Hi,
A question about etherchannel configuration changes. What's the right way to make these changes without mucking up what is working?
Note: The below configurations each connect to Firepower appliances running ASA code (not FTD). Port-channels on the firewall side have been validated as being correct and identical for both configurations. The first one (Switch1) does not work and the interface is showing as failed on the firewall side. The second one (Switch2) works and traffic flows through those links with no issue. Ideally, the changes made to the first configuration would emulate the second config since that one works and the first one does it.
Switch1 - not working
interface Port-channel20
description Outside
switchport
switchport mode trunk
switchport trunk allowed vlan 2
interface GigabitEthernet1/11
switchport
switchport mode trunk
switchport trunk allowed vlan 2
interface GigabitEthernet1/12
switchport
switchport mode trunk
switchport trunk allowed vlan 2
channel-group 20 mode active
- What would you change?
- Where would you change it?
- In what order would you change it?
Switch2 - working
interface Port-channel20
description Outside
switchport
switchport mode access
switchport access vlan 2
speed nonegotiate
interface GigabitEthernet1/11
switchport
switchport mode access
switchport access vlan 2
speed nonegotiate
channel-group 20 mode active
interface GigabitEthernet1/12
switchport
switchport mode access
switchport access vlan 2
speed nonegotiate
channel-group 20 mode active
Thanks and let me know if you need any additional info to form an opinion.
No comments:
Post a Comment