Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
645
Views
0
Helpful
7
Replies

Unable to Add a subinterface via ASA or ASADM , Cisco 5512, ASA 9.1(1)

venkat0011
Level 1
Level 1

‎07-20-2015 10:20 AM - edited ‎02-21-2020 05:32 AM

Hello All,

I have a very basic issue with adding a sub interface. Iam new to this setup so maybe Iam missing something. Our Cisco 5512 appliance has a few subinterfaces e.g 

 

 

Interface GigabitEthernet0/1.1011 , is up, line protocol is up

    MAC address e4d3.f1cf.eb7d, MTU 1500

        IP address 10.110.1.1, subnet mask 255.255.255.0

  Traffic Statistics for 

    4539905 packets input, 3299328704 bytes

    3499997 packets output, 1158198422 bytes

    6374 packets dropped

Interface GigabitEthernet0/1.1013  is up, line protocol is up

    MAC address e4d3.f1cf.eb7d, MTU 1500

    IP address 10.110.3.1, subnet mask 255.255.255.0

  Traffic Statistics for :

    134386 packets input, 101134521 bytes

    132145 packets output, 50793453 bytes

    13987 packets dropped

Interface GigabitEthernet0/1.1014 , is up, line protocol is up

    MAC address e4d3.f1cf.eb7d, MTU 1500

    IP address 10.110.4.1, subnet mask 255.255.255.0

  Traffic Statistics for 

    16873366 packets input, 4347409211 bytes

    9294342 packets output, 6108270932 bytes

    5968 packets dropped

When I try to add a new subinterface like 

scl2-fwl01/admin(config)# interface GigabitEthernet0/1.1016

                                                                                              ^

ERROR: % Invalid input detected at '^' marker.

scl2-fwl01/admin(config)#

 

Am I doing this right ? I tried the same using ASDM and was able to specify all the interface vlan values, ip and netmask but when I try to save it , it gives me this in the java console

 

Exception in thread "AWT-EventQueue-0" java.lang.NullPointerException

at b8d.<init>(b8d.java:84)

at b8d.<init>(b8d.java:68)

at b8d.a(b8d.java:334)

at b8d.a(b8d.java:311)

at b8n.d(b8n.java:1961)

at b8n.c(b8n.java:1764)

at b8n.a(b8n.java:2301)

 

Maybe some license issue ?

My version info



Cisco Adaptive Security Appliance Software Version 9.1(1) <context>

Device Manager Version 7.1(1)


Compiled on Wed 28-Nov-12 11:15 PST by builders


scl2-fwl01 up 1 day 20 hours


Hardware:   ASA5512, 4096 MB RAM, CPU Clarkdale 2793 MHz, 1 CPU (2 cores)

            ASA: 2048 MB RAM, 1 CPU (1 core)

Internal ATA Compact Flash, 4096MB

BIOS Flash MX25L6445E @ 0xffbb0000, 8192KB


Encryption hardware device : Cisco ASA-55xx on-board accelerator (revision 0x1)

                             Boot microcode        : CNPx-MC-BOOT-2.00

                             SSL/IKE microcode     : CNPx-MC-SSL-PLUS-T020

                             IPSec microcode       : CNPx-MC-IPSEC-MAIN-0022

                             Number of accelerators: 1

Baseboard Management Controller (revision 0x1) Firmware Version: 2.4



 0: Int: Internal-Data0/0    : address is e4d3.f1cf.eb7c, irq 11

 1: Ext: GigabitEthernet0/0  : address is e4d3.f1cf.eb80, irq 10

 2: Ext: GigabitEthernet0/1  : address is e4d3.f1cf.eb7d, irq 10

 3: Ext: GigabitEthernet0/2  : address is e4d3.f1cf.eb81, irq 5

 4: Ext: GigabitEthernet0/3  : address is e4d3.f1cf.eb7e, irq 5

 5: Ext: GigabitEthernet0/4  : address is e4d3.f1cf.eb82, irq 10

 6: Ext: GigabitEthernet0/5  : address is e4d3.f1cf.eb7f, irq 10

 7: Int: Internal-Data0/1    : address is 0000.0001.0002, irq 0

 8: Int: Internal-Control0/0 : address is 0000.0001.0001, irq 0

 9: Int: Internal-Data0/2    : address is 0000.0001.0003, irq 0

10: Ext: Management0/0       : address is e4d3.f1cf.eb7c, irq 0


Licensed features for this platform:

Maximum Physical Interfaces       : Unlimited      perpetual

Maximum VLANs                     : 100            perpetual

Inside Hosts                      : Unlimited      perpetual

Failover                          : Active/Active  perpetual

Encryption-DES                    : Enabled        perpetual

Encryption-3DES-AES               : Enabled        perpetual

Security Contexts                 : 2              perpetual

GTP/GPRS                          : Disabled       perpetual

AnyConnect Premium Peers          : 2              perpetual

AnyConnect Essentials             : 250            perpetual

Other VPN Peers                   : 250            perpetual

Total VPN Peers                   : 250            perpetual

Shared License                    : Disabled       perpetual

AnyConnect for Mobile             : Enabled        perpetual

AnyConnect for Cisco VPN Phone    : Disabled       perpetual

Advanced Endpoint Assessment      : Disabled       perpetual

UC Phone Proxy Sessions           : 2              perpetual

Total UC Proxy Sessions           : 2              perpetual

Botnet Traffic Filter             : Disabled       perpetual

Intercompany Media Engine         : Disabled       perpetual

IPS Module                        : Disabled       perpetual

Cluster                           : Disabled       perpetual


This platform has an ASA 5512 Security Plus license.

 

Any help will be appreciated.

 

0 Helpful
7 Replies 7

Marvin Rhoads
Hall of Fame
Hall of Fame

‎07-20-2015 02:36 PM

How many subinterfaces total do you currently have configured? (You cannot exceed 100 on that platform.)

0 Helpful

venkat0011
Level 1
Level 1
In response to Marvin Rhoads

‎07-20-2015 04:16 PM

About 15

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame
In response to venkat0011

‎07-20-2015 07:38 PM

So you're well within the platform limit. The license does not affect that limit.

Your config command paste did not convey well. Can you tell us exactly what part of the command the parser is rejecting?

0 Helpful

venkat0011
Level 1
Level 1
In response to Marvin Rhoads

‎07-21-2015 08:24 AM

Thanks. 

the error comes when i type

interface GigabitEthernet0/1.1016

                                                     ^

ERROR: % Invalid input detected at '^' marker

The ^ points right under the sub interface number

If I try an existing interface it works just fine

scl2-fwl01/admin(config)# interface GigabitEthernet0/1.1015

scl2-fwl01/admin(config-if)#

 

I wonder If Iam missing some step.

 

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame
In response to venkat0011

‎07-21-2015 08:49 AM

It almost looks like a bug though a quick bug search didn't show any as far as I could see.

You aren't running in multiple context mode are you?

What does it tell you if you type (in config mode):

interface GigabitEthernet0/1.?

My ASA gives me 

configure mode commands/options:
  <1-4294967295>  GigabitEthernet interface number
0 Helpful

venkat0011
Level 1
Level 1
In response to Marvin Rhoads

‎07-21-2015 09:04 AM

Yes, it only shows me my existing vlans .Strange

scl2-fwl01/admin(config)# interface GigabitEthernet0/1.?


configure mode commands/options:

  0/1.100     0/1.1001    0/1.101     0/1.1011

  0/1.1013    0/1.1014    0/1.1015    0/1.102

  0/1.103     0/1.120     0/1.166     0/1.666
0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame
In response to venkat0011

‎07-21-2015 09:08 AM

If you have multiple context mode running, those may have been allocated to your current context from the system context.

Reference.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card