Hello All, 

I am trying to configure an UCS-E Box with ASAv installed on it at VMWare side. If you see the Diagram it will be more easier considering what I am thinking to execute. 

ISR router model is UCS-E140S-M2/K9 with in built switch installed on it. My plan is at the Switch Module users will connect with gateway whose L3 is configured as an Inside Interface of ASA ( installed at  UCS_E Vmware ). Having said that traffic from switch module for a User machine connected at switch module need to go to ASA Inside Interface and through ASA Outside Interface Traffic will go to Internet or Other Side of the VPN. 

Used G0/0/0 as WAN connection of the router and then used VNIC0 / UCSE1/0/0 treating as the WAN side of the ASA.   

interface Loopback10

 ip address 10.1.1.1 255.255.255.0

interface ucse1/0/0

 ip unnumbered Loopback10

 negotiation auto

 switchport mode trunk

 no mop enabled

 no mop sysid

and then used VNIC1 / UCSE1/0/1 with BDI500 treating as the connection of ESXI VNIC 1 which is eventually the Inside Interface of ASA. 

!

interface BDI500

 ip address 192.168.1.1 255.255.255.0

interface ucse1/0/1

 no ip address

 no negotiation auto

 switchport mode trunk

 no mop enabled

 no mop sysid

 spanning-tree cost 10

 service instance 500 ethernet

  encapsulation dot1q 500

  rewrite egress tag push dot1q 500

  bridge-domain 500

But when I try to use one switch port while assigning an ip of 192.168.1.0/24 with GW 1.1 at Laptop I am not able to Ping to 192.168.1.1 even though BDI Interface shows UP from router. 

interface GigabitEthernet0/1/0

 switchport access vlan 500

 switchport mode access

Router#sh arp

Protocol  Address          Age (min)  Hardware Addr   Type   Interface

Internet  10.1.1.2               13   a0e0.afe0.8ce5  ARPA   ucse1/0/0

Internet  100.100.100.1           -   00aa.6ef6.2760  ARPA   GigabitEthernet0/0/0

Internet  192.168.1.1             -   00aa.6ef6.27e3  ARPA   BDI500

Any thoughts what configuration I am doing wrong ?