Re: ASA multiple contexts

Ganesh Iyyappan Pillai · ‎04-12-2007

R1 R1

\ /

SW1 (dot1Q to ASA)

|

ASA1

Configured vlan interfaces vlan121, vlan122 on the ethernet0/1 interfaces and allocated the interfaces as below, R1 and R2

ethernet addresses are from the same subnet as inside interface, I am unable to ping the inside interfaces from R1 and R2

and i see encapsulation failed when I debug, checked vlan assignments and phycial connectivity and confirmed that everthing

is fine, below are the config, any suggestions? Thanks in advance

context a - e0/1.122 (insideA),e0/0(outside) and e0/2(dmz)

context b - e0/1.121 (insideB),e0/0(outside) and e0/2(dmz)

Contxt A config

-----------------

interface insideA

nameif inside

security-level 100

ip address 136.1.0.12 255.255.255.0

!

interface dmz

nameif dmz

security-level 50

ip address 136.1.124.121 255.255.255.0

!

interface outside

nameif outside

security-level 0

ip address 136.1.123.121 255.255.255.0

context B config

----------------

interface insideB

nameif inside

security-level 100

ip address 136.1.0.12 255.255.255.0

!

interface dmz

nameif dmz

security-level 50

ip address 136.1.124.122 255.255.255.0

!

interface outside

nameif outside

security-level 0

ip address 136.1.123.122 255.255.255.0

wong34539 · ‎04-18-2007

It could be problem with IP Address configuration , Same IP: 136.1.0.12 255.255.255.0 has assigned to both contexts.

Refer to this link:

Ganesh Iyyappan Pillai · ‎04-19-2007

Same IP can be assigned, I found that I misconfigured the VLANs :-) Thanks