ā06-21-2023 09:25 AM
Hi,
I am trying to bring up a cluster interface for which I have used a Layer 2 switch and Cisco ASA. I have identical ports connected at both the ASAs which terminate in the switch. I am using LACP mode active at both switch and ASA but the port-channel is not coming up. I am attaching interface configs of ASA and switch in anticipation that some expert might be able to help me.
SW
++++++++++++
!
interface GigabitEthernet0/2
description "ASA3-E1-(prt.chnl)"
switchport trunk allowed vlan 13-15
switchport trunk encapsulation dot1q
switchport mode trunk
negotiation auto
no cdp enable
channel-group 1 mode active
end
!
interface GigabitEthernet0/3
description "ASA3-E2(prt.chnl)"
switchport trunk allowed vlan 13-15
switchport trunk encapsulation dot1q
switchport mode trunk
negotiation auto
no cdp enable
channel-group 1 mode active
end
!
interface Port-channel1
switchport trunk allowed vlan 13-15
switchport trunk encapsulation dot1q
switchport mode trunk
end
!
Group Port-channel Protocol Ports
------+-------------+-----------+-----------------------------------------------
1 Po1(SN) LACP Gi0/2(w) Gi0/3(w)
!
ASA
++++++++++++++
!
interface Ethernet1
channel-group 1 mode active
no nameif
no security-level
no ip address
ciscoasa# sh run int e2
!
interface Ethernet2
channel-group 1 mode active
no nameif
no security-level
no ip address
ciscoasa# sh run int po 1
!
interface Port-channel1
port-channel span-cluster
no nameif
no security-level
no ip address
!
Group Port-channel Protocol Span-cluster Ports
------+-------------+---------+------------+------------------------------------
1 Po1(N) LACP Yes Et1(w) Et2(w)
Regards
Solved! Go to Solution.
ā06-21-2023 10:01 AM
Config cluster then config PO for both IN and OUT
ā06-21-2023 09:53 AM
Did you config cluster first then config PO?
ā06-21-2023 09:58 AM
ā06-21-2023 10:00 AM
@harishbau084 if you are creating a spanned etherchannel for the cluster, you define one interface from each ASA in the cluster in the port-channel, as per the example.
ā06-21-2023 10:01 AM
Config cluster then config PO for both IN and OUT
ā06-22-2023 01:39 AM
After configuring cluster then port-channel, issue got resolved.
Thanks everyone.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide