Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
688
Views
0
Helpful
3
Replies

Port channel at firewall

Rizwan
Level 1
Level 1

‎10-05-2015 07:44 AM - edited ‎03-11-2019 11:41 PM

Hi, 

I have two ASA firewalls working on fail over, a vPC is configured between firewalls and two nexus switches. 

vPC is up and port channel is configured. Now I made a virtual interface on firewall as inside interface and assign a vlan id 15 same as 

configured at nexus as shown below but I am unable to ping vlan IP at nexus switch. Please suggest

 

interface GigabitEthernet0/3.15
 vlan 15
 nameif inside
 security-level 100
 ip address 10.23.15.10 255.255.255.0 standby 10.23.15.11 

Labels:
0 Helpful
3 Replies 3

James Leinweber
Level 4
Level 4

‎10-05-2015 10:06 AM

Could we see the output of "show port-channel detail"

-- Jim Leinweber, WI state Lab of Hygiene

0 Helpful

Rizwan
Level 1
Level 1

‎10-05-2015 10:24 AM

sh port-channel detail 
                Channel-group listing: 
                -----------------------

Group: 2
----------
Span-cluster port-channel: No
Ports: 2   Maxports = 16
Port-channels: 1 Max Port-channels = 48
Protocol: LACP/ active
Minimum Links: 1
Maximum Bundle: 8
Load balance: src-dst-ip
                Ports in the group:
                -------------------
Port: Gi0/1
------------
Port state    = bndl
Channel group =    2        Mode = LACP/ active
Port-channel  = Po2 

Flags:  S - Device is sending Slow LACPDUs   F - Device is sending fast LACPDUs.
        A - Device is in active mode.        P - Device is in passive mode.

Local information: 
                             LACP port     Admin     Oper    Port        Port
Port      Flags   State      Priority      Key       Key     Number      State
-----------------------------------------------------------------------------
Gi0/1     SA      bndl       32768         0x2       0x2     0x2         0x3d  

Partner's information:
          Partner Partner    LACP Partner  Partner   Partner  Partner     Partner
Port      Flags   State      Port Priority Admin Key Oper Key Port Number Port State
-----------------------------------------------------------------------------------
Gi0/1     SA      bndl       32768         0x0       0x8066   0x4401      0x3d  

0 Helpful

Rizwan
Level 1
Level 1
In response to Rizwan

‎10-05-2015 10:25 AM

I have multiple vlans at my core switch how I will configure inside interface of firewall to make all vlans reachable to the firewall?

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card