Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
675
Views
6
Helpful
7
Replies

How to bring up a port channel interface that was shut through cli

Go to solution
Ditter
Level 4
Level 4

‎09-23-2024 01:46 AM

Hi, 

i came across a problem and i would like your help.

During test procedures i did a shutdown of the outside interface in FTD-1 which is in failover pair.  Deliberately, i had no monitoring interfaces nor backup IPs in the secondary FTD-2 as i wanted to test what happens in this case (no monitor, no backup IPs)

The result was to lose connectivity to the firewall pair. 

My question is the following: 

Is it possible through the CLI to bring up again an interface that is in shutdown state?    I digged in the CLI and i found only :

> configure network


dns Configure DNS servers
hostname Set the hostname
http-proxy Configure HTTP Proxy settings
http-proxy-disable Disable HTTP Proxy settings
ipv4 Configure IPv4 networking
ipv6 Configure IPv6 networking
management-data-interface Wizard for Management Data interface setup
management-interface Change to Management Port Configuration Mode
management-port Change TCP port for management
mtu Configure Management and Eventing Interface MTU
speed Set interface speed
static-routes Change to Static Route Configuration Mode

  So my question is if there are any commands that can bring up again an interface that is in shutdown state:

interface Port-channel1.271
description FTD-Outside-Interface
shutdown
vlan 271
nameif vlan_271
cts manual

Thanks,

Ditter.

0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Rob Ingram
VIP
VIP
In response to Ditter

‎09-23-2024 04:30 AM - edited ‎09-23-2024 04:37 AM

@Ditter 

If you have a 1000/2000 series hardware you manage Port Channels and interfaces from the GUI.

If you have a 3000, 4000 or 9300 series you manage/allocate interfaces from FXOS, but if you shutdown the interfaces from the FMC you must still un-shutdown from there also.

View solution in original post

Go to solution
MHM Cisco World
VIP
VIP
In response to Ditter

‎09-23-2024 04:36 AM

PO done by cli and subinterface done by gui.

MHM

View solution in original post

7 Replies 7

Go to solution
Rob Ingram
VIP
VIP

‎09-23-2024 01:50 AM

@Ditter the only supported method is via the GUI (FMC/FDM however you manage the FTDs). The configure-network command relates to the mangement interface, not the data interfaces.

Go to solution
Ditter
Level 4
Level 4

‎09-23-2024 02:29 AM

Thanks for the fast reply Rob,

just thinking it would be nice to have this capability also from the CLI for the data interfaces.

Go to solution
Rob Ingram
VIP
VIP
In response to Ditter

‎09-23-2024 02:34 AM

@Ditter yes I agree. I believe in future versions there may be the ability to configure additional settings from the CLI, not sure what settings and when though tbh.

0 Helpful

Go to solution
Ditter
Level 4
Level 4

‎09-23-2024 04:16 AM - edited ‎09-23-2024 04:22 AM

Thanks MHM,

i read through the document you provided and through various commands i finally got in the following menu (via fxos commands)

ftd-1 /eth-uplink/fabric # show port-channel

Port Channel:
Port Channel Id Name Port Type Admin State Oper State State Reason
--------------- ---------------- ------------------ ----------- ---------------- ------------
1 Port-channel1 Data Enabled Up Up
2 Port-channel2 Data Disabled Link Down Down

Then i entered the port-channel 1 under which i have configured the sub-interface 271 which i wanted to re-enable (no shut) but i do not see any relevant info under port-channel 1 .

ftd-1 /eth-uplink/fabric # enter port-channel 1

ftd-1 /eth-uplink/fabric/port-channel # show

Port Channel:
Port Channel Id Name Port Type Admin State Oper State State Reason
--------------- ---------------- ------------------ ----------- ---------------- ------------
1 Port-channel1 Data Enabled Up Up

But no sub-interfaces show with this command although i have 4 of them configured in the GUI.

And even in the upper menu , there are not port-channel subinterfaces available

ftd-1 /eth-uplink/fabric # scope
interface Interface
port-channel Port Channel
switching Ethernet LAN Switching
vlan VLAN

Thanks,

Ditter

 

Go to solution
Rob Ingram
VIP
VIP
In response to Ditter

‎09-23-2024 04:30 AM - edited ‎09-23-2024 04:37 AM

@Ditter 

If you have a 1000/2000 series hardware you manage Port Channels and interfaces from the GUI.

If you have a 3000, 4000 or 9300 series you manage/allocate interfaces from FXOS, but if you shutdown the interfaces from the FMC you must still un-shutdown from there also.

Go to solution
MHM Cisco World
VIP
VIP
In response to Ditter

‎09-23-2024 04:36 AM

PO done by cli and subinterface done by gui.

MHM

Review Cisco Networking for a $25 gift card
Top