Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Enable Internet Traffic in Management Interface

Hello

I am using Management Interface in native VLAN and  I am using IP addresses of the Native VLAN for my networking devices. Now i am not able to access from other VLAN. I want to enable Internet Traffic to my Management interface (Mang 0/0). 

Please let me know how i can do that.

1 ACCEPTED SOLUTION

Accepted Solutions
VIP Purple

Hi

Hi

The actual physical separate  MGMT port is not a full routable port , its a stripped down Layer 3 port with only certain MGMT functions , it cant be used for routing production traffic

Its in its own dedicated interface separate from the control plane of production traffic

This is all it supports

Supported Features on the Ethernet Management Port

The Ethernet management port supports these features:

  • Express Setup (only in switch stacks)

  • Network Assistant

  • Telnet with passwords

  • TFTP

  • Secure Shell (SSH)

  • DHCP-based autoconfiguration

  • SMNP (only the ENTITY-MIB and the IF-MIB)

  • IP ping

  • Interface features
    • Speed—10 Mb/s, 100 Mb/s, and autonegotiation

    • Duplex mode—Full, half, and autonegotiation

    • Loopback detection

  • Cisco Discovery Protocol (CDP)

  • DHCP relay agent

  • IPv4 access control lists (ACLs)

4 REPLIES
VIP Purple

Hi

Hi

The actual physical separate  MGMT port is not a full routable port , its a stripped down Layer 3 port with only certain MGMT functions , it cant be used for routing production traffic

Its in its own dedicated interface separate from the control plane of production traffic

This is all it supports

Supported Features on the Ethernet Management Port

The Ethernet management port supports these features:

  • Express Setup (only in switch stacks)

  • Network Assistant

  • Telnet with passwords

  • TFTP

  • Secure Shell (SSH)

  • DHCP-based autoconfiguration

  • SMNP (only the ENTITY-MIB and the IF-MIB)

  • IP ping

  • Interface features
    • Speed—10 Mb/s, 100 Mb/s, and autonegotiation

    • Duplex mode—Full, half, and autonegotiation

    • Loopback detection

  • Cisco Discovery Protocol (CDP)

  • DHCP relay agent

  • IPv4 access control lists (ACLs)

New Member

So i want to know how can i

So i want to know how can i access my ASA from another vlan/interface. I enable same security level but traffic is not enabled yet.

When i want to access ASA i need to connect the same network then i can.

Please let me know

New Member

Do we have any other option

Do we have any other option to enable routing in MGMT ?

VIP Purple

No sorry its just not

No sorry its just not programmed to take it , the whole point of the MGMT is its segregated from the current routing control plane so if there is an issue and the device goes into a spin say with a loop or CPU hog you can still access the router through a backdoor MGMT port that's physically separate and built for that purpose

If it was able to and the device went haywire that port would also go offline , leaving you without any access , MGMT ports are like another form of console port basically with a few extra options , we have them in use but use them as a parallel network for the purpose of reachability when there's a major issue to a device

5
Views
0
Helpful
4
Replies