cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
494
Views
0
Helpful
2
Replies

FWSM Vlan-Group

alexjvolpe
Level 1
Level 1

I have defined a firewall vlan-group 50 This group contains vlan's 301,400,500,600,601,603,604

I wanted to add vlan 602 and additional vlans but I receive the following message:

"Group 50 is tied to module 7 which has svi 3 already. No more than one svi is allowed, command rejected."

I thought I could just add the vlan by running this command:

"Firewall vlan-group 50 602"

vlans 602 is active on the core and in FWSM. I also tried additional vlans and the same result. Any ideas?

Thanks,

Alex

2 Replies 2

jasonrandolph
Level 1
Level 1

Sounds like you already have a layer3 interface mapped to the VLAN.

Do you have an interface VLAN 602 on the switch?

Hello,

Thanks for the reply. Yes I have vlan 602 defined on the 6500 and it's active. I also have it defined on the FWSM. One counterpart (who had the same issue) said he deleted the vlan from the 6500 (did not have it defined on the fwsm) and then was able to add the vlan to the vlan-group.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: