Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium


Virtual firewall on Cisco ASA 5510?

Posted on 2007-07-29
Medium Priority
Last Modified: 2013-11-16
How do you setup a private virtual firewall with the Cisco ASA 5510?  We have several servers behind a shared ASA 5510 and want to give remote access to change the firewall just for a certain group of those servers to a client, can this be done?
Question by:ostsupport
LVL 32

Accepted Solution

harbor235 earned 1500 total points
ID: 19591657
You will need to change the mode of the ASA to multiple from single mode.

ASA(config)#mode multiple

Yes this can be done, there is more planning here though, how many interfaces do you have?

What do mean shared ASA? Who has administrative control?

If you do not have extra interfaces for this Firewall context (virtual) setup then we can share
physical interfaces however give each logincal interface a seperate IP. There will be some firewall changes as well as changes to the network devices they connect to (in the case of shared interfaces). This will also require down time if the firewall is not already in "multiple mode".
This can be completed thugh with minimal downtime,



Author Comment

ID: 19605538
so you will have to know how many interfaces before you can finish? We are a dedicated server hosting company and want to be able to offer a virtual dedicated firewall. So new users would be added at diffrent times. If that is not possible without downtime each time then it will not work.

Featured Post

Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

For months I had no idea how to 'discover' the IP address of the other end of a link (without asking someone who knows), and it drove me batty. Think about it. You can't use Cisco Discovery Protocol (CDP) because it's not implemented on the ASAs.…
When speed and performance are vital to revenue, companies must have complete confidence in their cloud environment.
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…
Suggested Courses
Course of the Month14 days, 7 hours left to enroll

580 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question