Cisco Adaptive Security Appliance Software Version 8.3(1)4 Device Manager Version 6.3(1)
The command wouldn't succed since the interface does not have a "nameif" (as suggested by cisco.com). If I do set a "nameif" then the redundant interface will pass untagged packets.
The command is "crypto isakmp enable interface-name"
It would be: crypto isakmp enable Redundant1.251 but
Here is my run conf:
interface GigabitEthernet0/0 description Switch_#1 duplex full no nameif no security-level no ip address ! interface GigabitEthernet0/1 description *** not used *** duplex full shutdown no nameif no security-level no ip address ! interface GigabitEthernet0/2 description Switch_#2 duplex full no nameif no security-level no ip address ! interface GigabitEthernet0/3 description *** not used *** duplex full shutdown no nameif no security-level no ip address
interface Management0/0 description mgt-vlan nameif inside security-level 100 ip address 172.19.24.66 255.255.254.0 management-only ! interface Redundant1 description Switch_#1_#2 member-interface GigabitEthernet0/0 member-interface GigabitEthernet0/2 no nameif no security-level no ip address ! interface Redundant1.251 description vlan251 vlan 251 no nameif security-level 100 ip address "outside_ip" 255.255.255.
Re: how to enable ISAKMP outside redundant interface ?
No, you shouldn't configure the nameif command on the physical interface if you have subinterfaces under that particular physical interface purely because that trunk interface would not be tagged, hence it is not recommended to configure any interface settings under the physical trunk interface.
I'm working on a project that includes basic router configurations. I configurated everything including: line console 0, line vty 0 15 and secret passwords. There are 3 routers in the network and every LAN is going t...
Desire to create Terminal Server ("TS" in this document) out of 2811 Cisco Router with HWIC-16A card (with Octal cables)
Desire to use SSH over Telnet
TS is ip'ed, SSH access configured (to the TS)
Python based Script to BULK Import/Delete devices using Cisco Prime API
Check my Repo on GitHub for all the details ( see below link )