tdampier
asked on
configuring ip routing on a lan subinterface is only allowed if that subinterface is already configured as part of an
I have a Cisco 1720 router that I am trying to configure for ISL VLAN routing. I have a Cisco 3524xl switch that has been configured for the port of the router in switchport mode trunk.
However when I try to use a sub-interface on the 1 fast ethernet 0 port and enable isl encapsulation it gives me the error in the subject line.
it will let me add a secondary address but that does not do much good on creating sub interfaces to simulate two.
Any ideas?
This is ios 12.13b ip\fw\ids plus 3des
Thanks,
Troy
However when I try to use a sub-interface on the 1 fast ethernet 0 port and enable isl encapsulation it gives me the error in the subject line.
it will let me add a secondary address but that does not do much good on creating sub interfaces to simulate two.
Any ideas?
This is ios 12.13b ip\fw\ids plus 3des
Thanks,
Troy
ASKER
that is the configuration I have tried. Unfortunately, it will not allow me to type in the encapsulation isl ?vlan number command it is not an option. It shows it then will not execute the command.
What does the switch configuration look like?
I have VTP enabled v2 and I have added VLAN 2 and VLAN 3 but where do I place the VLAN 1 ip address on the example above?
Thanks for the quick reply.
What does the switch configuration look like?
I have VTP enabled v2 and I have added VLAN 2 and VLAN 3 but where do I place the VLAN 1 ip address on the example above?
Thanks for the quick reply.
What kind of switch?
if it's one of the IOS based kind the port config will look something like:
!
interface FastEthernet0/1
switchport mode trunk
!
the VLAN1 question, i'll answer like this:
I assume you want the vlan1 for the management interface of the switch...Why don't you assign a different vlan number and use that for your switch management interface. Why you ask? because vlan1 is the default vlan. i.e. if someone mistakenly forgets to set the port's vlan properly, they will by default be on your switch's management interface subnet, which might be a security issue.
So, that being said, let me call VLAN2 your management LAN :)
feel free to substitute vlan2 for vlan1 if that suits your needs better.
So, the router's vlan2 interface will still look like this:
!
interface FastEthernet0/0.2
description Management VLAN
encapsulation isl 2
ip address 172.16.1.1 255.255.255.0
no ip redirects
!
on the switch:
interface VLAN2
description Switch's management interface
ip address 172.16.1.2 255.255.255.0
no ip directed-broadcast
no ip route-cache
if it's one of the IOS based kind the port config will look something like:
!
interface FastEthernet0/1
switchport mode trunk
!
the VLAN1 question, i'll answer like this:
I assume you want the vlan1 for the management interface of the switch...Why don't you assign a different vlan number and use that for your switch management interface. Why you ask? because vlan1 is the default vlan. i.e. if someone mistakenly forgets to set the port's vlan properly, they will by default be on your switch's management interface subnet, which might be a security issue.
So, that being said, let me call VLAN2 your management LAN :)
feel free to substitute vlan2 for vlan1 if that suits your needs better.
So, the router's vlan2 interface will still look like this:
!
interface FastEthernet0/0.2
description Management VLAN
encapsulation isl 2
ip address 172.16.1.1 255.255.255.0
no ip redirects
!
on the switch:
interface VLAN2
description Switch's management interface
ip address 172.16.1.2 255.255.255.0
no ip directed-broadcast
no ip route-cache
sorry...you *said* what kind of switch...nm ;)
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I am not using 12.2.T I am using 12.2.16. I gave up on the other OS because I wanted the other feature enhancements.
What feature set are you looking for to create sub-interfaces?
thanks,
Troy
What feature set are you looking for to create sub-interfaces?
thanks,
Troy
ASKER
However, you are correct it does require a 2600 or above to for the features set IEEE 802.1Q Trunking :) So you gave me my answer. Good thing I ordered that second interface :)
Thanks,
Troy
Thanks,
Troy
ASKER
Should have thought of this myself :)
I'd say that the 1700 probably does support subinterfaces, just not isl trunking. The following link looks like 802.1q might be your best bet and the 3500 supports it.
http://www.cisco.com/en/US/products/hw/routers/ps221/products_configuration_guide_chapter09186a008007cd23.html
hope this helps.
once the vlans are created on the switch, the eth interface configs should look something like this:
!
interface FastEthernet0/0
description FE trunk to switch
no ip address
duplex auto
speed auto
!
interface FastEthernet0/0.2
description Management VLAN
encapsulation isl 2
ip address 172.16.1.1 255.255.255.0
no ip redirects
!
interface FastEthernet0/0.3
description Management VLAN
encapsulation isl 3
ip address 172.16.2.1 255.255.255.0
no ip redirects
!
note that the FE trunk has no ip address...only the subifs.