Home | Site Map | Cisco How ToNet How To | Wireless |Search | Forums | Services | Donations | Careers | About Us | Contact Us|

Two Firewall modes in Cisco ASA

Cisco Router, Firewall, VPN, SDM, ASA and Switch

Two Firewall modes in Cisco ASA

Postby guest » Fri Nov 21, 2014 3:13 pm

Cisco ASA can be configured as routed firewall mode or transparent firewall mode. In routed mode, the ASA is considered to be a router hop in the network. It can use OSPF or RIP (in single context mode). Routed mode supports many interfaces. Each interface is on a different subnet. ASA can be configured as a default gateway for hosts that connect to one of its screened subnets.

In a transparent firewall, ASA is a Layer 2 firewall that acts like a "bump in the wire," or a "stealth firewall," and is not seen as a router hop to connected devices. The ASA connects the same network on its inside and outside interfaces. Because the firewall is not a routed hop, you can easily introduce a transparent firewall into an existing network.

In routed mode, some types of traffic cannot pass through the ASA even if you allow it in an access list. The transparent firewall, however, can allow almost any traffic through using either an extended access list (for IP traffic) or an EtherType access list (for non-IP traffic).
Tablet and Smartphone Setup Guide

Troubleshooting Vista Wireless
Posts: 10191
Joined: Mon Nov 27, 2006 1:10 pm

Return to Cisco

Your Ad Here

Who is online

Users browsing this forum: No registered users and 2 guests