3-3
ASA 5505 Getting Started Guide
78-18003-02
Chapter 3 Planning a VLAN Configuration
Understanding VLANs on the ASA 5505
You can create VLANs and allocate ports in the following ways:
Maximum Number and Types of VLANs
Your license determines how many active VLANs that you can have on the ASA
5505.
Although the ASA 5505 comes preconfigured with two VLANs, you can create a
as many as three VLANs, depending on your license. For example, you could
create VLANs for the Inside, Outside, and DMZ network segments. Each access
switch port is allocated to a single VLAN. Trunk switch ports may be allocated to
multiple VLANs.
With the Base platform, communication between the DMZ VLAN and the Inside
VLAN is restricted: the Inside VLAN is permitted to send traffic to the DMZ
VLAN, but the DMZ VLAN is not permitted to send traffic to the Inside VLAN.
The Security Plus license removes this limitation, thus enabling a full DMZ
configuration.
Table 3-1 lists the number and types of connections supported by each license.
Method of Configuring VLANs For more information, see...
ASDM Startup Wizard
Chapter 5, “Configuring the Adaptive
Security Appliance”
ASDM GUI configuration
ASDM online help
Command-line interface
Cisco Security Appliance Command
Reference
To Next Page
Loading...
