https://community.cisco.com/t5/network-security/firewall-in-single-vlan/m-p/1703407#M562160 <P>Hello,</P><P></P><P>I have a network provided from Datacenter.</P><P>I doubt this design will work but before pointing finger on Datacenter, I want to confirm.</P><P>Design :</P><P><SPAN>[Internet] ---&gt; [Switch] ---&gt; [Cisco ASA] ---&gt; [Server]</SPAN></P><P>Firewall : Cisco ASA 7.2 (4)</P><P></P><P>They configured single Vlan1 in which they included all 8 ports from eth0 to eth7. Out of which eth0 is connected to Server and eth1 is connected to Switch, all other are shutdown.</P><P>But confusing thing is both are in same vlan with ip address x.x.x.190.</P><P>Server has ip address of x.x.x.186</P><P>Gateway for server and firewall, both has x.x.x.185 (I suppose that this device is connected to same switch as of Cisco ASA).</P><P>Now, we want to configure ACLs on firewall, please let me know if above scenario is possible ?</P><P>I doubt that atlesat seperate interface should be there to configure firewall like inside and outside.</P><P></P><P>Thanks,</P><P>Shashi.</P> Mon, 11 Mar 2019 20:34:40 GMT shashikant.prabhakar 2019-03-11T20:34:40Z https://community.cisco.com/t5/network-security/firewall-in-single-vlan/m-p/1703407#M562160 <P>Hello,</P><P></P><P>I have a network provided from Datacenter.</P><P>I doubt this design will work but before pointing finger on Datacenter, I want to confirm.</P><P>Design :</P><P><SPAN>[Internet] ---&gt; [Switch] ---&gt; [Cisco ASA] ---&gt; [Server]</SPAN></P><P>Firewall : Cisco ASA 7.2 (4)</P><P></P><P>They configured single Vlan1 in which they included all 8 ports from eth0 to eth7. Out of which eth0 is connected to Server and eth1 is connected to Switch, all other are shutdown.</P><P>But confusing thing is both are in same vlan with ip address x.x.x.190.</P><P>Server has ip address of x.x.x.186</P><P>Gateway for server and firewall, both has x.x.x.185 (I suppose that this device is connected to same switch as of Cisco ASA).</P><P>Now, we want to configure ACLs on firewall, please let me know if above scenario is possible ?</P><P>I doubt that atlesat seperate interface should be there to configure firewall like inside and outside.</P><P></P><P>Thanks,</P><P>Shashi.</P> Mon, 11 Mar 2019 20:34:40 GMT https://community.cisco.com/t5/network-security/firewall-in-single-vlan/m-p/1703407#M562160 shashikant.prabhakar 2019-03-11T20:34:40Z https://community.cisco.com/t5/network-security/firewall-in-single-vlan/m-p/1703408#M562163 <HTML><HEAD></HEAD><BODY><P>Hi Shashi,</P><P></P><P>THe datacentre might be configuring the firewall in transparent mode, as per you description. Please go through the document below to understand the concept of transparent firewall:</P><P><A class="jive-link-external-small" href="http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a008089f467.shtml">http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a008089f467.shtml</A></P><P></P><P>Hope this helps.</P><P></P><P>Thanks,</P><P>Varun</P></BODY></HTML> Wed, 18 May 2011 07:32:03 GMT https://community.cisco.com/t5/network-security/firewall-in-single-vlan/m-p/1703408#M562163 varrao 2011-05-18T07:32:03Z