Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
509
Views
0
Helpful
4
Replies

configure SubInterface on ASA5510

Phoungsakdavin
Level 1
Level 1

‎06-13-2006 03:58 AM - edited ‎03-09-2019 03:13 PM

Hello,

Currently I am using Pix515e with 2 physical interfaces by configuring sub interface as below:

interface ethernet0 100full

interface ethernet0 vlan2 physical

interface ethernet0 vlan3 logical

interface ethernet1 100full

nameif ethernet0 outside security0

nameif ethernet1 inside security100

nameif vlan3 visa security50

Please Note: Outside interface of the pix connect to port1(trunking assign) on a swtich2950 and Port2(VLAN2 assign) connect to a cisco router and Port3(VLAN3 assign) connect to another switch2950.

Now I am planning to use ASA5510, so how can assign the interface of ASA to be the same vlan logical interface as pix.

interface Ethernet0/0

shutdown

no nameif

no security-level

no ip address

!

interface Ethernet0/1

shutdown

no nameif

no security-level

no ip address

!

interface Ethernet0/2

shutdown

no nameif

no security-level

no ip address

!

interface Management0/0

nameif management

security-level 100

ip address 192.168.1.1 255.255.255.0

management-only

Any feed back and solution is appreciated

Regards,

Vin

Labels:
0 Helpful
4 Replies 4

chrisbicm
Level 1
Level 1

‎06-13-2006 04:16 AM

Vin,

This is the section I used when configuring sub-ints on my ASA 5520.... take a look its fairly simple but a little bit different then the pix setup.

http://www.cisco.com/en/US/products/ps6120/products_configuration_guide_chapter09186a008054d463.html

Good luck,

Chris

0 Helpful

sean
Level 3
Level 3

‎06-13-2006 05:57 AM

Here is an example of how you can do subinterfaces on the asa:

interface GigabitEthernet0/1.2

description [Switch Mgmt.]

vlan 2

nameif Switch

security-level 100

ip address 1.1.1.1 255.255.255.252

Hope this helps.

0 Helpful

Phoungsakdavin
Level 1
Level 1
In response to sean

‎06-13-2006 05:19 PM

Hello Sean,

Your above sample is to configuration Vlan2 for sub interface, so now i have vlan3 config as you see in my previous post. So can you tell me how to configure that?

Please note: The interface configuration on the pix are the existing Pix 515e in my network. But now i can't change. coz we have two VLANs need to config.

Regards,

Vin

0 Helpful

chrisbicm
Level 1
Level 1
In response to Phoungsakdavin

‎06-14-2006 07:13 AM

Vin,

To set up your vlan3 just follow Seans post but instead of putting "vlan2" just put vlan3 and change the interface address and description.

interface GigabitEthernet0/1.3

description [Logical]

vlan 3

nameif Switch

security-level 100

ip address x.x.x.x 255.255.255.255

Good luck,

Chris

0 Helpful
Customers Also Viewed These Support Documents