FWSM Vlan-Group

Unanswered Question
May 30th, 2007

I have defined a firewall vlan-group 50 This group contains vlan's 301,400,500,600,601,603,604

I wanted to add vlan 602 and additional vlans but I receive the following message:

"Group 50 is tied to module 7 which has svi 3 already. No more than one svi is allowed, command rejected."

I thought I could just add the vlan by running this command:

"Firewall vlan-group 50 602"

vlans 602 is active on the core and in FWSM. I also tried additional vlans and the same result. Any ideas?

Thanks,

Alex

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
jasonrandolph Wed, 05/30/2007 - 12:43

Sounds like you already have a layer3 interface mapped to the VLAN.

Do you have an interface VLAN 602 on the switch?

alexjvolpe Wed, 05/30/2007 - 17:15

Hello,

Thanks for the reply. Yes I have vlan 602 defined on the 6500 and it's active. I also have it defined on the FWSM. One counterpart (who had the same issue) said he deleted the vlan from the 6500 (did not have it defined on the fwsm) and then was able to add the vlan to the vlan-group.

Actions

This Discussion