[c-nsp] Secondary IP addresses on ASA

Mon Apr 28 17:03:12 EDT 2008

The workaround I used in the past was connecting a vlan trunk port of a switch to the PIX and then, on a basic license, you can have up to 10 vlans set up as logical interfaces. I might be able to send you an example tomorrow when I get to the office if you're interested

Ziv

________________________________________
From: cisco-nsp-bounces at puck.nether.net [cisco-nsp-bounces at puck.nether.net] On Behalf Of Richard Morrell [variableuk at googlemail.com]
Sent: Monday, April 28, 2008 7:00 PM
To: cisco-nsp at puck.nether.net
Subject: [c-nsp] Secondary IP addresses on ASA

Hi,

We've been investigating using ASA as a firewall in our network.  One
of the issues with it, is that it does not appear to be able to handle
secondary IP addresses.   Here is the relevant Cisco article regarding
the PIX which I believe applies to the ASA:

http://www.cisco.com/warp/public/110/19b.html

and here is the workaround that some people appear to be using:

http://www.velocityreviews.com/forums/t153418-secondary-ip-address-on-pix-ethernet-interface.html

Could someone from Cisco comment on if there are any plans to improve
this in the future?

Alternatively, are there people out there using the workaround?  Have
you seen any issues with it?
(don't mind replies off-list for this one if you'd prefer)

Cheers,

--
Rich Morrell
variableuk at gmail.com
_______________________________________________
cisco-nsp mailing list  cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/

************************************************************************************
This footnote confirms that this email message has been scanned by
PineApp Mail-SeCure for the presence of malicious code, vandals & computer viruses.
************************************************************************************