cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
381
Views
0
Helpful
3
Replies

5510 VLAN Config

collinsjl
Level 1
Level 1

Basically I want to be able to use the other 2 ports as I would a switch and assign a VLAN to all of them.  Here is the current configuration:

Cisco Adaptive Security Appliance Software Version 9.1(6)4
Device Manager Version 7.4(2)

interface Ethernet0/1
 nameif inside
 security-level 100
 ip address 10.0.120.1 255.255.254.0
!
interface Ethernet0/2
 shutdown
 no nameif
 no security-level
 no ip address
!
interface Ethernet0/3
 shutdown
 no nameif
 no security-level
 no ip address

 

Need to extend the inside interface to ETH 0/2 and ETH 0/3 so we can connect other devices in that network to them.

I image I would just clear the inside interface config on eth 0/1

create a subinterface on eth 0/1 and add the ip address to that then the VLAN ID and add the nameif as inside

Create subinterfaces on eth 0/3 and eth0/3 and add the same VLAN ID?

I assume I would not have to add an ip to each one of those right?

 

Will that work?

There is all kinds of docs about mutiple vlans but nothing I could find that ref what I am trying to do.  I would think this would be common.

 

 

 

 

3 Replies 3

johnd2310
Level 8
Level 8

Hi,

 

Best to add a switch.

 

http://www.cisco.com/c/en/us/td/docs/security/asa/asa91/configuration/general/asa_91_general_config/interface_start.html

 

You cannot assign same vlan id to multiple sub-interfaces

Thanks

John

**Please rate posts you find helpful**

But you can on a 5505 with old school 8.2?  There has got to be a way to do this.

 

 

Hi,

 

5505 is a bit different and can do this. The higher end ASAs are designed for larger networks where you will have switches

 

Thanks

John 

**Please rate posts you find helpful**
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: