cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1449
Views
0
Helpful
5
Replies

ASA Firewall Interfaces Issues (FIREPOWER2100)

Hi

in the office where I work, we have an old Firepower 2100 firewall with 16 interfaces,
8 ethernet and 4 fiber. So far we have only used 2, one inside and one outside.
Now I need to add a server on another ethernet port to be able to reach it via ipsec,
but any interface I program and which obviously I put in "no shut" remains in shutdown.
The only interfaces that work are 1, 2 and management. I tried everything and searched online
but found no explanation. It seems absurd to me to have 12 ports and only be able to use 2.

Can anyone help me please?

2 Accepted Solutions

Accepted Solutions

Hi My name is Minhyeok from Korea.

 

It seems to me that it is in the no shut state on the ASA, but in the shutdown state on the firepower chassis manager.

 

You have to connect in fxos and try to port no shutdown.

 

You can access both gui and cli.

 

Find fxos manual

 

Thank you

View solution in original post

balaji.bandi
Hall of Fame
Hall of Fame

try to understand the issue, is the interface physically connected to switch or any other device :

 

here is a quick start guide to managing devices with chassis manager.

 

https://www.cisco.com/c/en/us/td/docs/security/firepower/quick_start/fp2100/firepower-2100-gsg/asa-platform.html

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

5 Replies 5

Hi My name is Minhyeok from Korea.

 

It seems to me that it is in the no shut state on the ASA, but in the shutdown state on the firepower chassis manager.

 

You have to connect in fxos and try to port no shutdown.

 

You can access both gui and cli.

 

Find fxos manual

 

Thank you

Thank you minhyeokcho48844

in fxos manual i've founded my question's answer.

I followed this steps and all ok

 

Step 1

Enter eth-uplink and then fabric a mode.

scope eth-uplink

scope fabric a
Example:


firepower-2110# scope eth-uplink
firepower-2110 /eth-uplink # scope fabric a
firepower-2110 /eth-uplink/fabric #

Step 2

Enable the interface.

enter interface interface_id

enable
Example:


firepower-2110 /eth-uplink/fabric # enter interface Ethernet1/8
firepower-2110 /eth-uplink/fabric/interface # enable
firepower-2110 /eth-uplink/fabric/interface* #

 

 

thank you for Help

balaji.bandi
Hall of Fame
Hall of Fame

try to understand the issue, is the interface physically connected to switch or any other device :

 

here is a quick start guide to managing devices with chassis manager.

 

https://www.cisco.com/c/en/us/td/docs/security/firepower/quick_start/fp2100/firepower-2100-gsg/asa-platform.html

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Thank you for answer balaji.bandi

in fxos manual i've founded this step and all ok now

 

Step 1

Enter eth-uplink and then fabric a mode.

scope eth-uplink

scope fabric a
Example:


firepower-2110# scope eth-uplink
firepower-2110 /eth-uplink # scope fabric a
firepower-2110 /eth-uplink/fabric #

Step 2

Enable the interface.

enter interface interface_id

enable
Example:


firepower-2110 /eth-uplink/fabric # enter interface Ethernet1/8
firepower-2110 /eth-uplink/fabric/interface # enable
firepower-2110 /eth-uplink/fabric/interface* #

 

 

Just wanted to add, that we had to do an extra step, so here is the full fix action:

in FXOS

example:

firepower-2110# scope eth-uplink
firepower-2110 /eth-uplink# scope fabric a
firepower-2110 /eth-uplink/fabric# enter interface Ethernet1/8
firepower-2110 /eth-uplink/fabric/interface# enable
firepower-2110 /eth-uplink/fabric/interface* # exit
firepower-2110 /eth-uplink/fabric# exit
firepower-2110 /eth-uplink# exit
firepower-2110# commit-buffer

Data didn't start passing until after we did the commit-buffer command, hope this helps someone

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: