Vlan mac addresses, Power over ethernet, Monitoring traffic using span – Cisco ASA 5505 User Manual
Page 282: Auto-mdi/mdix feature, Licensing requirements for asa 5505 interfaces, Power over
7-4
Cisco ASA 5500 Series Configuration Guide using the CLI
Chapter 7 Starting Interface Configuration (ASA 5505)
Licensing Requirements for ASA 5505 Interfaces
VLAN MAC Addresses
•
Routed firewall mode—All VLAN interfaces share a MAC address. Ensure that any connected
switches can support this scenario. If the connected switches require unique MAC addresses, you
can manually assign MAC addresses. See the
“Configuring the MAC Address and MTU” section on
•
Transparent firewall mode—Each VLAN has a unique MAC address. You can override the generated
MAC addresses if desired by manually assigning MAC addresses. See the
Address and MTU” section on page 9-12
Power over Ethernet
Ethernet 0/6 and Ethernet 0/7 support PoE for devices such as IP phones or wireless access points. If you
install a non-PoE device or do not connect to these switch ports, the ASA does not supply power to the
switch ports.
If you shut down the switch port using the shutdown command, you disable power to the device. Power
is restored when you enable the port using the no shutdown command. See the
Enabling Switch Ports as Access Ports” section on page 7-7
for more information about shutting down
a switch port.
To view the status of PoE switch ports, including the type of device connected (Cisco or IEEE 802.3af),
use the show power inline command.
Monitoring Traffic Using SPAN
If you want to monitor traffic that enters or exits one or more switch ports, you can enable SPAN, also
known as switch port monitoring. The port for which you enable SPAN (called the destination port)
receives a copy of every packet transmitted or received on a specified source port. The SPAN feature lets
you attach a sniffer to the destination port so you can monitor all traffic; without SPAN, you would have
to attach a sniffer to every port you want to monitor. You can only enable SPAN for one destination port.
See the switchport monitor command in the command reference for more information.
Auto-MDI/MDIX Feature
All ASA 5505 interfaces include the Auto-MDI/MDIX feature. Auto-MDI/MDIX eliminates the need
for crossover cabling by performing an internal crossover when a straight cable is detected during the
auto-negotiation phase. You cannot disable Auto-MDI/MDIX.
Licensing Requirements for ASA 5505 Interfaces