?
Solved

Can I trunk a Cisco PIX/ASA 5505 WITH BASE LICENSE?

Posted on 2011-03-23
5
Medium Priority
?
1,045 Views
Last Modified: 2012-05-11
Hi
Can you please tell me if I can trunk an PIX/ASA 5505 BASE?
or I need to have the security plus bundle?

Please advise.
0
Comment
Question by:chenzovicc
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 35

Expert Comment

by:Ernie Beek
ID: 35205214
Not quite:
The basic license allows only 3 active VLANs which you can use as Inside, Outside and DMZ. However, there is a restriction here that many people do not know about: The DMZ VLAN can access ONLY the Outside VLAN but can not access the Inside VLAN. The other two VLANs (Inside and Outside) can access all the other VLANs with no problems.

You'll need a security plus license for that (and have to pay :-~ ):
The Security Plus license, removes all limitations and allows up to 20 active VLANs to be configured. Since there are only 8 physical ports, you can create several vlan subinterfaces on each physical port to segment your network into different security zones (e.g Inside, Outside, DMZ1, DMZ2, Sales, Engineering etc).

Source: http://www.networkstraining.com/cisco-asa-5505-vlans-and-licensing/
0
 

Author Comment

by:chenzovicc
ID: 35208328
This is the scenario I need to accomplish and in reality I do not need the 192.168.1.0 and 172.168.1.0
to talk to each other as long as they have access to the outside world. I will create access-list
so users from the outside will have access to the exchange server on each server.
I know of the limitation of the base license what I do not know is if the base license will allow me
to trunk with my cisco switch 2960.

Please advise.
NetDiagram.jpg
0
 
LVL 35

Accepted Solution

by:
Ernie Beek earned 2000 total points
ID: 35208383
Sorry, can be very fast with my answer: no trunk ports with the base license :-~

I know, I was trying it my self the other day...........
0
 

Author Closing Comment

by:chenzovicc
ID: 35209891
Thanks
0
 
LVL 35

Expert Comment

by:Ernie Beek
ID: 35211422
You're welcome. Sorry it wasn't the answer you were hoping for.
Thx for the points :)
0

Featured Post

Free Backup Tool for VMware and Hyper-V

Restore full virtual machine or individual guest files from 19 common file systems directly from the backup file. Schedule VM backups with PowerShell scripts. Set desired time, lean back and let the script to notify you via email upon completion.  

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

From Cisco ASA version 8.3, the Network Address Translation (NAT) configuration has been completely redesigned and it may be helpful to have the syntax configuration for both at a glance. You may as well want to read official Cisco published AS…
I recently attended Cisco Live! in Las Vegas, a conference that boasted over 28,000 techies in attendance, and a week of hands-on learning hosted by a solid partner with which Concerto goes to market.  Every year, Cisco displays cutting-edge technol…
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…
Suggested Courses

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question