Cisco ASA 5505 User Manual

Page 263

Advertising
background image

6-21

Cisco ASA 5500 Series Configuration Guide using the CLI

Chapter 6 Starting Interface Configuration (ASA 5510 and Higher)

Starting Interface Configuration (ASA 5510 and Higher)

interface GigabitEthernet0/4

channel-group 2 mode active

no shutdown

!

interface GigabitEthernet0/5

channel-group 2 mode active

no shutdown

!

interface Management0/0

channel-group 3 mode active

no shutdown

!

interface Management0/1

channel-group 3 mode active

no shutdown

!

interface port-channel 1

interface port-channel 2

interface port-channel 3

Step 6

Change the interface allocation per context to use the new EtherChannel or redundant interfaces. See the

“Configuring a Security Context” section on page 5-18

.

For example, to take advantage of existing cabling, you would continue to use the formerly in-use
interfaces in their old roles as part of the inside and outside redundant interfaces:

context customerA

allocate-interface port-channel1 int1

allocate-interface port-channel2 int2

allocate-interface port-channel3 mgmt

context customerB

allocate-interface port-channel1

allocate-interface port-channel2

allocate-interface port-channel3

Note

You might want to take this opportunity to assign mapped names to interfaces if you have not
done so already. For example, the configuration for customerA does not need to be altered at all;
it just needs to be reapplied on the ASA. The customerB configuration, however, needs to have
all of the interface IDs changed; if you assign mapped names for customerB, you still have to
change the interface IDs in the context configuration, but mapped names might help future
interface changes.

Step 7

For contexts that do not use mapped names, change the context configuration to use the new
EtherChannel or redundant interface ID. (Contexts that use mapped interface names do not require any
alteration.)

For example:

CustomerB Context

interface port-channel1

nameif outside

security-level 0

ip address 10.20.15.5 255.255.255.0

!

interface port-channel2

nameif inside

security-level 100

ip address 192.168.6.78 255.255.255.0

!

Advertising
This manual is related to the following products:

ASA 5585-X, ASA 5555-X, ASA 5545-X, ASA 5525-X, ASA 5515-X, ASA 5512-X, ASA 5580, ASA 5550, ASA 5540, ASA 5520, ASA 5510, ASA 5500 Series

Popular Brands
Popular manuals