Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
730
Views
1
Helpful
5
Replies

Firepower 1010 booting in switch mode

gpontikakos
Level 1
Level 1

‎05-19-2023 11:28 AM

Hello,

We recently purchased and installed a Firepower 1010 in a remote office intending to have VPN with the headquarters. At that remote office we have two vDSL lines which a providers router for each line. Each router has a cable connecting to an external interface of the Firepower with PPoE setup and another cable connecting to the local network for management access to the router. What we observed is that the Firepower when booting, before applying the configuration, starts in switch mode creating a loop in the network. Even though the Firepower is in routing mode and VLAN1 was disabled, before the configuration is applying the loop would happen. Has anyone faced a similar issue or has any suggestions?

Thank you all

1 person had this problem
0 Helpful
5 Replies 5

balaji.bandi
Hall of Fame
Hall of Fame

‎05-20-2023 02:18 AM

Not that we aware having this issue ?

why not configure each one separately and connect after saving the config ?

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

MHM Cisco World
VIP
VIP

‎05-20-2023 02:23 AM

You can not correct config IRB in firepower

0 Helpful

gpontikakos
Level 1
Level 1

‎05-20-2023 02:27 AM

The problem is when the FP reboots. Before fully booting and loading the configuration, it acts like a switch creating the loop. 

0 Helpful

quodcisco
Level 1
Level 1

‎02-02-2024 11:47 PM

We are seeing the same behaviour.

During boot(and only during) we see that device connected to the Firewall on different port of the firewall and different VLAN are able to communicate.

See example logs from my switch 1 DEDMZSW connected to port eth1/2 on vlan 2 of the Firewpower.

During the boot it s receiving message from the device switch 2 DEINTSW01  which is plugged to port eth1/1 vlan 1883.

They should not be able to communicate but during that laps of time they are able to excange cdp message.

Feb 3 07:15:02.536: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet1/0/4, changed state to down

Feb 3 07:15:03.538: %LINK-3-UPDOWN: Interface GigabitEthernet1/0/4, changed state to down

Feb 3 07:18:54.929: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet1/0/4, changed state to up

Feb 3 07:18:55.242: %CDP-4-NATIVE_VLAN_MISMATCH: Native VLAN mismatch discovered on GigabitEthernet1/0/4 (2), with DEINTSW01.fr2.saas GigabitEthernet0/4 (1883).
Feb 3 07:18:56.241: %CDP-4-NATIVE_VLAN_MISMATCH: Native VLAN mismatch discovered on GigabitEthernet1/0/4 (2), with DEINTSW01.fr2.saas GigabitEthernet0/4 (1883).
Feb 3 07:19:00.492: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet1/0/4, changed state to down

Feb 3 07:19:01.494: %LINK-3-UPDOWN: Interface GigabitEthernet1/0/4, changed state to down

Feb 3 07:21:23.705: %LINK-3-UPDOWN: Interface GigabitEthernet1/0/4, changed state to up
Feb 3 07:21:24.706: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet1/0/4, changed state to up

 

 

 

 

0 Helpful

tvotna
Spotlight
Spotlight
In response to quodcisco

‎02-05-2024 05:38 AM

This is probably a bug "CSCwd96493 Link Up seen for a few seconds on FPR1010 during bootup". It was fixed in recent versions.

 

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card