Cisco Cisco ASA 5515-X Adaptive Security Appliance - No Payload Encryption 설치 가이드

If you have only one inside network, then you cannot also have a separate management network. In 
this case, you can manage the ASA from the inside interface instead of the Management 0/0 interface. 
If you remove the ASA-configured name from the Management 0/0 interface, you can still configure 
the IPS IP address for that interface. Because the IPS module is essentially a separate device from the 
ASA, you can configure the IPS management address to be on the same network as the inside interface.

You must remove the ASA-configured name for Management 0/0; if it is configured on the 
ASA, then the IPS address must be on the same network as the ASA, and that excludes any 
networks already configured on other ASA interfaces. If the name is not configured, then the 
IPS address can be on any network, for example, the ASA inside network.

The ASA 5505 does not have a dedicated management interface. You must use an ASA VLAN to access 
an internal management IP address over the backplane. Connect the management PC to one of the 
following ports: Ethernet 0/1 through 0/7, which are assigned to VLAN 1.

Internet

Management PC

Layer 2

Switch

ASA

Inside

Management 0/0

(IPS only)

Outside

IPS

IPS Default Gateway

Proxy or DNS Server

(for example)

334669

Ports 1 − 7 VLAN 1 

Default ASA IP: 192.168.1.1/IPS IP: 192.168.1.2 

Default IPS Gateway: 192.168.1.1 (ASA)

ASA 5505

Management PC
(IP Address from DHCP)