Here, I need to change the V-lan ID remotely as its not possible to do this change manually on Hardware, If I use the above commands then is it possible that I lost the connectivity while changing V-lan ID. Pl confirm. Thanks
If you are doing this remotely are you coming in through the outside interface or are you doing this from a dial in internal connection. If outside I recommend you write out the commands in a text file and then ftp or tftp it to the box.
You would then continue on to do something similar to these commands.
!-----Begin TEXT configuration---
no vlan 2
no ip address
no interface ethernet 0/0.2
interface Ethernet 0/0.x !***replace x with new vlan id
vlan x !***replace x with new vlan id
ip address x.x.x.x x.x.x.x !***replace with appropriate IP address
!-----END TEXT configuraiton----
I took some assumptions that your existing configuration is using a subinterface. The other option to do it quick and dirty. This would entail telnetting to the device and just typing in vlan x under the outside interface as long as there is an existing sub interface. I haven't actually tried to do this quick and dirty it should work though. If its on the physical interface I'm not sure the command off the top of my head to change the vlan.
Thanks for your response. First I would try to do this here then move to Production as I can't take any risk without knowing the output. Another question for you: By default V-lan is assigned to Outside Interface, if I change the V-lan ID of outside ID then is it right step to do as scruity concerned and for enhacements or same functionality will remain whether the V-lan ID be set by defauly or manually assigned. Thanks.
If your worried about the security concerns by haveing it a vlan vs the physical interface I really don't think there is much of one unless you have multiple interfaces setup on the outside physical interface. If its only that that one vlan is on that interface there is not a concern.
FYI. It's much easier to help people when the snippit of your config is refereced even when its been sanitised.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...