Step 2: Take a backup of your current config, If you have already created your inside interface you need to clear it out. You will lose some other config when you do this (NAT, DHCP etc).
Step3 : Create the BVI virtual interface (the number will match the bridge-group number we use later to assign ports)
interface BVI2
nameif inside
security-level 100
ip address 10.32.11.254 255.255.255.0
Step 4: Assign other ports to the bridge group (bridge-group 2 matches with BVI2 interface number) you need to give each port a nameif or it won’t work (don’t ask me how I know that)
interface GigabitEthernet1/2
bridge-group 2
nameif inside_1
security-level 100
interface GigabitEthernet1/8
bridge-group 2
nameif inside_2
security-level 100
Step 5: Setup your DHCP / ACL’s / NATs again as it might have gotten cleared out
dhcpd address 10.32.11.10-10.32.11.199 inside
dhcpd dns 10.32.0.4 10.32.0.5 interface inside
dhcpd enable inside
Can you ping between those 2 hosts? interface GigabitEthernet1/2 and interface GigabitEthernet1/8? I cannot ping between them but can ping each of them individually from ASA.
ReplyDelete