Using cisco ASA in L2 Transperent mode.

manish_3191 · ‎05-31-2012

Hello Team,

I am building a data center and we want to add cisco ASA between our CORE switches and METRO switches which has connection to all individual sites.

So The redundant ASA pair will connect to upper CORE switches and downstream METRO switches and

I have seen that in L2 mode we ca use only one inside and outside interfaces. As our primary and secondary ASA will have connection to each CORE-1 and CORE-2 switch so we cant have one Inside interface.

Can soneone guide if it's still possible using L2 transperent mode? if not how can we do it using L3 mode?

I am attaching visio diagram for reference.

Thanks

Manish

Kureli Sankar · ‎06-03-2012

Manish,

In the future if you could copy and paste the image that would be great. Also, .jpg would be best. It may not be possible to save the file, un zip it and then find a visio viewer to see the diagram. Many of us use iPhones and iPads to respond to threads. Pls. watch this video that we put together on how to send us diagrams:

https://supportforums.cisco.com/videos/2990

In your case you can do multiple context transparent firewall.

Pls. see sample config here:

http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/ref_examples.html#wp1010043

-Kureli

manish_3191 · ‎06-03-2012

Thank you Kureli for your suggestions.

I will go through it but it as per our standard i don't think so my management will allow me to use security context. Is it poosible without using security context? Can we simply configure routed ports and configure dynamic routing?

Also for uploading diagrams, I will make a note in future.

Thanks

Manish