Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
27041
Views
5
Helpful
17
Replies

ASA 5505 to 5506-X VLANs

n-dominguez
Level 1
Level 1

‎06-21-2016 01:57 PM - edited ‎03-08-2019 06:18 AM

I just purchased an ASA 5506-X to replace our 5505. I, of course, want the 5506 to perform the same functions as the 5505. The 5505 is acting as a "router on a stick" for us for inter-vlan communications. We have 3 interfaces, outside(1 VLAN), inside(8 VLANS), and operations(3 VLANS). I tried to create the VLANs on the 5506 using the "interface VLAN <xxx>" command, but it doesn't exist. Instead, it looks like I'm supposed to use some sort of sub-interface syntax ("interface gigabitethernet 1/1.xxx"), but I'm getting confused now. With the 5505 the VLAN setup was independent of the interface, then you could just allow the VLAN on an interface using the "allowed vlan" command. But now it looks like I have to set it up as a sub interface. Can anybody help with my confusion?

2 people had this problem
Labels:
0 Helpful
17 Replies 17

benford01
Level 1
Level 1
In response to Reza Sharifi

‎06-23-2016 12:10 PM

Maybe have a look into putting it into transparent mode. This will allow you to block on the same network but you would have to make sure they are at either interface. Personally I have never set this up but I have seen it implemented.

0 Helpful

n-dominguez
Level 1
Level 1
In response to Reza Sharifi

‎06-21-2016 02:34 PM

I'm a little more confused. This is from the 5506-X documentation:

"You cannot assign the same VLAN to multiple subinterfaces. You cannot assign a VLAN to the physical interface."

So, is it not possible to have 2 interfaces with the same VLAN allowed on them?

0 Helpful

divanko
Level 1
Level 1
In response to n-dominguez

‎11-07-2017 05:12 AM

The creation of Integrated Bridging and Routing is now available in release 9.7 and higher:

 

https://www.cisco.com/c/en/us/td/docs/security/asa/asa97/release/notes/asarn97.html#id_28545

 

https://www.cisco.com/c/en/us/td/docs/security/asa/quick_start/5506X/5506x-quick-start.html

 

I hope this helps someone looking for the same feature the 5505 had to offer regarding the 5505 built in switch capabilities.

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card