01-21-2010 01:11 PM - edited 03-04-2019 07:15 AM
I've got a situation where a client has an ASA5510 Pix with a switch behind the internal interface. The switch has only vlan 1, but now wants to create a 2nd vlan on the switch for a new server.
How would I accomplish this? I can't trunk on the interface to the PIX, so how would I get them access to the new vlan.
Solved! Go to Solution.
01-21-2010 01:19 PM
Hi Greg,
You can create a sub-interface on the ASA for each vlan
interface Ethernet0/1.1
vlan 8
nameif int
security-level 100
ip address 172.16.8.1 255.255.255.0
!
interface Ethernet0/1.2
vlan 9
nameif int2
security-level 100
ip address 172.16.9.1 255.255.255.0
HTH
Reza
01-21-2010 01:35 PM
w951duu wrote:
I'll have to remove the ip address on the current interface then create a sub for it as well, no? The client is concerned about down time, but I'm assuming there will be some while I turn on trunking on the switch as well.
Thanks for your help.
Gregory
Yes you can't do this without some downtime for both the ASA and the switch.
Jon
01-21-2010 01:38 PM
01-21-2010 01:19 PM
Hi Greg,
You can create a sub-interface on the ASA for each vlan
interface Ethernet0/1.1
vlan 8
nameif int
security-level 100
ip address 172.16.8.1 255.255.255.0
!
interface Ethernet0/1.2
vlan 9
nameif int2
security-level 100
ip address 172.16.9.1 255.255.255.0
HTH
Reza
01-21-2010 01:32 PM
I'll have to remove the ip address on the current interface then create a sub for it as well, no? The client is concerned about down time, but I'm assuming there will be some while I turn on trunking on the switch as well.
Thanks for your help.
01-21-2010 01:35 PM
w951duu wrote:
I'll have to remove the ip address on the current interface then create a sub for it as well, no? The client is concerned about down time, but I'm assuming there will be some while I turn on trunking on the switch as well.
Thanks for your help.
Gregory
Yes you can't do this without some downtime for both the ASA and the switch.
Jon
01-21-2010 01:40 PM
Thanks Jon
01-21-2010 01:38 PM
Yes, you would need short outage window to do it
HTH
Reza
01-21-2010 01:41 PM
Thank you Reza
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: