Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
957
Views
0
Helpful
0
Replies

Cisco ISA 3000 Subinterfaces and Zone

Wabou_224
Level 1
Level 1

‎03-24-2021 10:55 AM

Hello Guys

I have standalone ISA 3000 (Transparent mode ) with FTD 6.6.1 managed by FMC which I need to connect to dual-core switch keeping the bypass functionality

there are several VLANs which will be connected to the firewall  . The firewall will have inside and outside interfaces

 

The challenge which I am facing is to create sub-interfaces with the Same VLAN ID on two different interfaces so I got an idea to assign GI 1/1 for outside and GI 1/2 for inside and keep any subinterface without zone like

GI 1/1 ( Outside zone)          GI 1/2 ( inside zone)

GI 1/1 -- > Create sub interface Gi 1/1.11 VLAN ID 11  ( no zone assigned )

GI 1/2 -- > Create Sub interface Gi 1/2.11 VLAN ID 11 ( No zone assigned)

Create BVI 11 for both 1/1.11 and 1/2.11 with BVI IP in VLAN 11 .

 

Does the sub-interface inhert the Security zone from the parent interface , for example GI 1/1.11 will inhert Outside side since GI 1/1 is Outside interface ?

 

 

0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card