I need to put two IP addresses on the 0:0 interface of an ISG SSP-410 appliance for management. One will be used for an out-of-band network (VLAN 1) to communicate with Management Center, and the other (VLAN 2) will be for access via SSH from administrator workstations and Linux consoles. These VLANs are not able to route to one another.
When I configure the ISG with an address from each VLAN, only the IP on VLAN 1 is responding, even though ISG is connected to a switch port with both VLANs trunked. The ProxySG running on this ISG also has these two VLANS assigned on interface 0:0 and interface 0:0.2, and both work just fine, so the VLAN tags are coming through from the switch.
The only thing I can think is that the ISG does not have any way to "tag" the VLAN to the IP. This is dead simple in the ProxySG. For years I've simply added a sub-interface and VLAN to a ProxySG by using the command "interface 0:0.xxx" and configuring the new IP in the sub-interface. The ISG does not seem to support this same capability.
Any idea how to get the ISG to answer up on two IPs in different VLANs on the same physical interface?
------------------------------
Harry
------------------------------