Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

new asa5505 - old config

Status
Not open for further replies.
normntwrk

normntwrk

MIS
Aug 12, 2002
336
0
0
US
I bought a new 5505 ver 8.2(5) old 5505 is 7.2(4) . I finally got the config pasted in but some things are a little out of order. Will it matter ? I think everything else looks OK

OLD ASA:
name 172.17.228.0 insidenetwork
!
interface Vlan1
nameif inside
security-level 100
ip address 172.17.228.1 255.255.255.0
!

interface Vlan2
description WANinterface
nameif outside
security-level 0
pppoe client vpdn group outside
ip address pppoe setroute
!
interface Ethernet0/0
switchport access vlan 2

interface Ethernet0/1
!
interface Ethernet0/2
!
interface Ethernet0/3
!
interface Ethernet0/4
!
interface Ethernet0/5
!
interface Ethernet0/6
!
interface Ethernet0/7

NEW ASA
name 172.17.228.0 insidenetwork
!
interface Ethernet0/0
switchport access vlan 2
!
interface Ethernet0/1
!
interface Ethernet0/2
!
interface Ethernet0/3
!
interface Ethernet0/4
!
interface Ethernet0/5
!
interface Ethernet0/6
!
interface Ethernet0/7
!
interface Vlan1
nameif inside
security-level 100
ip address 172.17.228.1 255.255.255.0
!
interface Vlan2
description WANinterface
nameif outside
security-level 0
pppoe client vpdn group outside
ip address pppoe setroute
 
Sort by date Sort by votes
Yes it will work but the best way to know for certain is to test it
 
Upvote 0 Downvote
This is going to a remote office about 1000 miles away so I'm hoping it works

Norm
 
Upvote 0 Downvote
Always test critical equipment before putting it into production. If you cannot test the VPN tunnel, you can at least plug it into a switch to make sure the ACL's work properly.

Does it have the same licensing as the old ASA?
 
Upvote 0 Downvote
You may want to set the MTU to 1492, and/or tcp MSS to 1452 for adsl

trust me ;)

ip access-list extended IP-Options-and-Powerball
deny ip any any winning-powerball-ticket
permit ip any any option any-options
!
class-map ACL-Options-and-Powerball
match access-group name IP-Options-and-Powerball
!
policy-map CoPP-POLICY
class ACL-Options-and-Powerball
drop
!
control-plane
service-policy input CoPP-POLICY
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Sparrow4
  • Locked
  • Question
Configure Avaya IPO R11 / VM Pro + Office365 or Exchange for voicemail to email
Replies
2
Views
136
Johnkite
Johnkite
tjbradford
  • Locked
  • Question
ASAX 5508 - basic config - packet loss
Replies
0
Views
46
tjbradford
tjbradford
RMurr34
  • Locked
  • Question
ASA Config - Open port 3389 for all IPs
Replies
1
Views
61
iggsterman
iggsterman
acabezas2014
  • Locked
  • Question
Configuring ASA for Network Segmentation
Replies
1
Views
64
acabezas2014
acabezas2014
decyberworld
  • Locked
  • Question
Where start-up config and capture file saved in ASA
Replies
0
Views
34
decyberworld
decyberworld

Part and Inventory Search

Sponsor

Back
Top