Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
666
Views
0
Helpful
5
Replies

Cisco PIX VLAN

cbayadmin_mum
Level 1
Level 1

‎02-16-2005 10:28 PM - edited ‎02-20-2020 11:58 PM

HI,

I have Cisco PIX 515E ,have created VLAN on inside interface as VLAN2 (logical interface),assigned it an ip 172.17.1.xx ....Now i also have a 3-com super stack 3 switch on which i have created a VLAN2...i have connected a machine on the port of VLAN2 with ip 172.17.1.xxx (of the same subnet as of VLAN2 PIX) and on the same switch connected the PIX in the VLAN2

This means my machine is in VLAN2, the PIX inside interface is on VLAN2 and the PIX have a logicla interface with VLAn2 of the same subnet as my machine ...

Problem: i am not able to Ping to PIX interface with VLAN2 IP

0 Helpful
5 Replies 5

sachinraja
Level 9
Level 9

‎02-17-2005 01:55 AM

Hello

The PIX inside and the logical interface cannot be on the same VLAN. You need to have different networks assigned to the PIX inside and the logical interface.. On the switch you need to configure trunking on the port which is connected to PIX and not in VLAN 2...

Refer to this document and see if you done the right configs.. post ur configs if possible..

http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_configuration_guide_chapter09186a0080172786.html#wp1113411

hope this helps.. Raj

0 Helpful

cbayadmin_mum
Level 1
Level 1
In response to sachinraja

‎02-17-2005 02:36 AM

Yess the logical interface is assigned VLAN2 ,the physical inside interface has no VLAN ....And yes the physical interface is assigned the Network ip 172.17.0.XX

Any idea about trunking in 3-com switches ??will help a lot

0 Helpful

sachinraja
Level 9
Level 9
In response to cbayadmin_mum

‎02-17-2005 02:51 AM

hello,

Not really sure of the trunking config in 3-com. havent worked with that much. i have seen people configuring these switches through GUI, where you tag/untag a port and include it as a trunk. you can search this on the 3com knowledgebase.

Raj

0 Helpful

cbayadmin_mum
Level 1
Level 1
In response to sachinraja

‎02-17-2005 03:00 AM

Raj,

We had the port where PIX was connected tagged but still i was not able to PING from the machine in VLAN2 to the PIX VLAN2 interface IP

0 Helpful

ehirsel
Level 6
Level 6
In response to cbayadmin_mum

‎02-20-2005 07:28 PM

On the workstation, after a ping attempt, run a command to display the arp table. See if you have a valid mac address that corresponds to the pix interface for that intf ip address. If you do not have an arp table entry, then the issue may be with the switch port config that the pix intf plugs into. If there is more than one switch involved, then the issue may lie with the trunk connection betweent them. Maybe vlan 2 is being pruned from the trunk link?

0 Helpful
Related community topics
Review Cisco Networking for a $25 gift card
Top