Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
298
Views
0
Helpful
1
Replies

Configure Switch port from Access mode to Trunk

johnlloyd_13
Level 9
Level 9

‎02-07-2024 05:17 AM - edited ‎02-07-2024 05:19 AM

hi,

i need to add an additional VLAN in the FW "inside" interface to a switch. but currently the switch is configured to a single VLAN 30 and will need to configure as trunk.

i only have IPsec VPN via internet to this remote site using VLAN 30 on the "inside".

my question is, can i configure the switch port from access to trunk? note this is a 3850 switch so it's automatic using 802.1Q.

i know there will a short pause but remote SSH session will resume (i hope). should i use the "reload in x" in the switch just in case?

also good thing secondary FW is currently "active" so i can configure trunk in SW01 first (to primary FW) then SW02 (to secondary FW).

or is it better that after i configure SW01 trunk, i force failover to primary/active, then configure SW02 trunk so there will be zero downtime?

 

interface GigabitEthernet1/0/1
switchport mode trunk
no switchport access vlan 30
no switchport mode access
no spanning-tree portfast

 

SW01

interface GigabitEthernet1/0/1
description | FW01 PRI G0/1 : INSIDE |
switchport access vlan 30
switchport mode access
spanning-tree portfast

 

SW02

interface GigabitEthernet1/0/1
description | FW01 SEC G0/1 : INSIDE |
switchport access vlan 30
switchport mode access
spanning-tree portfast

0 Helpful
1 Reply 1

MHM Cisco World
VIP
VIP

‎02-07-2024 05:24 AM

Note that if the asa use native vlan or use router interface to connect to SW then changing access to trunk in SW need also some modify in FW.

MHM

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card