Velocity Reviews - Computer Hardware Reviews
Home Forums Reviews Guides Newsgroups Register Search
Member Login:

Velocity Reviews > Newsgroups > Computing > Cisco > Re: Maximum VLAN interfaces PIX515-UR

Reply
Thread Tools

Re: Maximum VLAN interfaces PIX515-UR

 
 
Patrick
Guest
Posts: n/a
 
      07-25-2003
(Walter Roberson) wrote in message news:<bfpjaf$okj$>...
> In article <> ,
> Patrick <> wrote:
> :At this moment I'm creating a configuration for a PIX515-UR.
>
> :I never have created VLAN's on a PIX before and there is little
> :information on it. Sure, there is more then enough about how to create
> :VLAN's, but not how the number of interfaces are counted.
>
> :I have six physical interfaces en I know I can a maximum of ten
> :logical interfaces. But does the physical VLAN count as an interface?
>
> The 515-UR does not support 10 logical interfaces: it supports
> 8 logical interfaces at maximum, and a *total* of 10 interfaces at most.
> The number of logical interfaces you can have is 10 minus the number
> of phyiscal interfaces. With 6 physical interfaces, that would leave
> you only 4 logical interfaces.
>
> This behaviour is not at all clear in the command reference,
> but it is documented in the Configuration Guide.
>
> My comparison chart lists the number of logical and total interfaces
> supported for each 5xx series model, using information derived
> from the Configuration Guide; the chart is at
>
> http://www.ibd.nrc.ca/~roberson/cisco-pix-models.txt


Walter,

Thank you for your response.

So, would it be possible to move one of the logical VLAN's to the
physical level? The config would then look like this:

nameif ethernet0 NS-LAN-WAN security0
nameif ethernet1 MERCURIUS security5
nameif ethernet2 Stateful-failover security99
nameif ethernet3 VBS-PRD security95
nameif ethernet4 VBS-ACC security75
nameif ethernet5 DMZ-PRD security55

interface ethernet3 vlan95 physical
interface ethernet3 vlan90 logical
interface ethernet4 vlan75 physical
interface ethernet4 vlan70 logical
interface ethernet5 vlan55 physical
interface ethernet5 vlan50 logical

nameif vlan90 VAS-PRD security90
nameif vlan70 VAS-ACC security70
nameif vlan50 DMZ-ACC security50

ip address NS-LAN-WAN 172.16.0.6 255.255.0.0
ip address MERCURIUS 10.255.3.2 255.255.255.0
ip address Stateful-failover 10.255.0.1 255.255.255.252
ip address VBS-PRD 10.255.2.65 255.255.255.192
ip address VBS-ACC 10.255.2.1 255.255.255.192
ip address DMZ-PRD 10.255.8.1 255.255.254.0
ip address VAS-PRD 10.255.6.1 255.255.254.0
ip address VAS-ACC 10.255.16.1 255.255.254.0
ip address DMZ-ACC 10.255.18.1 255.255.254.0


And the of course a trunk to the switch.

TIA

Patrick
 
Reply With Quote
 
 
 
Reply

« Re: Cisco 837 Combination Public and Private Addresses - Help Wanted | trouble with format disk0: on 7200 »
Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Creating the maximum number of menus and maximum number of stills rossco DVD Video 2 11-24-2005 09:33 PM
pix vlan interfaces and routing Bill F Cisco 1 09-17-2004 06:15 AM
vlan sub-interfaces on router doing nat Bill F Cisco 0 09-16-2004 11:21 PM
The number name 'System.Web.UI.WebControls' contains more than the maximum number of prefixes. The maximum is 3. mayur ASP .Net Web Controls 2 07-16-2004 05:14 PM
The number name 'System.Web.UI.WebControls' contains more than the maximum number of prefixes. The maximum is 3. mayur ASP .Net 2 07-02-2004 10:35 AM



Advertisments
 


Powered by vBulletin®. Copyright ©2000 - 2013, vBulletin Solutions, Inc..
SEO by vBSEO ©2010, Crawlability, Inc.
Contact Us - Archive - Privacy Statement - Top