• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 300
  • Last Modified:

pix firewall

hi i have a cisco 837 router and i can access the sdm as usual.

note: i do not have an (adsl line) as im currently with virgin using their vmdg480 router that i have currently changed from default dhcp & set to (modem/enable) instead that provides me with public address details at my isa 2006/external nic.

note:  currently i have set my win 2003 server as 192.168.0.2/24 that enables me to ping the below address which also allows me access to the sdm gui:

config t
int eth0
ip address 192.168.0.1 255.255.255.0
no shut

config t
int fa1
description connected to win 2003 server as stated above
no ip address

config t
int fa2
ip address x.x.x.x x.x.x.x
ip addresses may not be configured on l2 links
no switchport
%invalid input detected at '^' marker

config t
description x-over cable connected to virgin vmdg480 router to internet
int fa4
no ip address

question 1.  can anyone tell me what i need to configure next in order for me to enable the lan ports fa1 & 4 as only offers: gre or loopback  ?
0
mikey250
Asked:
mikey250
  • 5
  • 2
1 Solution
 
kellemannCommented:
You can't put ip addresses directly on the FA ports, they are layer 2 only. Instead you need to create VLAN interfaces which do support layer 3 ip addresses.

For example:

inter vlan 2
ip add x.x.x.x y.y.y.y

inter fa2
switchport access vlan 2
0
 
mikey250Author Commented:
hi

i have not managed to return back to my cisco 837 wan connectivity issue as yet but sometime next week i will do!!

question 1.  just for clarification, are you saying adding a 'vlan' on a port will change it from layer 2 to layer 3 and make it a 'wan' connection  ?

i will even add 'ip routing' which i am not sure is needed as assumed it was when 'routing protocols' were used
0
 
mikey250Author Commented:
due to trying to carryout some other issues i have had to put a hold on this issue i have but once resolved will then return back to this issue.
0
Protect Your Employees from Wi-Fi Threats

As Wi-Fi growth and popularity continues to climb, not everyone understands the risks that come with connecting to public Wi-Fi or even offering Wi-Fi to employees, visitors and guests. Download the resource kit to make sure your safe wherever business takes you!

 
mikey250Author Commented:
morning kellemann, I decided to take a look back at this issue I have.

by the way the following does not work at all on ciso 837:

config t
int vlan 2 - invalid input
0
 
kellemannCommented:
Hello again.

I did some research on the 830 series, because to be honest I haven't worked with one in years.
I'm afraid you are out of luck. The built-in switch doesn't support VLANs. It simply acts a dumb switch, using Ethernet0 for layer3 access. That means you can only configure a single internal network, apart from loopback interfaces.  This Q&A lists the differences between models, and you need a 850 or 870 series in order to get VLAN support in the switch.

http://www.cisco.com/en/US/prod/collateral/routers/ps380/ps6200/prod_qas0900aecd8028a982_ps380_Products_Q_and_A_Item.html
0
 
mikey250Author Commented:
hi kelleman, ok thanks for that!  much appreciated.
0
 
mikey250Author Commented:
sound advice.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Prepare for an Exciting Career in Cybersecurity

Help prevent cyber-threats and provide solutions to safeguard our global digital economy. Earn your MS in Cybersecurity. WGU’s MSCSIA degree program curriculum features two internationally recognized certifications from the EC-Council at no additional time or cost.

  • 5
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now