Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

ASA 5510 and 3750 VLAN Routing

I am working on the exact same configuration as noted here (https://supportforums.cisco.com/message/3514264) that uses subinterfaces on the asa. I have two interfaces on my stacked 3750's configured as trunk ports (primary ASA on primary 3750 stack member, secondary ASA on secondary 3750 stack member).

My questions is what should the DG be configured on the 3750. Can I keep the 3750 in L2 or will I have to enable L3 routing? Should the VLAN interfaces be configured.

The port that the ASA is configured with has 3 subinterfaces on VLAN 100, 200, and 300.

The subinterfaces are G0/2.100, G0/2.200, and G0/2.300.

I am in the middle of converting from 3 separate DMZ switches, each attached to their own port on the asa which is their default gateway to one physical port on the ASA broken into 3 subinterfaces which then connect to stacked 3750's. The stack will then have the 3 separate DMZs in actual separate VLANs.

My goal is to leave the default gateway for each dmz on the ASA so I don't have to modify other areas of the ASA config.

Please assist.

1 REPLY
Gold

ASA 5510 and 3750 VLAN Routing

Hello,

You can certainly leave the 3750 as a Layer 2 switch and point the default gateway of your hosts at the ASA's subinterfaces. You shouldn't have any issues with that design.

-Mike

418
Views
0
Helpful
1
Replies