ASA in transparent mode with 2 different VLANs but 1 subnet
I have a question about ASA in transparent mode. Would it be possible to deploy ASA in transparent mode with 2 different VLANs but only 1 subnet as attached file? I would like to deploy like this because there are 2 core switches and also 2 server farm switches which is full mesh connected. So, it might be better if it is possible to use just 2 ASA instead of 4.
Re: ASA in transparent mode with 2 different VLANs but 1 subnet
"Would it be possible to deploy ASA in transparent mode with 2 different VLANs but only 1 subnet as attached file?"
Yes, in fact that is the recommended way to deploy a transparent firewall. You need the same IP subnet because it is a L2 firewall not L3. But you have to use 2 vlans to avoid STP issues ie. if you only used 1 vlan you would get a L2 loop.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...