Pioneer DVD burner in there and now I'm trying to use it on my Intel iMac. When I hooked it up using an external firewire case, this is what shows up in my profiler.
    PIONEER DVD-RW DVR-110D:
    Firmware Revision: 1.41
    Interconnect: FireWire
    Burn Support: Yes (Apple Shipped/Supported)
    Cache: 2000 KB
    Reads DVD: Yes
    CD-Write: -R, -RW
    DVD-Write: -R, -RW, +R, +RW, +R DL
    Burn Underrun Protection CD: Yes
    Burn Underrun Protection DVD: Yes
    Write Strategies: CD-TAO, CD-SAO, CD-Raw, DVD-DAO
    Media: No
    Even though it is Apple supported, nothing mounts and it cannot burn anything in Finder, iTunes, Toast, etc. Can someone out there help me out.
    Thanks in advance!
    Montri - THAIICE

    I have a Pioneer 110-D flashed to a 110 in an external firewire case and I can burn with all my apps.
    This is my profile:
    PIONEER DVD-RW DVR-110:
    Firmware Revision: 1.41
    Interconnect: FireWire
    Burn Support: Yes (Apple Shipped/Supported)
    Cache: 2000 KB
    Reads DVD: Yes
    CD-Write: -R, -RW
    DVD-Write: -R, -RAM, -RW, +R, +RW, +R DL
    Burn Underrun Protection CD: Yes
    Burn Underrun Protection DVD: Yes
    Write Strategies: CD-TAO, CD-SAO, CD-Raw, DVD-DAO
    Media: No
    You could try a different firewire even though profiler sees the drive.

  • Need help with compositing DPX red footage and workflow

    Hi Guys...sorry to repost this..I've tried in many other forums, but haven;'t gotten a straight answer yet, I'm hoping anyone on this page can give advice...
    Recently, I was asked by a friend to help on a low budget project by doing some roto and paint work, and some simple composites in After Effects. The question I have is regarding the specific workflow when it comes to dealing with Red Footage in AE. Currently, the project, which is very small, is getting it’s fine cut done by the editor, and their post supervisor asked how I would like the plates to be delivered for comping…I requested 4k 10 bit DPX files set to Red Gamma/ Red Log Film color space, which I understand to be standard for ingesting.
    The question I have is the best workflow setup for this in AE? Because AE has recently upgraded with CC 2014, there are several new plug ins that I am not familiar with regarding importing DPX or Open EXR files, and the precise color space to work in so I can have a “normalized” project to comp in…..basically Log to Lin, and then exporting Lin to Log.
    This is what I have gathered, and again, I’m not sure if this is correct, so please let me know your thoughts on the best way to work with this:
    Basically I was told to work in sRGB color space in AE in order to work with my VFX comps and elements in the “normalized” sRGB linear colorspace, so go “Log to Lin"
    1. Import the red footage as 10 bit DPX sequence into AE (with a RedLog Film color gamma applied)…the project settings should be set at 32 bit depth and the working space set to sRGB
    2. Right Click on the DPX footage and select “Interpret Footage” select “Main” and then go to the “Color Management” Tab
    3. At the “Assign Profile” Box, select “Universal Camera Film Printing Density”. This should “normalize” the footage in the RGB colorspace of the project, and I should be able to see a Rec709 (sRGB) image instead of flat Log.
    For the Rendered Output from AE for the colorist…..
    Best to render out two different formats, one in Log space for the colorist, and one in a 1080 QT linear space for approvals from the Director
    1. In the AE Render queue, set up two output modules…go to “Output Module Settings” and select “Color Management” tab, then select the “Output Profile”.
    2. Set the profile to “Universal Camera Film Printing Density”, and the file format to DPX…or whichever the colorist requests as the file format (png, Tiff, etc)
    3. The second module can be set to sRGB in QT for approvals
    Does this make sense? Is there a better way? Am I on point? Thanks so much, I really want to have this nailed down before I continue.

    Jason talks about merging clips right a the beginning of the video.
    http://tv.adobe.com/watch/cs-55-production-premium-feature-tour-/adobe-creative-suite-55-p roduction-premium-feature-tour-overview/

Maybe you are looking for

  • HOW TO GET TOP AND BOTTOM RECORDS IN SQL STATEMENT, URGENT

    Hi, I want to get the TOP 2 and BOTTOM 2 records (TOP 2 SAL , BOTTOM 2 SAL) from the following query result for each department . How do I get it using a SQL statement ? Thanks SQL> SELECT A.DNAME, B.ENAME, B.SAL FROM DEPT A, EMP B WHERE A.DEPTNO = B

  • IPAD SCREEN NOT RESPONDING

    My iPad's screen does not respond to my touch.  I've tried to reset it, force quit and re-start it, etc. but nothing works. Please HELP!!!

  • Need help with Premier Elements 11 and Geforce 9600 GT Driver

    I have Win7.  Everything was working until my driver got updated by MicrosoftUpdates.  I rolled back the driver but still get the error/warning that the driver is not optimal.  Cannot see a preview of my video once it's uploaded.    I loaded an older

  • Flash 8 - Re-order an array, simple binding of xml

    I am prototyping a data table display. I need to show a data table inside a grid, using a simple xml file such as the one in the "DinnerMenu" tutorial whereby a button loads the xml file into the data grid component. I want to know how to set the ord

  • Can you use Windows 7 Support software (drivers) for Windows XP on bootcamp?

    I'm just wondering, I'm installing windows XP on my mac running lion. I don't have my lion install disk but Im able to install 'windows 7 support software' from bootcamp which I put on a usb flash drive. My friend says I can use that for Windows XP d