Re: OT: Can ASA 525 do access ports in routed mode? from Anthony Bonilla on 2013-05-12 (Ccielab archives 05/2013)

From: Anthony Bonilla <anthonybonilla.ccie_at_gmail.com>
Date: Sun, 12 May 2013 14:39:49 -0400

Thanks guys, yes I meant to connect and not contract...

Also, I know that I can use a L2 switch outside but was wondering if there
is a way for enabling access ports on ASA when it is being used in a routed
mode - I assume we can do the same in transparent but there are other
downsides since I have to have L2L IPSec tunnels terminated on the same
ASAs... If anyone knows of any way to make it work in the current routed
mode, pls do share.... again, much appreciated guys!

On Sun, May 12, 2013 at 12:50 PM, Joe Sanchez <marco207p_at_gmail.com> wrote:

> Tony. You will need a L2 vlan on the outside interface that you can share
> the outside subnet with to allow multiple device. This is accomplished
> typically by having a L2 switch on the outside, or for better HA 2 switches
> connected with a trunk port and each firewall connected to their respective
> outside firewall interfaces.
>
> If you want these devices to be protected by the firewall you can put them
> on a DmZ interface .
>
> HTH
>
> Regards,
> Joe Sanchez
>
> ( please excuse the brevity of this email as it was sent via a mobile
> device. Please excuse misspelled words or sentence structure.)
>
> On May 12, 2013, at 11:37 AM, Ryan West <rwest_at_zyedge.com> wrote:
>
> > $20 switch from bestbuy isn't an option?
> >
> > Sent from handheld.
> >
> > On May 12, 2013, at 12:12 PM, "Anthony Bonilla" <
> anthonybonilla.ccie_at_gmail.com> wrote:
> >
> >> Guys,
> >>
> >> I need someone assistance with a real life scenario, I have a pair of
> ASA
> >> 5525x firewalls running in routed firewall mode. But I have to contract
> >> three devices on my outside vlan so that they can be reached from
> Internet
> >> - can someone pls advise if its possible? Btw,I'm running 9.0 code and
> did
> >> not see an option to configure SVI... TIA.
> >>
> >> tony
> >>
> >>
> >> Blogs and organic groups at http://www.ccie.net
> >>
> >> _______________________________________________________________________
> >> Subscription information may be found at:
> >> http://www.groupstudy.com/list/CCIELab.html
> >
> >
> > Blogs and organic groups at http://www.ccie.net
> >
> > _______________________________________________________________________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html

Blogs and organic groups at http://www.ccie.net
Received on Sun May 12 2013 - 14:39:49 ART

This archive was generated by hypermail 2.2.0 : Mon Jun 03 2013 - 06:34:34 ART