Cisco ASA 5505 User Manual

Page 300

Advertising
background image

8-8

Cisco ASA 5500 Series Configuration Guide using the CLI

Chapter 8 Completing Interface Configuration (Routed Mode)

Completing Interface Configuration in Routed Mode

Example

The following example configures parameters for VLAN 101:

hostname(config)# interface vlan 101

hostname(config-if)# nameif inside

hostname(config-if)# security-level 100

hostname(config-if)# ip address 10.1.1.1 255.255.255.0

The following example configures parameters in multiple context mode for the context configuration.
The interface ID is a mapped name.

hostname/contextA(config)# interface int1

ip address

ip_address [mask] [standby

ip_address]

Example:

hostname(config-if)# ip address 10.1.1.1

255.255.255.0 standby 10.1.1.2

Sets the IP address manually.

Note

For use with failover, you must set the IP address and
standby address manually; DHCP and PPPoE are not
supported.

The ip_address and mask arguments set the interface IP address
and subnet mask.

The standby ip_address argument is used for failover. See the

“Configuring Active/Standby Failover” section on page 62-7

or

the

“Configuring Active/Active Failover” section on page 63-8

for more information.

ip address dhcp

[setroute]

Example:

hostname(config-if)# ip address dhcp

Obtains an IP address from a DHCP server.

The setroute keyword lets the ASA use the default route supplied
by the DHCP server.

Reenter this command to reset the DHCP lease and request a new
lease.

If you do not enable the interface using the no shutdown
command before you enter the ip address dhcp command, some
DHCP requests might not be sent.

To obtain an IP address from a PPPoE server, see

Chapter 72, “Configuring the PPPoE Client.”

PPPoE is not supported in multiple context mode.

Step 4

security-level

number

Example:

hostname(config-if)# security-level 50

Sets the security level, where number is an integer between 0
(lowest) and 100 (highest). See the

“Security Levels” section on

page 8-1

.

Step 5

(Optional)

management-only

Example:

hostname(config-if)# management-only

Sets an interface to management-only mode so that it does not
pass through traffic.

By default, Management interfaces are configured as
management-only. To disable this setting, enter the no
management-only command.

(ASA 5512-X through ASA 5555-X) You cannot disable
management-only on the Management 0/0 interface.

The management-only command is not supported for a
redundant interface.

Command

Purpose

Advertising
This manual is related to the following products:

ASA 5585-X, ASA 5555-X, ASA 5545-X, ASA 5525-X, ASA 5515-X, ASA 5512-X, ASA 5580, ASA 5550, ASA 5540, ASA 5520, ASA 5510, ASA 5500 Series

Popular Brands
Popular manuals