Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
326
Views
0
Helpful
1
Replies

VPN over vlan interface in Cisco ASA 5516

davidsolermalla
Level 1
Level 1

‎10-09-2015 05:43 AM

Hello, 

I need to permit acces to a local network from Internet so I'm looking for a VPN solution (site to site and  mobile devices with anyconnect). I've seen the ASA 5516 has all the features I need but I've doubts about one thing:

The firewall will be connected to Internet phisically with a Trunk port, so my public IP will be configured on a vlan interface on the firewall. 

Would it be possible to use that vlan interface as the 'outside' iface for VPNs and NAT? Or the outside interface has to be a physical port with its IP?

Thank you

Labels:
0 Helpful
1 Reply 1

Karsten Iwen
VIP
VIP

‎10-09-2015 06:31 AM

Yes that works. You are free to use a physical or a vlan/subinterface for any firewall interface. It's not that uncommon to have this.

0 Helpful
Customers Also Viewed These Support Documents