What response do you get from 'no ip address dmz........'? Can't think of anything else except a bit of a long winded way around it, but copy the config, remove the 4 port card. Boot up the box. Power it down and re-insert the card.
But...just out of interest - why are you bothered...or is it just out of interest that you want to know? Cheers, Gaz ""Hartnell, George"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Typical problem. Hopefully an easy answer. The manual says so, but.... > > I've configured interface 3 on a 6 port 515 for a dmz. I needed to change > that segment back to its original "127.0.0.1 255.255.255.255" ip address > assignment. Failover goes just ducky back to 0.0.0.0. I get the infamous > "Sorry, not allowed to enter IP address on same network as interface n." > n=3 in this case. > > The problem, as stated in the manual, goes like this. "...you may not be > permitted to enter subsequent IP addresses if another interface's address is > in the same range as the first. ... To fix this problem, reenter the first > command specifying the correct network mask." > > Sure. I've reentered every 'ip address (interfacename)' on the box, and I > still get the "Sorry" story on that dmz. The best I can get is the dmz > interface (interface #2) to a '127.0.0.1 255.0.0.0' designation. Interfaces > 3 and 4 are unchanged at 127.0.0.1 255.255.255.255. Interface 5 is a > failover 100Mb. Fortunately, I won't need to heat up the dmz until next > week, and performance is unaffected. > > Sooo, "show ip" looks similar to the below: > > ip address outside w.x.y.z 255.255.255.0 > ip address inside w.a.b.c 255.255.255.0 > ip address dmz 127.0.0.1 255.0.0.0 ip address intf3 127.0.0.1 255.255.255.255 ip address intf4 127.0.0.1 255.255.255.255 > ip address intf5 10.10.10.42 255.255.255.252 > > Of course I want dmz to now look like intf3 and 4. But nooooo! The "Sorry" > line continues. > > What's a poor administrator to do? Yup, tried the TAC, yup, 'clear xlate', > too. Yup, got rid of all the 'static's, 'routes' and access-groups relating > to the dmz. Stumped. So far. > > Any words of illumination? I'm at rev. 5.3(1) at the moment. Again, this > interface is 'shutdown', and I anticipate no problems with a live > reconfigure to another ip segment, but it is bothersome that I cannot get it > to return to its original loopback address. > > Best, G. > VP OGC Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=37677&t=37666 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
