Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
604
Views
5
Helpful
2
Replies

VLANs to ACE module

danger_mousie
Level 1
Level 1

‎10-15-2007 04:32 AM

I have a mgt VLAN going between the Sup in 6500 and the ACE.

ON 6500:

vlan 16,500

svclc module 1 vlan-group 500

svclc vlan-group 500 500-550

interface Vlan500

description Mgt VLAN

ip address 1.1.1.3 255.255.255.240

ON ACE

class-map type management match-any Mgt_Class

! Management VLAN sources - VLAN 500

2 match protocol telnet source-address 2.2.2.0 255.255.255.240

3 match protocol icmp source-address 2.2.2.0 255.255.255.240

policy-map type management first-match Mgt_Policy

class Mgt_Class

permit

interface vlan 500

desc Mgt VLAN

ip address 1.1.1.5 255.255.255.240

service-policy input Mgt_Policy

no shutdown

I am trying to add my first vip to a context and am setting up the VLAN..

ON 6500

6509-1(config)#int vlan 511

6509-1(config-if)#ip address 3.3.3.1 255.255.255.252

6509-1(config-if)#desc VLAN for VIP-A

6509-1(config-if)#no shut

Forcing SVI 511 to stay shutdown (SVI 500 tied to line card in slot 1.)

I found this online:

Once the VLANs are assigned to the module, only one interface VLAN (Layer 3 interface) can be configured for one of the VLANs assigned to the module. When an attempt is made to assign a Layer 3 interface to more than one of the VLANs, the above error msg is given.

I want to create VLAN 511 and give it an IP address in the subnet that my VIP is in and then redistribute connected. How can this be done to get routing to the VIP network established.

Labels:
0 Helpful
2 Replies 2

diro
Level 1
Level 1

‎10-15-2007 05:05 AM

ON 6500:

vlan 16,500

svclc module 1 vlan-group 500

svclc vlan-group 500 500-550

svclc multiple-vlan-interfaces

To enable multiple switched virtual interfaces (SVIs) to be configured for a SAMI, use the svclc multiple-vlan-interfaces command in global configuration mode. To remove this configuration, use the no form of the command.

danger_mousie
Level 1
Level 1
In response to diro

‎10-15-2007 06:03 AM

Thanks, is this method best practice? Or should I route everything through the one VLAN. It gave a warning about traffic bypassing the ACE. How can I make sure this doesn't happen? In what scenario does this occur?

0 Helpful
Customers Also Viewed These Support Documents