Issues pinging subinterface gateway setup on FTD

jlittle5376 · ‎07-21-2022

HI - I was hoping to get some guidance on what my issues may be. I apologize ahead of time if i do not give enough info but i am new to the world of Cisco. I know enough to get by so i will do my best.

I am trying to setup VLANS in our environment and i have everything appearing to work layer 2 and below. Simply because i can ping the Vlan IP on the switch and any other device i place on the same VLAN. When i try to ping the sub-interface i created on the FTD i do not get a response even though ICMP is allowed in Platform Settings.

When i plug a laptop up with an IP in that range directly to the port with the sub interface on it i still cannot ping the gateway that was setup for the subinterface/vlan.

Any ideas?

paul driver · ‎07-21-2022

Hello
Once you create sub interfaces then you would probably require to associate a dot1q tag (vlan) to it.
int x/x
ip address 10.10.10.1 255.255.255.0 < default will be native vlan 1
int x/x.2
encapsulation dot1q 2
ip address 10.20.20.1 255.255.255.0 < tagged vlan id 2

So from the example above the switch connecting to the FTD its switchport needs to be in vlan 2, if the FTD has ip address on the physical & the sub-interface than the same switchport needs to be a trunk port.

Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul