Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
348
Views
0
Helpful
3
Replies

Unable to move from interface to subinterface using contextmode on 5515-x

Go to solution
thomas.stern
Level 1
Level 1

‎11-02-2015 04:55 AM - edited ‎03-11-2019 11:49 PM

Hi,

Long time reader, first time poster

I am moving from using an ordinary interface to subinterfaces in order to move two contexts to same physical interface. However I cannot get the config to work.

in system context:

interface GigabitEthernet0/3
!
interface GigabitEthernet0/3.1
 vlan 310
!
interface GigabitEthernet0/3.2
 vlan 320

..
context context1
  allocate-interface GigabitEthernet0/0 B_outside
  allocate-interface GigabitEthernet0/3.1 B_inside
  config-url disk0:/context1.cfg
!

context context2
  allocate-interface GigabitEthernet0/0 C_outside
  allocate-interface GigabitEthernet0/3.2 C_inside
  config-url disk0:/context2.cfg
!

..

in context1:

interface B_inside
 nameif inside
 security-level 100
 ip address 192.168.11.1 255.255.255.0 standby 192.168.11.250
!

all other conf is the same as before (I readded the nats that were removed when I went to subinterfaces) and previously I could just "ping 192.168.11.5" from context1 , now I cannot. Nor do ssh tunnnels or https rules work)

Do I need to setup a switchport or something inside the context to vlan 310 , I am at a loss

ciscoasa/context1# show interface
Interface B_outside "outside", is up, line protocol is up
        MAC address **, MTU 1500
        IP address **, subnet mask 255.255.255.248
  Traffic Statistics for "outside":
        4203345 packets input, 2260290490 bytes
        2849981 packets output, 1589294400 bytes
        32004 packets dropped
Interface B_inside "inside", is up, line protocol is up
        MAC address **, MTU 1500
        IP address 192.168.11.1, subnet mask 255.255.255.0
  Traffic Statistics for "inside":
        0 packets input, 0 bytes
        139 packets output, 3892 bytes
        0 packets dropped

/thomas

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Akshay Rastogi
Cisco Employee
Cisco Employee

‎11-02-2015 08:49 AM

Hi Thomas,

First thing is , add 'mac-address auto' in system configuration mode.

Also check if you have made the switchport as trunk on the switch and allowed vlan 310 in that trunk.

Regards,

Akshay Rastogi

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame

‎11-02-2015 07:02 AM

Thomas

Sorry to ask the obvious but have you made the port on your switch a trunk port ie. the port the ASA interface connects to.

Jon

0 Helpful

Go to solution
Akshay Rastogi
Cisco Employee
Cisco Employee

‎11-02-2015 08:49 AM

Hi Thomas,

First thing is , add 'mac-address auto' in system configuration mode.

Also check if you have made the switchport as trunk on the switch and allowed vlan 310 in that trunk.

Regards,

Akshay Rastogi

0 Helpful

Go to solution
thomas.stern
Level 1
Level 1

‎11-05-2015 12:05 AM

Thanks for the info, I didn't think to look outside the ASA. I was too focused on the details of the conf.

/thomas

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card
Top