Cisco Security Appliance Command Line Configuration Guide, Version . Configuring Interfaces for the Cisco ASA Adaptive Security Appliance Cisco

•Logical VLAN interfaces—In routed mode, these interfaces ahead traffic among VLAN networks at Layer 3, using the configured defense policy to apply firewall and VPN amenities. In transparent mode, these interfaces forward site visitors between the VLANs on an analogous network at Layer 2, using the configured safeguard policy to use firewall amenities. See the “Maximum Active VLAN Interfaces for Your License” part for additional information in regards to the greatest VLAN interfaces. VLAN interfaces permit you to divide your equipment into separate VLANs, for instance, home, enterprise, and Internet VLANs. You might want to prevent switch ports from communicating with each other if the devices on those switch ports are essentially accessed from other VLANs, you don’t wish to allow intra VLAN access, and also you want to isolate the contraptions from each other in case of infection or other safety breach.

For example, if you have a DMZ that hosts three web servers, which you could isolate the internet servers from each other if you apply the switchport included command to every switch port. The inside and outside networks can both communicate with all three web servers, and vice versa, but the web servers cannot talk with each other. You might want to evade switch ports from communicating with one another if the instruments on those switch ports are primarily accessed from other VLANs, you don’t want to allow intra VLAN access, and you are looking to isolate the gadgets from each other in case of infection or other security breach. For example, if you have a DMZ that hosts three web servers, that you could isolate the web servers from one another if you apply the switchport covered command to each switch port. The inside and outside networks can both speak with all three web servers, and vice versa, however the web servers cannot speak with each other.

See also  Has Mozilla created a two tier add ons system? gHacks Tech News