11-05-2010 06:50 AM - edited 03-11-2019 12:05 PM
Hello everybody
I haven't found this in official documentation and would like to ask what is best practice for managing ASA?
For routers we use loopback interfaces and IPs which are routed independantly from state of physical interface. Are there anything similar for ASA devices?
11-05-2010 06:55 AM
Hi,
The ASAs have their management interface as well.
The management interface is a regular Ethernet port that can be used as a regular interface but you can use it as a management port with the command ''management-only''
Hope it helps.
Federico.
11-05-2010 07:01 AM
Correct, but management intarface on asa is a physical interface and it goes down whole device is unaccessible.
11-05-2010 07:20 AM
With firewalls (and L2 switches) you're kind of stuck. What we've done in the past is use the management interface and in case of failure/no reachability, we use an out of band device that connects to the console port of the firewall.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: