Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

FWSM Vlan-Group

I have defined a firewall vlan-group 50 This group contains vlan's 301,400,500,600,601,603,604

I wanted to add vlan 602 and additional vlans but I receive the following message:

"Group 50 is tied to module 7 which has svi 3 already. No more than one svi is allowed, command rejected."

I thought I could just add the vlan by running this command:

"Firewall vlan-group 50 602"

vlans 602 is active on the core and in FWSM. I also tried additional vlans and the same result. Any ideas?

Thanks,

Alex

2 REPLIES
New Member

Re: FWSM Vlan-Group

Sounds like you already have a layer3 interface mapped to the VLAN.

Do you have an interface VLAN 602 on the switch?

New Member

Re: FWSM Vlan-Group

Hello,

Thanks for the reply. Yes I have vlan 602 defined on the 6500 and it's active. I also have it defined on the FWSM. One counterpart (who had the same issue) said he deleted the vlan from the 6500 (did not have it defined on the fwsm) and then was able to add the vlan to the vlan-group.

335
Views
0
Helpful
2
Replies