In my example, you might configure the AP with an IP of 192.168.1.15, a subnet mask of 255.255.255.0, and then the default gateway should be the IP address of the ASA. However, if you don’t have that option, just make sure you turn off DHCP (use the ASA as your DHCP server) and configure the LAN settings to be on the same network as your ASA. Some newer APs have an option to just put a check next to AP Mode and it will do it automatically. Then connect to the management interface of your AP, most likely via a browser while your computer is connected to the AP. In general, you’ll want to disconnect the network cable from the WAN, or outside, port on the AP. The easiest way (though not the only way) to do this is to configure your wireless router to act just as an access point (AP). This covers setting up the ASA, but you still want to be able to use your wireless router to connect all your laptops, printers, Rokus, etc. Use Figure A as a reference for the kind of configuration you may need.Ĭonfigure Your Wireless Router to Act like an Access Point Make sure you add rules for the inside and the outside to permit these, along with any other protocols that might be necessary such as FTP, ICMP, etc. You’ll most likely want to allow HTTP/HTTPS traffic on your ASA. Now to configure PAT and the access rules.Ĭlick Firewall while still under the Configuration tab.įor the original source you can just leave it set at Any (or you can specify the inside network).įor the translated interface put the outside interface. Those 18 steps take care of the first two basic things I spoke about before: configuring your interfaces and setting up a default route. Put a check next to Enable Traffic Between Two Or More Interfaces Which Are Configured With The Same Security Levels and next to Enable Traffic Between Two Or More Hosts Connected To The Same Interface.
This saves you the step of configuring a static route, and it saves you the hassle of having to change the static route every time your IP changes.ġ8. Put a check mark next to the option Obtain Default Route Using DHCP. Many ISPs require you to have a business account to get a static IP, though.ġ6. If you happen to have a fixed IP at home, please use that. This will indicate that you are using the 192.168.1.0/24 network as your inside network.ġ4. By default this is 192.168.1.1, which you can leave it at. Specify the internal address you want to use. There are no passwords configured yet, so just leave that blank.ġ1. (Another option is to click Run Startup Wizard and do this entire configuration in the wizard.)ĥ. Open a browser on your computer and go to 192.168.1.1, which is the default address for connecting to the ASA.Ĥ. Ports 6 and 7 are Power over Ethernet (PoE) ports I recommend reserving those ports for any devices that can use PoE.ģ. Connect your computer to one of the other ports on the ASA, which should be on the inside network by default. Connect the network cable from the modem to port 0 (default outside port) on the ASA.Ģ. Initial Setup and Configuration of Interfacesġ.
#Configuring cisco asa 5505 download
You need access rules that open ports so your devices can browse web pages, download from FTP sites, etc. This is what allows you to only have one IP address from your ISP, but you can have several devices connected on your internal network in a many-to-one configuration. You need to configure Port Address Translation (PAT). You need a default route that tells your devices where to go. You should configure the inside and outside interfaces. Remember there are only four basic things you need to configure to get Internet access.
The firewall setup can seem a little daunting, especially because you will most likely lose your Internet access while you’re doing it. Here we’ll go over what you need to do at a high level, which should work with any wireless router. This piece focuses on common things you might encounter at home like not having a static IP from your ISP or utilizing your current wireless router. This walk-through on setting up a Cisco ASA 5505 firewall with a wireless router focuses on things you might encounter when doing the setup at home.