cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
3234
Views
0
Helpful
9
Replies

Multi vlan on the inside interface of firewall

ChuTichNuoc
Level 1
Level 1

Hi,

I have a layer 3 switch (Cisco Catalyst 3560) with multiple vlans configured on it, and connect to switch is inside interface of ASA 5505. Only host in the same vlan with inside interface of firewall can ping it, but I need all vlans can.

How would I config this?

9 Replies 9

Francesco Molino
VIP Alumni
VIP Alumni
Hi

Did you configure any layer 3 interface on this switch? If yes, normally all vlans should be able to communicate each others.
If the goal is to keep layer 2 only on the switch and layer 3 on the firewall then you need to create subinterfaces on your inside cable with all your vlans and allow traffic between them or configure the same security level and put the command same-security-traffic permit inter-interface

Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question