Buy or Renew
Buy or Renew
NOTICE: You can now engage in the community. Learn about the great new Cisco Umbrella content.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
562
Views
0
Helpful
1
Replies

Creating VLANs on ASA5512 and transporting them to 2960S switch

sharma.pulkit
Level 1
Level 1

‎06-25-2013 12:39 PM - edited ‎03-11-2019 07:02 PM

Hi,

One if my customer has a scenario wherein they want to configure the vlans on the ASA-5512 and pass the vlan traffic on the 2960S switches.

I have suggested them to configure the vlan interfaces on the ASA and create trunk ports on the 2960S with the vlan as native vlan.

Can you please suggest. if thats the correct way.

Thanks

Pulkit

Labels:
0 Helpful
1 Reply 1

Jouni Forss
VIP Alumni
VIP Alumni

‎06-26-2013 12:04 AM

Hi,

Well on the ASA firewalls side you configure a Trunk interface pretty much with the same idea that is done on the Cisco routers.

You configure subinterfaces for each Vlan. The only ASA model to my understanding that supports configuring actual Vlan interfaces on the firewall is the ASA5505 which has its own switch module. (Naturally there is FWSM and ASASM also)

The ASA interface configuration looks something like this

interface GigabitEthernet0/0

description TRUNK

no nameif

no security-level

no ip address

interface GigabitEthernet0/0.100

vlan 100

description LAN

nameif LAN

security-level 100

ip address 10.10.100.1 255.255.255.0

interface GigabitEthernet0/0.200

vlan 200

description DMZ

nameif DMZ

security-level 50

ip address 10.10.200.1 255.255.255.0

Ant the switch would naturally have their own Trunk configurations for the interface connected to the above ASA interface GigabitEthernet0/0

Hope this helps

- Jouni

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card