I have an ASA that houses 11 VLANs, and I am trying to add a 12th.
One of the VLANs is for PCs that have internet only access.
The new VLAN will be similar, but for multifunction printers only.
VLAN 99 is for internet only and works fine, I can ping the gateway of 10.99.3.33 from any PC in that VLAN.
I am creating VLAN 98, modeling it after VLAN 99, and I cannot get a PC in the vlan to ping the gateway of10.98.3.17.
Both switch and ASA show the new VLAN 98 as UP, switchport is UP/UP.
I have deleted and recreated VLAN 98 a few times, but I cannot get a PC VLAN 98 connectivity.
Once it is working on the core switch, I will add it to the trunk to the IDS switches.
VTP is not in use, everything is manual.
Relevant sippets from the ASA and switch are below.
Cisco ASA 5520 Cisco Adaptive Security Appliance Software Version 8.2(3) Device Manager Version 6.3(4)
interface GigabitEthernet0/3.98 description VLAN 98 (3.98) for Printers Only (No DHCP) vlan 98 nameif PrintersOnly security-level 75 ip address 10.98.3.17 255.255.255.240 ! interface GigabitEthernet0/3.99 description VLAN 99 (3.99) for Internet Only (No DHCP) vlan 99 nameif InternetOnly security-level 75 ip address 10.99.3.33 255.255.255.224
mtu PrintersOnly 1500 mtu InternetOnly 1500
icmp permit any PrintersOnly icmp permit any InternetOnly
interface Vlan98 description VLAN 98 (3.98) for Printers Only (No DHCP) no ip address no ip proxy-arp no ip route-cache ! interface Vlan99 description VLAN 99 (3.99) for Internet Only (No DHCP) no ip address no ip proxy-arp no ip route-cache
OK, I was looking at how the switch and the ASA were connected, and vlan 98 was not in the allowed list on the trunking interface. I added vlan 98 to the allowed list, and everything immediately came up. Thanks everyone !
We are pleased to announce availability of Beta software for 16.6.3.
16.6.3 will be the second rebuild on the 16.6 release train targeted
towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are
looking for early feedback from customers befor...
Introduction Featured Speakers Luis Espejel is the Telecommunications
Manager of IENova, an Oil & Gas company. Currently he works with Cisco
IOS® and Cisco IOS XE platforms, and NX to some extent. He has also
worked as a Senior Engineer with the Routing P...
In this session you can learn more about Layer 3 multicast and the best
practices to identify possible threats and take security measures. It
provides an overview of basic multicast, the best security practices for
use of this technology, and recommendati...