04-27-2012 01:39 PM - edited 03-07-2019 06:23 AM
Hi.
Let say I have a router with an SVI and 4 Vlans.If I connect 4 cables to access ports on a switch with the corresponding Vlans , would It be possible to communicate with the other Vlans through the SVI ?
Solved! Go to Solution.
04-27-2012 11:56 PM
if you want to connect a switch to ASA you need trunking and trunk mode is available only with security plus license, so you have 2 solutions:
1- upgrade to sec license and use trunking feature
2- connect 4 cable of switch to ASA and assign them to different VLAN, this is not good solution but solve you problem. (switch ports should be access port and you can assign 4 port of ASA to VLANS with different security level)
04-28-2012 12:53 AM
Hi ,
It's not posible to do intervlan routing with ASA 5505 with Base License for 4 vlans.
In routed mode, you can configure up to three active VLANs with the Base license.
With the Base license, the third VLAN can only be configured to initiate traffic to one other VLAN. So in other words the 3rd vlan , could only communicated with only one vlan ( because of "no forward interface vlan #")
So your ASA will do intervlan routing for 2 VLANS, and the 3rd will communicate only with one of the other vlans.
Dan
04-27-2012 08:56 PM
You metioned that you have a router with SVI and a Switch with 4 access port with different VLANs, so it is possible to use router for communication between these VLANs, but there is no need to SVI, you should connect switch to one port of router and create 4 sub interface below this interface, also you should put switch port to trunk mode with 802.1Q trunk encapsulation, each subinterface is used as one gateway for each VLAN and router can connect these VLANs
04-27-2012 09:49 PM
Hi.
The problem Is It's an ASA 5505 with a base license so I can't configure trunk ports on It.
04-27-2012 10:42 PM
Do you want to use 4 of ASA's switch port or you want connect a switch to ASA and want to config one port on ASA as trunk?
04-27-2012 11:16 PM
I want to connect a switch to ASA but I can't configure one port as trunk with the base license.
04-27-2012 11:56 PM
if you want to connect a switch to ASA you need trunking and trunk mode is available only with security plus license, so you have 2 solutions:
1- upgrade to sec license and use trunking feature
2- connect 4 cable of switch to ASA and assign them to different VLAN, this is not good solution but solve you problem. (switch ports should be access port and you can assign 4 port of ASA to VLANS with different security level)
04-28-2012 04:11 PM
Thanks for the Info !
04-28-2012 12:53 AM
Hi ,
It's not posible to do intervlan routing with ASA 5505 with Base License for 4 vlans.
In routed mode, you can configure up to three active VLANs with the Base license.
With the Base license, the third VLAN can only be configured to initiate traffic to one other VLAN. So in other words the 3rd vlan , could only communicated with only one vlan ( because of "no forward interface vlan #")
So your ASA will do intervlan routing for 2 VLANS, and the 3rd will communicate only with one of the other vlans.
Dan
04-28-2012 04:11 PM
Thank you !
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide