Hello all,
My company has a ancient Cisco 5505 asa that I am looking to replace with pfsense. The one thing I just don't have are the skills/knowledge to make the final conversion of a certain aspect of the ASA config.
My company has recently added on a business partner that needs to use one of our public ip's and a little rack space.
This is a basic visual of how the network works now. From our cable modem one Ethernet cable goes to the WAN port on server 1's Firewall, then to a layer 2 switch and finally to the server.
When the new business partner came in their Network team and the team my company contracts worked out the way both servers would talk to each other. Which is by taking a second Ethernet cable and plugging into the cable modem, then that cable runs into their own asa which pulled one of our public ip's, then a LAN cable goes to their server.
The way both server's talk is by the VLAN created on my company's asa.
The issue is our company has been growing enough that fiber had to be installed.
With the new config we were issued a new IP block, but the fiber switch only allows one port to be used for the WAN.
I have copied and configured all VPNS for the old asa to pfsense and everything works wonderfully. I re-created the vlan to go from pfsense to the switch instead of directly from the firewall. Everything is exactly functional as if the asa was never replaced.
The final hurdle is how to assign the remaining asa a public IP from our IP block?