Typical problem. Hopefully an easy answer. The manual says so, but.... I've configured interface 3 on a 6 port 515 for a dmz. I needed to change that segment back to its original "127.0.0.1 255.255.255.255" ip address assignment. Failover goes just ducky back to 0.0.0.0. I get the infamous "Sorry, not allowed to enter IP address on same network as interface n." n=3 in this case.
The problem, as stated in the manual, goes like this. "...you may not be permitted to enter subsequent IP addresses if another interface's address is in the same range as the first. ... To fix this problem, reenter the first command specifying the correct network mask." Sure. I've reentered every 'ip address (interfacename)' on the box, and I still get the "Sorry" story on that dmz. The best I can get is the dmz interface (interface #2) to a '127.0.0.1 255.0.0.0' designation. Interfaces 3 and 4 are unchanged at 127.0.0.1 255.255.255.255. Interface 5 is a failover 100Mb. Fortunately, I won't need to heat up the dmz until next week, and performance is unaffected. Sooo, "show ip" looks similar to the below: ip address outside w.x.y.z 255.255.255.0 ip address inside w.a.b.c 255.255.255.0 ip address dmz 127.0.0.1 255.0.0.0 <----- bummer here ip address intf3 127.0.0.1 255.255.255.255 <-- conflict here ip address intf4 127.0.0.1 255.255.255.255 ip address intf5 10.10.10.42 255.255.255.252 Of course I want dmz to now look like intf3 and 4. But nooooo! The "Sorry" line continues. What's a poor administrator to do? Yup, tried the TAC, yup, 'clear xlate', too. Yup, got rid of all the 'static's, 'routes' and access-groups relating to the dmz. Stumped. So far. Any words of illumination? I'm at rev. 5.3(1) at the moment. Again, this interface is 'shutdown', and I anticipate no problems with a live reconfigure to another ip segment, but it is bothersome that I cannot get it to return to its original loopback address. Best, G. VP OGC Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=37666&t=37666 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
