V-lan

Unanswered Question
Sep 21st, 2009

Hi, We have ASA 5505 running for our Production n/w and using 4 V-lans which are configured on ASA. Now we want 6 more v-lans to be added but we cant configure on ASA because of limited interfaces. As I know we cant make sub interfaces on ASA 5505 model, am i correct?

Secondly, we are going to buy a L3 Cisco Catalyst switch 3500 and will configure all V-Lans on Switch but I dont want to enable the IP routing on L3 as all V-lan communication I want to configure on ASA so what would be the scenario.

Pls. explain??

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Jon Marshall Mon, 09/21/2009 - 02:17

Ray

The 5505 will support trunking and up to 20 vlan interfaces but you will need to upgrade to the security plus license -

http://www.cisco.com/en/US/prod/collateral/vpndevc/ps6032/ps6094/ps6120/product_data_sheet0900aecd802930c5.html

"Secondly, we are going to buy a L3 Cisco Catalyst switch 3500 and will configure all V-Lans on Switch but I dont want to enable the IP routing on L3 as all V-lan communication I want to configure on ASA so what would be the scenario."

Well you back to square one here. If you want to route all vlans off the ASA then you will need to upgrade to the security plus license and then connect the 3560 via a L2 trunk to the ASA.

Jon

ray_stone Mon, 09/21/2009 - 04:52

Hi Jon,

Thank you for your reply.

We are using Security plus license on ASA 5505. Now what do we need?

ray_stone Mon, 09/21/2009 - 08:08

Can anyone give an example to setup this scenario?

Pls. help!!

Actions

This Discussion