Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

asa 5510 security context

Would like to know the exact functionality of Security context in ASA.

I need to create some 30-35 vlan on subinterface of the firewall.

According to daga sheet ASA5510 with security plus licenses support only 25 Vlans.Is it the limit or something else.

Does that mean I cann't create 30-35 subinterfaces on ASA 5510 and assign them as diffrent vlan name?

Thanks in advance.

Reg,

sushil

5 REPLIES

Re: asa 5510 security context

An ASA5510 will support 50 VLANS and with the Security Plus license 100. A Security Context is a virtual firewall not a VLAN, but they are usually used together. Here's a link for more info on Security Contexts:

http://cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00808d2b63.shtml

HTH

New Member

Re: asa 5510 security context

thanks for your reply.

I hve one doubt over the no. of vlans.

spec sheet says 25 vlans allowed.Is it per security context or something else.

moreover I need to create some 30-35 subinterfaces on single physical interface of my ASA 5510.Does this hold some limit to create subinterfaces and assigning to VLAN.

Reg,

Sushil

Re: asa 5510 security context

Here's a link to the datasheet which shows 50 VLANs. What doc are you looking at? I don't think you will be able to create more VLAN interfaces than you're licensed for.

http://www.cisco.com/en/US/prod/collateral/vpndevc/ps6032/ps6094/ps6120/product_data_sheet0900aecd802930c5.html

New Member

Re: asa 5510 security context

Thanks I got it.

Here related to same want to freeze the right product for my customer.

Will create some 30 Vlans and will keep minimum 6 to 8 user in each of them.They will just browse the internet nothing else.

Question:

1. will 5510 will be able to solve the purpose on this much load or need to go with 5520?I will create vlans on ASA and trunk to L2 switch.

2. Will 2960 switch with 48 port can fulfill my requirement?and after each port on switch can i use small switches of 8 or 16 port for individual Vlan users.

Reg,

Sushil

Re: asa 5510 security context

Do you really need to segment your users? Can you use a layer 3 to do it? A 2960 can trunk just fine, so it would work that purpose.

520
Views
9
Helpful
5
Replies
CreatePlease to create content