can I use ports on an ASA5506 as switchports like I was able to on ASA5505
Is is possible to use ports on an ASA5506 as switchports to plug a PC in for example. I am replacing a Cisco 5505 at an office with this 5506, and I'm having problems using it in the same fashion as an ASA5505. I have the ASA5506 connected to my cable modem, got my VPN's up, but am having issues using a port as a switchport for a PC. Any suggestions?
No.
You can subinterface the Vlans as Pedrag suggests but that creates some security issues.
For my 5506, I purchased a $40 Cisco 8 port Gigabit switch from Amazon. My recommendation is to go this route and one switch per Vlan per 5506 port. I really prefer the physical separation.
Or you can get a switch that permits configuration of multiple Vlans and permit which Vlans terminate to which 5506 interface.
You can subinterface the Vlans as Pedrag suggests but that creates some security issues.
For my 5506, I purchased a $40 Cisco 8 port Gigabit switch from Amazon. My recommendation is to go this route and one switch per Vlan per 5506 port. I really prefer the physical separation.
Or you can get a switch that permits configuration of multiple Vlans and permit which Vlans terminate to which 5506 interface.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Thanks, Pete. That's great news. It was silly for an entry level firewall to have all routed interfaces.
Hi Jan,
Agreed! It never really made sense, Cisco were reluctant to do anything about it either, it's taken two years of customers moaning :)
Pete
Agreed! It never really made sense, Cisco were reluctant to do anything about it either, it's taken two years of customers moaning :)
Pete
Great answer.
interface gigabitethernet 0/0.100
vlan 100
Cisco - VLAN Interfaces