Cisco Systems ASA 5580 Manual De Usuario

If you have only one inside network, then you cannot also have a separate management network. In this 
case, you can manage the ASA from the inside interface instead of the Management 0/0 interface. If you 
remove the ASA-configured name from the Management 0/0 interface, you can still configure the IPS 
IP address for that interface. Because the IPS module is essentially a separate device from the ASA, you 
can configure the IPS management address to be on the same network as the inside interface.

You must remove the ASA-configured name for Management 0/0; if it is configured on the ASA, then 
the IPS address must be on the same network as the ASA, and that excludes any networks already 
configured on other ASA interfaces. If the name is not configured, then the IPS address can be on any 
network, for example, the ASA inside network.

The ASA 5505 does not have a dedicated management interface. You must use an ASA VLAN to access 
an internal management IP address over the backplane. Connect the management PC to one of the 
following ports: Ethernet 0/1 through 0/7, which are assigned to VLAN 1.

(ASA 5510 and higher) Configure basic network settings. See the 

(ASA 5505) Configure management interface settings. See the 

Internet

Management PC

Layer 2

Switch

ASA

Inside

Management 0/0

(IPS only)

Outside

IPS

IPS Default Gateway

Proxy or DNS Server

(for example)

334669

Ports 1 − 7 VLAN 1 

Default ASA IP: 192.168.1.1/IPS IP: 192.168.1.2 

Default IPS Gateway: 192.168.1.1 (ASA)

ASA 5505

Management PC
(IP Address from DHCP)