Hot Downloads

Welcome, Guest
Username: Password: Remember me
  • Page:
  • 1

TOPIC: The famous ASA5505

The famous ASA5505 9 years 1 week ago #30622

  • ZiPPy
  • ZiPPy's Avatar Topic Author
  • Offline
  • Expert Member
  • Expert Member
  • Posts: 500
  • Thank you received: 0
I see many posts on the ASA5505, many answered and a few unanswered.

I'm curious to know how people set them up with dynamic IP's? I'm pretty sure not everybody is lucky enough to have a static IP address. Are people just inputting there current ISP given dynamic IP and changing it on the firewall as the ISP generates a new one? If so, that means that the entire network will be down for that "x" amount of time until you change it.

On a PIX firewall, you can change the IP accordingly but of course you will experience downtime. I know many people use the ASA5505 as there primary firewall, so I'd be curious to know how they handle it.

Using the Fortinet Fortigate firewall product line, you are required to enter the IP/Netmask which only the ISP can provide. Is this valid? I would think you could just figure out the netmask on your own. This is also dealing with the notion of dynamic IPs.

This is a deciding factor for both my friend and I purchasing ASA firewalls. I hope to have a static IP one day, a block of 8 would be nice, but until then I have to deal/manipulate/run-around/make use of dynamic IP's.


Cheers,

ZiPPy

Please Log in to join the conversation.

ZiPPy

Re: The famous ASA5505 9 years 6 days ago #30648

You can have the ASA create the default route based on DHCP, so it should change with the dynamic IP.

Please Log in to join the conversation.

Re: The famous ASA5505 9 years 4 days ago #30679

Your config in the ASA would look something like this....

interface Vlan2
nameif outside
security-level 0
ip address dhcp setroute (<---What your looking for)

Then the Interface
interface Ethernet0/0
switchport access vlan 2

Please Log in to join the conversation.

Re: The famous ASA5505 8 years 10 months ago #31446

also, when referring to an interface IP (eg vlan2), use the keyword 'interface' instead of an actual IP address.

Please Log in to join the conversation.

  • Page:
  • 1
Time to create page: 0.159 seconds

CCENT/CCNA

Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V

Linux

  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup