Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
382
Views
0
Helpful
1
Replies

ASA-5540 - trunked interface issue

mitchellken
Level 1
Level 1

‎11-16-2012 01:33 PM - edited ‎03-11-2019 05:24 PM

Hello everyone. Have a HA pair of 5540's. Currently single network on all interfaces. Wanting to trunk our DMZ interface and create sub-interfaces. I am able to create the sub-interfaces and make them work no problem. I want to move our current DMZ config to one of the sub-interfaces to avoid having traffic on the "now" untagged interface. Removed the interface name and IP off the native int and applied those to a sub-int. Sub int works but my existing dmz rules are gone, nat rules are gone for that int as well. How can I get those moved to the sub-int? I named the sub-int exactly the same and gave it the same IP.

Thanks

Labels:
0 Helpful
1 Reply 1

lcambron
Level 3
Level 3

‎11-20-2012 07:25 PM

Hello Ken,

When you remove the name of an interface, those commands will be remove as well.

Adding the name back does not bring back the commands.

If you have not done a "write mem", you can do; show startup | inc DMZ

and you should still see the commands, so you can do copy/paste.

The ACL should still exist, you just need to apply it again(using the access-group command)

If you wrote it to memory, you will need to add the commands again.

Regards,

Felipe.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card