Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
589
Views
0
Helpful
3
Replies

ASA5515 as Layer2 switch and FW.

Go to solution
c.quintop
Level 1
Level 1

‎02-09-2015 10:19 AM - edited ‎03-07-2019 10:34 PM

Hello,

I have a ASA5515 v9.2, and 3 PCs to get access to the internet. I want to configure the ASA ports as switch ports in the same vlan for each PC connection, and other interface for WAN access to Internet.There is not additional switch. I was looking some information, and in the ASA5505 is possible to do "switch port access " and "interface vlan " command on it, but not in ASA5515. Please any advice?

 

Thanks.

Cesar.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Richard Burts
Hall of Fame
Hall of Fame

‎02-09-2015 11:36 AM

Cesar

 

In the 5505 Cisco puts a small Ethernet switch so the ASA ports are actually switch ports and support switch commands. For other ASAs Cisco does not put a switch into the ASA and so these interfaces do not support switch mode access or interface vlan commands.

 

HTH

 

Rick 

HTH

Rick

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Richard Burts
Hall of Fame
Hall of Fame

‎02-09-2015 11:36 AM

Cesar

 

In the 5505 Cisco puts a small Ethernet switch so the ASA ports are actually switch ports and support switch commands. For other ASAs Cisco does not put a switch into the ASA and so these interfaces do not support switch mode access or interface vlan commands.

 

HTH

 

Rick 

HTH

Rick
0 Helpful

Go to solution
c.quintop
Level 1
Level 1
In response to Richard Burts

‎02-10-2015 03:09 AM

Richard, thanks for you answer. The only way I would have::

- Connect a switch in a FW port to connect the PC clients...or

- Create a IP network for each FW port, connect the PC client on FW each port, enable routing between them, NAT for each network to one public IP, to access internet?

 

My concern is power consumption, I would like to save power avoiding additional switch. It is located in a remote area where the power is an issue.

 

Any thoughts?

 

Cesar.

 

0 Helpful

Go to solution
Richard Burts
Hall of Fame
Hall of Fame
In response to c.quintop

‎02-10-2015 06:27 AM

Cesar

 

You have pretty clearly identified the options. If there is some benefit in having the devices in a common subnet then the option with the switch is best. If it does not matter that each device is in a separate subnet then the option of separate ASA interfaces for each device would allow you to reduce the number of devices that you deploy and would seem to be better if you are concerned about power.

 

HTH

 

Rick

HTH

Rick
0 Helpful
Customers Also Viewed These Support Documents