Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
802
Views
0
Helpful
3
Replies

Setup Transparent ASA

Go to solution
lcaruso
Level 6
Level 6

‎01-22-2013 01:12 PM - edited ‎03-11-2019 05:50 PM

Hi,

I'm trying to get started on setting up my first Transparent ASA.

I understand an ASA in Transparent Mode can now have an ip address with Bridge Groups or some such mechanism. I'm looking for examples of how to set that up and other information below.

Is the ip address associated with the device or is it interface specific? Will I be able to SSH with that ip address setup?

Can I use ASDM if the Transparent ASA has an ip address?

This 5512X has an IPS. Anyone who has setup an IPS on this platform knows it has some very particular requirments in order to communicate with the outside world. I need examples of how to do that with a Transparent ASA.

How is NAT setup differently (if at all) on a Transparent ASA?

Are ACLs done any differently?

Any help is apprciated. Examples or links are great.

Thanks.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Julio Carvajal
VIP Alumni
VIP Alumni

‎01-22-2013 01:31 PM

You willl now use Bridge-Groups...

It's especific to a bridge group ( The Ip address) and yes you will be able to ssh, telnet,ASDM to that Ip.

NAT and ACL setup is the same thing.

Here is a quick example I did

interface bvI 10
ip address 192.168.12.1 255.255.255.0
no shut

interface gigabitEthernet 0
nameif outside
no shut
interface gigabitEthernet 0
bridge-group 10

interface gigabitEthernet 1
nameif inside
no shut
bridge-group 10

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Julio Carvajal
VIP Alumni
VIP Alumni

‎01-22-2013 01:31 PM

You willl now use Bridge-Groups...

It's especific to a bridge group ( The Ip address) and yes you will be able to ssh, telnet,ASDM to that Ip.

NAT and ACL setup is the same thing.

Here is a quick example I did

interface bvI 10
ip address 192.168.12.1 255.255.255.0
no shut

interface gigabitEthernet 0
nameif outside
no shut
interface gigabitEthernet 0
bridge-group 10

interface gigabitEthernet 1
nameif inside
no shut
bridge-group 10

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
0 Helpful

Go to solution
lcaruso
Level 6
Level 6
In response to Julio Carvajal

‎01-22-2013 01:56 PM

Works.

I'm posting through the transparent asa now.

Thanks for getting me started.

0 Helpful

Go to solution
Julio Carvajal
VIP Alumni
VIP Alumni
In response to lcaruso

‎01-22-2013 02:03 PM

Hello Lcaruso,

That is amazing

Great to know that I could help,

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card