STEP-BY-STEP CONFIGURATION GUIDE FOR THE CISCO ASA 5505 FIREWALL

The Cisco ASA 5505 Firewall is the smallest indication in the brand new 5500 Cisco array of hardware appliances. Although this indication is befitting for small businesses, bend offices or even home use, the firewall confidence capabilities have been the same as the greatest models (5510, 5520, 5540 etc). The Adaptive Security record of the ASA firewalls offers plain and arguable firewall protection, modernized focus wakeful security, rejection of make use of conflict insurance and many more. Moreover, the opening of the ASA 5505 apparatus supports 150Mbps firewall throughput and 4000 firewall connectors per second, which is some-more than sufficient for small networks.

In this essay I will insist the simple pattern stairs indispensable to setup a Cisco 5505 ASA firewall for joining a small network to the Internet. We pretence which the ISP has reserved us a immobile open IP residence (e.g 200.200.200.1 as an example) and which the inner network operation is 192.168.1.0/24. We will make make use of of Port Address Translation (PAT) to interpret the inner IP addresses to the open residence of the outward interface. The disproportion of the 5505 indication from the bigger ASA models is which it has an 8-port 10/100 switch which acts as Layer 2 only. That is, you can not configure the earthy ports as Layer 3 ports, rsther than you have to emanate interface Vlans and allot the Layer 2 interfaces in each VLAN. By default, interface Ethernet0/0 is reserved to VLAN 2 and it’s the outward interface (the one which connects to the Internet), and the alternative 7 interfaces (Ethernet0/1 to 0/7) have been reserved by default to VLAN 1 and have been used for joining to the inner network. Let’s see the simple pattern setup of the many critical stairs which you need to configure.

Step1: Configure the inner interface vlan
——————————————————
ASA5505(config)# interface Vlan 1
ASA5505(config-if)# nameif inside
ASA5505(config-if)# security-level 100
ASA5505(config-if)# ip residence 192.168.1.1 255.255.255.0
ASA5505(config-if)# no shut

Step 2: Configure the outmost interface vlan (connected to Internet)
————————————————————————————-
ASA5505(config)# interface Vlan 2
ASA5505(config-if)# nameif outside
ASA5505(config-if)# security-level 0
ASA5505(config-if)# ip residence 200.200.200.1 255.255.255.0
ASA5505(config-if)# no shut

Step 3: Assign Ethernet 0/0 to Vlan 2
————————————————-
ASA5505(config)# interface Ethernet0/0
ASA5505(config-if)# switchport entrance vlan 2
ASA5505(config-if)# no shut

Step 4: Enable the rest interfaces with no shut
————————————————–
ASA5505(config)# interface Ethernet0/1
ASA5505(config-if)# no shut
Do the same for Ethernet0/1 to 0/7.

Step 5: Configure PAT on the outward interface
—————————————————–
ASA5505(config)# tellurian (outside) 1 interface
ASA5505(config)# nat (inside) 1 0.0.0.0 0.0.0.0

Step 6: Configure default track towards the ISP (assume default gateway is 200.200.200.2)
—————————————————————————————
ASA5505(config)# track outward 0.0.0.0 0.0.0.0 200.200.200.2 1

The on top of stairs have been the positively required stairs you need to configure for creation the apparatus operational. Of march there have been many some-more pattern sum which you need to exercise in sequence to raise the confidence and functionality of your appliance, such as Access Control Lists, Static NAT, DHCP, DMZ zones, authentication etc.
Download the most appropriate pattern educational for any Cisco ASA 5500 Firewall indication Here.