05-26-2015 12:28 PM - edited 03-10-2019 12:26 AM
Basically I want to be able to use the other 2 ports as I would a switch and assign a VLAN to all of them. Here is the current configuration:
Cisco Adaptive Security Appliance Software Version 9.1(6)4
Device Manager Version 7.4(2)
interface Ethernet0/1
nameif inside
security-level 100
ip address 10.0.120.1 255.255.254.0
!
interface Ethernet0/2
shutdown
no nameif
no security-level
no ip address
!
interface Ethernet0/3
shutdown
no nameif
no security-level
no ip address
Need to extend the inside interface to ETH 0/2 and ETH 0/3 so we can connect other devices in that network to them.
I image I would just clear the inside interface config on eth 0/1
create a subinterface on eth 0/1 and add the ip address to that then the VLAN ID and add the nameif as inside
Create subinterfaces on eth 0/3 and eth0/3 and add the same VLAN ID?
I assume I would not have to add an ip to each one of those right?
Will that work?
There is all kinds of docs about mutiple vlans but nothing I could find that ref what I am trying to do. I would think this would be common.
05-26-2015 05:06 PM
Hi,
Best to add a switch.
You cannot assign same vlan id to multiple sub-interfaces
Thanks
John
05-26-2015 08:21 PM
But you can on a 5505 with old school 8.2? There has got to be a way to do this.
05-26-2015 10:15 PM
Hi,
5505 is a bit different and can do this. The higher end ASAs are designed for larger networks where you will have switches
Thanks
John
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: