Resumen del contenido incluido en la página 1
QUICK START GUIDE
Cisco ASA 5580
1 Verifying the Package Contents
2 Powering On the ASA
3 Maximizing Throughput
4 Connecting Interface Cables and Verifying Connectivity
5 Launching ASDM
6 Running the Startup Wizard
7 (Optional) Allowing Access to Public Servers Behind the ASA
8 (Optional) Running VPN Wizards
9 (Optional) Running Other Wizards in ASDM
10 Advanced Configuration
Regulatory Compliance and Safety Information
Read the safety warnings in the Regulatory Compliance and Safety Informati
Resumen del contenido incluido en la página 2
Cisco ASA Adaptive Security Appliance Quick Start Guide Cisco ASA Adaptive Security Appliance Product CD Cisco ASA Adaptive Security Appliance Product Card 1 2 34 5 6 7 8 Cisco ASA 5580 SERIES Adaptive Security Appliance Revised: January 30, 2012, 78-20726-01 1 Verifying the Package Contents Verify the contents of the packing box to ensure that you have received all items necessary to install your ASA. 1 2 3 4 5 6 ASA 5580 Chassis 2 Yellow Ethernet Cables 1 2 3 Power Cable (US Sh
Resumen del contenido incluido en la página 3
PS1 PCI-E x4 PCI-X 100 MHz 4 3 2 1 Reserved for Future Use CONSOLE MGMT 0/0 PS2 PS1 PCI-E x4 PCI-E x8 PCI-E x4 PCI-E x8 PCI-E x4 PCI-X 100 MHz 9 8 7 6 5 4 3 2 1 Reserved for Future Use UID CONSOLE MGMT 1 0/0 2 Powering On the ASA Step 1 Attach the power cable to the back of the ASA. If you have redundant power supplies, you must connect both power cables to the back of the chassis. Step 2 Connect the power cable(s) to the electrical outlets. Step 3 Power on the ASA. Step 4 Check the Po
Resumen del contenido incluido en la página 4
3 Maximizing Throughput Refer to the following illustration when planning your network for maximum throughput. Slot 9 (Reserved) Slots 1, 2 (Reserved) PCI-E x4 PCI-E x8 PCI-E x4 PCI-E x8 PCI-E x4 PCI-X 100 MHz 1 9 8 7 6 5 4 3 2 Slots 7, 8 Slots 3, 4, 5, 6, (I/O Bridge 2) Management Ifcs (I/O Bridge 1) Slots 5, 7, 8 (High Capacity Bus, Slots 3, 4, 6 (Normal Capacity Bus, PCI Express x8 non-hot-plug) PCI Express x4 non-hot-plug) • You should use the high-capacity bus slots (5, 7, 8) for 10-Giga
Resumen del contenido incluido en la página 5
4 Connecting Interface Cables and Verifying Connectivity Step 1 Connect to the Management 0/0 interface so that you can use ASDM to manage the ASA.You can connect the PC directly with an Ethernet cable, or connect the PC and the ASA to the same management network. Make sure the PC is configured to obtain an IP address using DHCP. The ASA 5580 has 2 management interfaces (Management 0/0 and Management 0/1); however, only Management 0/0 is configured for use. If you want to use the CLI, con
Resumen del contenido incluido en la página 6
5 Launching ASDM The ASA ships with a default configuration that enables ASDM connectivity to the Management 0/0 interface. Using ASDM, you can use wizards to configure basic and advanced features. ASDM is a graphical user interface that allows you to manage the ASA from any location by using a web browser. See the ASDM release notes on Cisco.com for the requirements to run ASDM. Step 1 On the PC connected to the ASA, launch a web browser. Step 2 In the Address field, enter the following U
Resumen del contenido incluido en la página 7
6 Running the Startup Wizard Run the Startup Wizard to modify the default configuration so that you can customize the security policy to suit your deployment. Using the startup wizard, you can set the following: � Hostname � Static routes � Domain name � DHCP server � Administrative passwords � Network address translation rules � Interfaces � and more... � IP addresses Step 1 If the wizard is not already running, in the main ASDM window, choose Wizards > Startup Wizard. Step 2 Follow the i
Resumen del contenido incluido en la página 8
7 (Optional) Allowing Access to Public Servers Behind the ASA ASA 8.2 and Later The Public Server pane automatically configures the security policy to make an inside server accessible from the Internet. As a business owner, you might have internal network services, such as a web and FTP server, that need to be available to an outside user. You can place these services on a separate network behind the ASA, called a demilitarized zone (DMZ). By placing the public servers on the DMZ, any at
Resumen del contenido incluido en la página 9
8 (Optional) Running VPN Wizards You can configure VPN using the following wizards: � Site-to-Site VPN Wizard—Creates an IPsec site-to-site tunnel between two ASAs. � AnyConnect VPN Wizard—Configures SSL VPN remote access for the Cisco AnyConnect VPN client. AnyConnect provides secure SSL connections to the ASA for remote users with full VPN tunneling to corporate resources. The ASA policy can be configured to download the AnyConnect client to remote users when they initially connect via a
Resumen del contenido incluido en la página 10
Step 1 In the main ASDM window, choose Wizards > VPN Wizards, then choose one of the following: � Site-to-Site VPN Wizard � AnyConnect VPN Wizard � Clientless VPN Wizard � IPsec (IKEv1) Remote Access VPN Wizard Step 2 Follow the wizard instructions. (For information about any wizard field, click Help.) 10
Resumen del contenido incluido en la página 11
9 (Optional) Running Other Wizards in ASDM You can optionally run the following additional wizards in ASDM: � High Availability and Scalability Wizard Configure active/active or active/standby failover, or VPN cluster load balancing. � Unified Communications Wizard Configure a proxy on the ASA for remote access or business-to-business communications. (Special licenses may apply. See the CLI configuration guide for information about ASA licensing.) � Packet Capture Wizard Configure and run
Resumen del contenido incluido en la página 12
Americas Headquarters Asia Pacific Headquarters Europe Headquarters Cisco Systems, Inc. Cisco Systems (USA) Pte. Ltd. Cisco Systems International BV Amsterdam, San Jose, CA Singapore The Netherlands Cisco has more than 200 offices worldwide. Addresses, phone numbers, and fax numbers are listed on the Cisco Website at www.cisco.com/go/offices. Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cis