01-20-2018 08:21 AM - edited 02-21-2020 07:10 AM
Hi all
I am having problem command not available when I want to enter command nameif. Below are my detail:
I have a 6503E chassis with hardware below in my lab:
Mod Ports Card Type Model Serial No. --- ----- -------------------------------------- ------------------ ----------- 1 2 Supervisor Engine 720 (Active) WS-SUP720-BASE SAD075307HA 2 6 Firewall Module WS-SVC-FWM-1 SAD113900WE 3 48 SFM-capable 48 port 10/100/1000mb RJ45 WS-X6548-GE-TX SAL094868UQ Mod MAC addresses Hw Fw Sw Status --- ---------------------------------- ------ ------------ ------------ ------- 1 000d.6535.f074 to 000d.6535.f077 3.6 8.5(4) 15.1(1)SY Ok 2 0007.0e1c.b7a2 to 0007.0e1c.b7a9 4.2 7.2(1) 4.1(7) Ok 3 0016.4642.59c4 to 0016.4642.59f3 10.2 7.2(1) 15.1(1)SY Ok Mod Sub-Module Model Serial Hw Status ---- --------------------------- ------------------ ----------- ------- ------- 1 Policy Feature Card 3 WS-F6K-PFC3B SAD112105TV 2.3 Ok 1 MSFC3 Daughterboard WS-SUP720 SAD075308B2 2.12 Ok 3 Cisco Voice Daughter Card WS-F6K-VPWR-GE SAL09486TTP 1.1 Ok Mod Online Diag Status ---- ------------------- 1 Pass 2 Pass 3 Pass
I managed to create session to my FWSM with :
session slot 2 processor 1
FWSM show version:
FWSM Firewall Version 4.1(7) <system> Device Manager Version 6.2(2)F Compiled on Wed 07-Sep-11 13:35 by fwsmbld FWSM up 21 mins 12 secs Hardware: WS-SVC-FWM-1, 1024 MB RAM, CPU Pentium III 1000 MHz Flash TOSHIBA THNCF128MBA @ 0xc321, 20MB 0: Int: GigabitEthernet0 : address is 0018.7476.d380, irq 5 1: Int: GigabitEthernet1 : address is 0018.7476.d380, irq 7 2: Int: EOBC0 : address is 0000.1200.0000, irq 11 The Running Activation Key is not set, using default settings: Licensed features for this platform: Maximum Interfaces : 300 Inside Hosts : Unlimited Failover : Active/Active VPN-DES : Enabled VPN-3DES-AES : Enabled Cut-through Proxy : Enabled Guards : Enabled URL Filtering : Enabled Security Contexts : 2 GTP/GPRS : Disabled BGP Stub : Disabled Service Acceleration : Disabled VPN Peers : Unlimited Serial Number: SAD113900WE Running Activation Key: 0x00000000 0x00000000 0x00000000 0x00000000 Configuration last modified by enable_15 at 05:04:58.217 UTC Sat Jan 1 2000
nameif command not available at interface
FWSM(config)# interface vlan 10 FWSM(config-if)# nameif inside ^ ERROR: % Invalid input detected at '^' marker. FWSM(config-if)# ? Interface configuration commands: asr-group Configure Asymmetrical Routing group id default Set a command to its defaults description Interface specific description exit Exit from interface configuration mode help Interactive help for interface subcommands no Negate a command or set its defaults shutdown Shutdown the selected interface FWSM(config-if)#
It also not available at global config
FWSM(config)# nameif vlan10 inside ? ERROR: % Unrecognized command FWSM(config)# nameif vlan10 inside security 100 ^ ERROR: % Invalid input detected at '^' marker. FWSM(config)#
I tried to search around and found 1 or 2 discussion here without solved.
Is there anybody know whats wrong and hint on how to fix this?
Thank you in advance.
Solved! Go to Solution.
01-20-2018 07:48 PM
Finally got it. Yesterday keep search for few hours.
Thank you for your help. Really appreciated.
01-20-2018 02:28 PM
You entered the system execution space where the security contexts (or virtualized firewalls) are managed. Issue the following command to see which contexts are available:
fwsm# sh context
After that you can enter the context with
fwsm# changeto context NAME-OF-CONTEXT
There you configure your firewall.
01-20-2018 07:48 PM
Finally got it. Yesterday keep search for few hours.
Thank you for your help. Really appreciated.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: