Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1744
Views
0
Helpful
7
Replies

ASA 5510 Vlan

Go to solution
Navaz Wattoo
Level 1
Level 1

‎01-12-2014 03:47 AM - edited ‎03-11-2019 08:28 PM

i have two cisco asa 5510 firewall and at failover and i have one server in dmz zone

and now i want more servers in dmz zone with one asa dmz interface

is ther any solution regarding this?

Navaz       

Navaz
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
lcambron
Level 3
Level 3
In response to Navaz Wattoo

‎01-13-2014 09:10 AM

Then you just need to configure the ports on the switch as access and on the same Vlan, just like the port you have now configured for the working server.

Let us know if you have questions or any issue.

Regards,

Felipe.

Remember to rate useful posts.

View solution in original post

0 Helpful
7 Replies 7

Go to solution
Marius Gunnerud
VIP
VIP

‎01-12-2014 08:46 AM

I am not 100% sure I understand what you are wanting to do.  Do these servers need to be in different VLANs?  If so you can configure the physical interface into subinterfaces and then assign each seperate subinterface to a VLAN.  On the switch that connects to the ASA you would need to trunk the port and make sure you allow all required VLANs over that trunk.

Here is an example of how you would configure the interface on the ASA.

int g0/1

no shut

int g0/1.101

security-level 50

nameif DMZ1

IP 192.168.6.1 255.255.255.0

vlan 101

--
Please remember to rate and select a correct answer

--
Please remember to select a correct answer and rate helpful posts
0 Helpful

Go to solution
lcambron
Level 3
Level 3

‎01-12-2014 12:34 PM

Hello,

I guess your question is if this can be done without a switch? Not really.

You can further explain the problem so we can help.

If you need the servers on the same Vlan/network, you can just connect a switch to the DMZ interface and connect the servers to the Switch, all on the same Vlan.

Otherwise you can follow Marius's suggestion.

Regards,

Felipe.

Remember to rate useful posts.

0 Helpful

Go to solution
Navaz Wattoo
Level 1
Level 1
In response to lcambron

‎01-12-2014 09:16 PM

        Here is my topolgy

Navaz

Message was edited by: Navaz Wattoo

Navaz
Preview file
36 KB
0 Helpful

Go to solution
Navaz Wattoo
Level 1
Level 1
In response to Navaz Wattoo

‎01-12-2014 09:29 PM

i want that one dmz interface and connected with ciscl L2  2960 switch and having 3 or more servers connected

Navaz

Navaz
0 Helpful

Go to solution
lcambron
Level 3
Level 3
In response to Navaz Wattoo

‎01-13-2014 09:10 AM

Then you just need to configure the ports on the switch as access and on the same Vlan, just like the port you have now configured for the working server.

Let us know if you have questions or any issue.

Regards,

Felipe.

Remember to rate useful posts.

0 Helpful

Go to solution
Navaz Wattoo
Level 1
Level 1
In response to lcambron

‎01-15-2014 09:00 PM

Send me the vlan configuration of cisco ASA and also 2960

Navaz

Navaz
0 Helpful

Go to solution
Navaz Wattoo
Level 1
Level 1
In response to Navaz Wattoo

‎01-16-2014 09:36 PM

anyone have solution

Navaz

Navaz
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card