Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1037
Views
0
Helpful
1
Replies

Reduntat interface 5505 (no spanning-tree, so I gues protected port should do?)

mile.ljepojevic
Level 1
Level 1

‎06-13-2011 01:16 PM - edited ‎03-11-2019 01:44 PM

Hi,

here is the thing.

I have asa 5505 that should be connected to two core switches on the inside, and two edge sw on the outside.

Cores are interconnected.

Edge sw are inteconnected.

Since ASA 5505 do not support SPT, I guess the only way not to close the loop is to configure protected on all ports.

Did anyone tried that, and what are your thoughts?

Thanks.

Labels:
0 Helpful
1 Reply 1

mile.ljepojevic
Level 1
Level 1

‎06-13-2011 01:52 PM

I need to clarify myself...

If I configure protected on all ASA ports that I will use, it will deny communication between 2 ports in the same VLAN.

So, if there is broadcast packet arrived in interf fa 0/1, it will not be forwarded through fa 0/2 (for example, that two ports are in the same VLAN connected to my core switches).

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card