01-20-2018 08:21 AM - edited 02-21-2020 07:10 AM
Hi all
I am having problem command not available when I want to enter command nameif. Below are my detail:
I have a 6503E chassis with hardware below in my lab:
Mod Ports Card Type Model Serial No. --- ----- -------------------------------------- ------------------ ----------- 1 2 Supervisor Engine 720 (Active) WS-SUP720-BASE SAD075307HA 2 6 Firewall Module WS-SVC-FWM-1 SAD113900WE 3 48 SFM-capable 48 port 10/100/1000mb RJ45 WS-X6548-GE-TX SAL094868UQ Mod MAC addresses Hw Fw Sw Status --- ---------------------------------- ------ ------------ ------------ ------- 1 000d.6535.f074 to 000d.6535.f077 3.6 8.5(4) 15.1(1)SY Ok 2 0007.0e1c.b7a2 to 0007.0e1c.b7a9 4.2 7.2(1) 4.1(7) Ok 3 0016.4642.59c4 to 0016.4642.59f3 10.2 7.2(1) 15.1(1)SY Ok Mod Sub-Module Model Serial Hw Status ---- --------------------------- ------------------ ----------- ------- ------- 1 Policy Feature Card 3 WS-F6K-PFC3B SAD112105TV 2.3 Ok 1 MSFC3 Daughterboard WS-SUP720 SAD075308B2 2.12 Ok 3 Cisco Voice Daughter Card WS-F6K-VPWR-GE SAL09486TTP 1.1 Ok Mod Online Diag Status ---- ------------------- 1 Pass 2 Pass 3 Pass
I managed to create session to my FWSM with :
session slot 2 processor 1
FWSM show version:
FWSM Firewall Version 4.1(7) <system> Device Manager Version 6.2(2)F Compiled on Wed 07-Sep-11 13:35 by fwsmbld FWSM up 21 mins 12 secs Hardware: WS-SVC-FWM-1, 1024 MB RAM, CPU Pentium III 1000 MHz Flash TOSHIBA THNCF128MBA @ 0xc321, 20MB 0: Int: GigabitEthernet0 : address is 0018.7476.d380, irq 5 1: Int: GigabitEthernet1 : address is 0018.7476.d380, irq 7 2: Int: EOBC0 : address is 0000.1200.0000, irq 11 The Running Activation Key is not set, using default settings: Licensed features for this platform: Maximum Interfaces : 300 Inside Hosts : Unlimited Failover : Active/Active VPN-DES : Enabled VPN-3DES-AES : Enabled Cut-through Proxy : Enabled Guards : Enabled URL Filtering : Enabled Security Contexts : 2 GTP/GPRS : Disabled BGP Stub : Disabled Service Acceleration : Disabled VPN Peers : Unlimited Serial Number: SAD113900WE Running Activation Key: 0x00000000 0x00000000 0x00000000 0x00000000 Configuration last modified by enable_15 at 05:04:58.217 UTC Sat Jan 1 2000
nameif command not available at interface
FWSM(config)# interface vlan 10 FWSM(config-if)# nameif inside ^ ERROR: % Invalid input detected at '^' marker. FWSM(config-if)# ? Interface configuration commands: asr-group Configure Asymmetrical Routing group id default Set a command to its defaults description Interface specific description exit Exit from interface configuration mode help Interactive help for interface subcommands no Negate a command or set its defaults shutdown Shutdown the selected interface FWSM(config-if)#
It also not available at global config
FWSM(config)# nameif vlan10 inside ? ERROR: % Unrecognized command FWSM(config)# nameif vlan10 inside security 100 ^ ERROR: % Invalid input detected at '^' marker. FWSM(config)#
I tried to search around and found 1 or 2 discussion here without solved.
Is there anybody know whats wrong and hint on how to fix this?
Thank you in advance.
Solved! Go to Solution.
01-20-2018 07:48 PM
Finally got it. Yesterday keep search for few hours.
Thank you for your help. Really appreciated.
01-20-2018 02:28 PM
You entered the system execution space where the security contexts (or virtualized firewalls) are managed. Issue the following command to see which contexts are available:
fwsm# sh context
After that you can enter the context with
fwsm# changeto context NAME-OF-CONTEXT
There you configure your firewall.
01-20-2018 07:48 PM
Finally got it. Yesterday keep search for few hours.
Thank you for your help. Really appreciated.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide