interface vlan

Unanswered Question
May 31st, 2008
User Badges:

I have a PIX 525 and ASA5510 with version 8.0 ... with unrestricted license.

when i try to create interface vlan on any of the device, i have no option to do this.


configure mode commands/options: Ethernet IEEE 802.3 Redundant Redundant Interface <cr>

Anything i need to enable this feature?

Thank you gerard

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
JORGE RODRIGUEZ Sat, 05/31/2008 - 08:46
User Badges:
  • Green, 3000 points or more

To create virtual interface you have to do it with subinterfaces, in other words if you are trying comeup with more logical interfaces you have to use 802.1q trunk to whicever switch you are using and create your L2 vlans in the switch pertaining to each subinterface you create in the firewall and map your switchports accordinly to proper vlans.

Gerard Gacusan Sat, 05/31/2008 - 12:29
User Badges:

I'm trying to check the sample config below with vlan interfaces, looks different than in the documentation. There's no sub-interfaces specified ...

Primary Unit Configuration for Example 16

passwd g00fba11

enable password gen1u$

hostname Buster

asdm image disk0:/asdm.bin

boot system disk0:/image.bin

interface vlan 2

description Primary ISP interface

nameif outside

security-level 0

ip address standby

backup interface vlan 4

no shutdown

interface vlan 1

nameif inside

security-level 100

ip address

no shutdown

interface vlan 3

nameif dmz

security-level 50

ip address

no shutdown

interface vlan 4

description Backup ISP interface

nameif backup-isp

security-level 0

ip address standby

no shutdown

interface vlan 5

description LAN Failover Interface

interface ethernet 0/0

switchport access vlan 2

no shutdown

interface ethernet 0/1

switchport access vlan 4

no shutdown

interface ethernet 0/2

switchport access vlan 1

no shutdown

interface ethernet 0/3

switchport access vlan 3

no shutdown

interface ethernet 0/4

switchport access vlan 5

no shutdown

srue Sun, 06/01/2008 - 11:59
User Badges:
  • Blue, 1500 points or more

That is from an ASA5505 - vlan interfaces on the ASA series is only possible on the 5505. as a previous poster said, you need to use subinterfaces if you want more than the number of physical interfaces.


This Discussion