Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
779
Views
0
Helpful
3
Replies

trunking and subinterfaces

Tejas Kunte
Level 1
Level 1

‎02-22-2012 07:42 AM - edited ‎03-04-2019 03:23 PM

the attached image shows what i am trying to achieve

i need to establish connectivity from subnets 10.30.5.X and 10.30.6.X (in VLAN1 and VLAN2 respectively) to subnet 10.11.35.X

i have a trunk port on my cisco 2960 that is connected to GiE0/0 on my Cisco ASA that has 2 sub-interfaces with IPs in the subnets mentioned above

my problem is i can only connect to 10.30.6.X from 10.11.35.X (and vice versa), but no connectivty to 10.30.5.X

am i missing something obvious ?

Labels:
Preview file
15 KB
0 Helpful
3 Replies 3

cadet alain
VIP Alumni
VIP Alumni

‎02-22-2012 08:04 AM

Hi,

can you provide configs from both devices.

Regards.

Alain

Don't forget to rate helpful posts.
0 Helpful

Tejas Kunte
Level 1
Level 1
In response to cadet alain

‎02-22-2012 08:17 AM

i have 2 switches (have attached the config for 1, 2nd switch has the same config) and 2 ASAs in a active-passive config

port 45 on each switch (which is trunked) goes to int 0/6 on each asa

switch config

spanning-tree mode pvst

spanning-tree extend system-id

!

vlan internal allocation policy ascending

!

!

!

interface Port-channel1

switchport mode trunk

!

interface GigabitEthernet0/1

switchport mode access

!

interface GigabitEthernet0/2

switchport mode access

!

interface GigabitEthernet0/3

switchport mode access

!

interface GigabitEthernet0/4

switchport mode access

!

interface GigabitEthernet0/5

switchport mode access

!

interface GigabitEthernet0/6

switchport mode access

!

interface GigabitEthernet0/7

switchport mode access

!

interface GigabitEthernet0/8

switchport mode access

!

interface GigabitEthernet0/9

switchport mode access

!

interface GigabitEthernet0/10

switchport mode access

!

interface GigabitEthernet0/11

switchport mode access

!

interface GigabitEthernet0/12

switchport mode access

!

interface GigabitEthernet0/13

switchport mode access

!

interface GigabitEthernet0/14

switchport mode access

!

interface GigabitEthernet0/15

switchport mode access

!

interface GigabitEthernet0/16

switchport mode access

!

interface GigabitEthernet0/17

switchport mode access

!

interface GigabitEthernet0/18

switchport mode trunk

channel-group 1 mode active

spanning-tree portfast trunk

!

interface GigabitEthernet0/19

switchport access vlan 2

switchport mode access

!

interface GigabitEthernet0/20

switchport access vlan 2

switchport mode access

!

interface GigabitEthernet0/21

switchport access vlan 2

switchport mode access

!

interface GigabitEthernet0/22

switchport access vlan 2

switchport mode access

!

interface GigabitEthernet0/23

switchport access vlan 2

switchport mode access

!

interface GigabitEthernet0/24

switchport access vlan 2

switchport mode access

!

interface GigabitEthernet0/25

switchport access vlan 2

switchport mode access

!

interface GigabitEthernet0/26

switchport access vlan 2

switchport mode access

!

interface GigabitEthernet0/27

switchport access vlan 2

switchport mode access

!

interface GigabitEthernet0/28

switchport access vlan 2

switchport mode access

!

interface GigabitEthernet0/29

switchport access vlan 2

switchport mode access

!

interface GigabitEthernet0/30

switchport access vlan 2

switchport mode access

!

interface GigabitEthernet0/31

switchport access vlan 2

switchport mode access

!

interface GigabitEthernet0/32

switchport access vlan 2

switchport mode access

!

interface GigabitEthernet0/33

switchport access vlan 2

switchport mode access

!

interface GigabitEthernet0/34

switchport mode trunk

channel-group 1 mode active

spanning-tree portfast trunk

!

interface GigabitEthernet0/35

switchport access vlan 3

switchport mode access

!

interface GigabitEthernet0/36

switchport access vlan 3

switchport mode access

!

interface GigabitEthernet0/37

switchport access vlan 3

switchport mode access

!

interface GigabitEthernet0/38

switchport access vlan 3

switchport mode access

!

interface GigabitEthernet0/39

switchport access vlan 3

switchport mode access

!

interface GigabitEthernet0/40

switchport access vlan 3

switchport mode access

!

interface GigabitEthernet0/41

switchport access vlan 3

switchport mode access

!

interface GigabitEthernet0/42

switchport access vlan 3

switchport mode access

!

interface GigabitEthernet0/43

switchport access vlan 3

switchport mode access

!

interface GigabitEthernet0/44

switchport access vlan 2

switchport mode access

!

interface GigabitEthernet0/45

switchport mode trunk

!

interface GigabitEthernet0/46

!

interface GigabitEthernet0/47

!

interface GigabitEthernet0/48

switchport mode trunk

spanning-tree portfast trunk

!

interface Vlan1

ip address 10.30.5.6 255.255.255.0

no ip route-cache

!

ip default-gateway 10.30.5.1

ip http server

ip http secure-server

logging trap notifications

ASA config

ASA Version 8.4(2)

!

hostname ecw17fw001

enable password z9EBartb5mE1xA7Y encrypted

passwd l/6WBlFb8xG4avQC encrypted

names

!

interface GigabitEthernet0/0

nameif WAN

security-level 0

ip address 207.211.113.4 255.255.255.240 standby 207.211.113.5

!

interface GigabitEthernet0/1

nameif DMZ

security-level 50

ip address 207.211.113.17 255.255.255.240 standby 207.211.113.18

!

interface GigabitEthernet0/2

nameif Production

security-level 100

ip address 10.11.35.1 255.255.255.0 standby 10.11.35.2

!

interface GigabitEthernet0/3

nameif Mgmt

security-level 100

ip address 10.11.34.1 255.255.255.0 standby 10.11.34.2

!

interface GigabitEthernet0/4

nameif MPLS

security-level 100

ip address 10.255.8.2 255.255.255.0 standby 10.255.8.3

!

interface GigabitEthernet0/5

shutdown

no nameif

no security-level

no ip address

!

interface GigabitEthernet0/6

no nameif

no security-level

no ip address

!

interface GigabitEthernet0/6.1

shutdown

vlan 1

nameif ASP8-Mgmt

security-level 90

ip address 10.30.5.19 255.255.255.0 standby 10.30.5.20

!

interface GigabitEthernet0/6.2

shutdown

vlan 2

nameif ASP8-Prod

security-level 100

ip address 10.30.6.19 255.255.255.0 standby 10.30.6.20

Tejas Kunte

I.T. Operations

eClinicalWorks

2 Technology Drive | Westborough, MA 01581

T: 508-475-0450 x10326 | F: 508-836-4466 | <> facebook.png <> twitter.png <> in.png

tejask@eclinicalworks.com | <> www.eclinicalworks.com

This transmission contains confidential information belonging to the sender that is legally privileged and proprietary and may be subject to protection under the law, including the Health Insurance Portability and Accountability Act (HIPAA). If you are not the intended recipient of this e-mail, you are prohibited from sharing, copying, or otherwise using or disclosing its contents. If you have received this e-mail in error, please notify the sender immediately by reply e-mail and permanently delete this e-mail and any attachments without reading, forwarding, or saving them. Thank you.

P Please consider the environment and only print this e-mail if necessary

Preview file
1 KB
0 Helpful

fb_webuser
Level 6
Level 6

‎02-22-2012 08:46 AM

You do not need sub interfaces I think.

If you define the 3 vlans and configure the ip address on the vlan you should get routing between all 3

---

Posted by WebUser Stuart Gall

0 Helpful
Customers Also Viewed These Support Documents