2960S Skills Of Switch Configuration Are Greater Than Network Design

Jan 5, 2012

One of our clients is replacing some of their aging network components with 4 Cisco 2960S switches. Unfortunately in this case, my skills of switch configuration are greater than my skills of network design. I have a really crude network diagram of their basic network layout (4 servers, 4 switches, and a number of endpoints).

How would you experts design the physical connections in such a way as to facilitate some redundancy?

View 18 Replies


Cisco Switching/Routing :: 2960S / LAN Design Using 10G EtherChannels?

May 11, 2011

We are designing a LAN Network for ourselves.The proposed design is as follows:
4 x 2960S switches in a Stack   Access-Stack-I 4 x 2960S-PoE switches in a second Stack Access-Stack-II
2 x 3750X switches in a Stack   Core-Stack
Now I would like to connect it in the following manner ?First,I would like to use EtherChannel using the 10Gig LinksSecondly, I would like to use Cross-Stack EtherChanel too.I have given a graphical illustration of the connectivity Now my Qs: a) Will the 2960S supports EtherChannel using the 10G links and the 3750X too... b) Does the proposed solution will work... or It will have any problems.

View 4 Replies View Related

Cisco Switching/Routing :: 2960S / 6509 VSS - QoS Design Options?

Sep 26, 2012

On occasion employees are downloading large files for business purposes, at very fast speeds. This has the potential to overwhelming our Internet circuits which causes our Customers problems accessing our Web Hosting services.
Our network is comprised mostly of 2960S switches for the employees. Webservers are connected to other 2960(nonS) switches and directly into the 6509 VSS.
Customer’s traffic comes in through one pair of ASA’s.
Employee’s traffic is handled by another pair of ASA’s.
Employee traffic flows from the 2960’s, past an L3 SVI on the 6509, then through the Employee ASA’s, then to the ASR’s, then out to the ISP#1 or ISP#2
Web Server traffic flows from the 2960’s or 6509, to the Customer ASA, then to the ASR’s then out to ISP#1 or ISP#2. Web server traffic does not flow through an L3 SVI.
The goal is to allow employees the ability to have the most bandwidth they can, however customer traffic always has to be preferred in the event of a ISP circuit approaching its limit.

View 1 Replies View Related

Cisco :: Adding 2960S Switch To Network And Voip?

Apr 16, 2012

I have 6 cisco switches already on my network and I just got a 2960S PoE switch that I need to enable for VoIP. The voice vendor is coming in to setup our phone system for VoIP and I need to enable this new 2960S 48 port switch for the VoIP phones, I don't know how to do that, or other taskes needed for this project.

I was told that I need to uplink the new 2960S with the Catalysy 4507R using an ethernet cable and to "trunk the ports" and enable the 2960S as a VTP client - ok great - how?

I was told I also need to use the switch port voice VLAN command for the new VLAN - again, great - but how?

I actually was able to telnet into the switch and I gave it an IP and I created a new vlan but thats all. We are using non Cisco IP phones.

View 4 Replies View Related

Cisco LAN :: 2960S POE Switch - Monitor Network Bandwidth?

Aug 13, 2012

I have a cisco catalyst 2960-s PoE switch. I have a web access to the switch and am able to get statistics on each port. However, I am wondering if there is a way to have a diagram of the trafic on each port?
Also, what is the best way to monitor the trafic on a router ( i have a cisci 1811W)

View 9 Replies View Related

Greater Network Throughput With 7200 RPM Drive Compared To 5900?

Jun 30, 2011

Is there much of a network speed difference between a green drive, Seagate Barracuda or a regular drive?i.e. would you see greater network throughput with a 7200 RPM drive compared to a 5900 RPM drive?

View 6 Replies View Related

Cisco WAN :: Best Design For Simple Configuration 2901

Nov 20, 2011

I'm new to routing and cisco in general.  I'm inheriting a rather simple setup but would like to approach the next steps with a good strategy.  Currently we have a 2901 router with public IP's on bother interfaces.  The internal facing interface is our gateway for some webservers and a firewall.  Not we are looking to add a colocation site and establish a site to site VPN using another 2901. My goal is to have the colocation use the same internal network.  My question is what is the best way of going about this since the router at the main site has public IP's on both interfaces?  Do I need to multi-home the internal facing interface?  If so, what else needs to be done?

View 1 Replies View Related

Cisco WAN :: 3845 Best Design And Configuration To Utilize 3 Links

Apr 12, 2012

i have two Cisco 3845 routers connected to 3 different ISPs ,
-ISP 1 with link bandwidth of 24 Mbps
-ISP 2 with link bandwidth of 16 Mbps
-ISP 3 with link bandwidth of 8 Mbps
 i have a public AS from a ripe along with 2 Class Address (Public independent)
1) what is the best design and configuration to utilize the 3 Links ,outbound and inbound (since we have our public address along with AS) my boss told me,all These  3 links  must be active
2)what is the recommended design and configuration for the whole topology , pls share the best gotchas
3)what is the need of iBGP?why we need it when we run bgp?

View 10 Replies View Related

Cisco Application :: ACE And FWSM Design And Configuration Guideline With 6500

Apr 8, 2013

I have Cisco 6500 with FWSM and ACE module which are in one central DC. Also we have four different Datacenter (Hub & spoke) and in our FWSM we have configured four contexts in central DC FWSM for each DC. Each DC servers are different VLAN and IP subnet. Now we have to configure ACE module for load balancing among those different subnet servers. What will be the design and configuration for this solution? Like routed or one-arm mode design.
Scenario Example:
1.  App Server01
FWSM Context: DC1
Physical Location:DC1

Now customer requirement is we have to load balance using ACE between these App Servers which are in different context s in FWSM and one Server is not FWSM. how to configure or design or placement of ACE and FWSM for above scenario.

View 4 Replies View Related

Cisco Wireless :: 1240 Link Of Sample Configuration Of AP In Design Zone

Apr 26, 2012

I'm trying to find a document in Design Zone about configuring a Wireless AP and I wasn't able to find it. I have a good experience configuring switches, routers and firewalls in CLI and this is the first that I have my hands on APs (1240 AG).

View 2 Replies View Related

Cisco WAN :: 2960S / QoS Configuration For Voice?

May 14, 2012

This is my first attempt in configuring the QoS,

IP-phone -->2960S ----> 6506E ----> 2811 --- > provider MPLS cloud ----->2811 --->C3548---->2960S-->ip phone
i have my configuration for 2960S and 6506E but am strugling with 2811

View 4 Replies View Related

Cisco Switching/Routing :: 2960S QoS Configuration Not Work

Dec 20, 2012

Recently I'm working with my client to setup their network and he want me to limit user access internet bandwidth to 2 Mbps and the topology show below.Users ---> Switch ---> NAT Router ---> (int gi1/0/24 - qos apply)  Edge Switch ---> INTERNET ROUTER (12Mbps) --->> INTERNET,This is my configuration, but it doesn't work, the end user still able to get more than 2Mbps internet speed.Access-list 100 permit ip any any dscp default,class-map match-all QoS_Floor_Limit, match access-group 100.

View 1 Replies View Related

Cisco Switching/Routing :: 2960S QoS Configuration Doesn't Work

Apr 22, 2013

my client to setup their network and he want me to limit user access internet bandwidth to 2 Mbps and the topology show below.
Users ---> Switch ---> NAT Router ---> (int gi1/0/24 - qos apply)  Edge Switch ---> INTERNET ROUTER (12Mbps) --->> INTERNET
 This is my configuration, but it doesn't work, the end user still able to get more than 2Mbps internet speed.
access-list 100 permit ip any any dscp default
class-map match-all QoS_Floor_Limit
match access-group 100
policy-map QoS_Floor_Limit


View 6 Replies View Related

TP-link TL-SF1016D Switch Network Configuration?

Nov 18, 2011

How do I configure my router to run with my TP-link TL-SF1016D switch. If I connect my switch on my router I cannot have to internet?

View 1 Replies View Related

Cisco Switching/Routing :: 3750x / 2960S - How To Setup InterVLan Configuration

Jul 6, 2012

I am trying to setup intervlan configuration and stuck on a problem. Here are the details:
1. Switches Catalyst 3750-x (as core switch) and Catalyst 2960S (as access switch)

2. Both switches have VLAN 20 and VLAN 1 on their database and both are active. BTW, after I figure out how to properly configure interVLAN routing the native VLAN 1 will not be used anymore. This is just an initial test.

3. VLAN 20 SVI interface (IP on 3750 is up and can be pinged from catalyst 2960.

4. VLAN 1 SVI interface (IP on 3750 is up and also can be pinged from Catalyst  2960.

5. Catalyst 3670 can ping a client computer (IP connected to Catalyst 2960.

6.  IP route enabled on 3750

7. Trunking is enabled on etherchannel connecting both 3750 and 2960

8. Client computer in VLAN 20 (connected to 2960) can ping VLAN 20 SVI interface on switch 3560.But, the client computer in VLAN 20 can not reach any computer in VLAN 1 and vice versa. Strangely, the switches which these computers are connected to can ping each other or any connected client copmuters without any problem as described above.

View 8 Replies View Related

Cisco :: 2960S Catalyst Access Switch From VPN

Dec 10, 2012

I have a 2960S Catalyst switch in my LAN, with the firewall and the servers in the same VLAN (vlan 3).All the servers and the firewall are in the vlan 3 are in the "" subnet, the firewall has the IP "".I can land on the firewall with a VPN ( which has a complete view on the subnet 19/24.I can access, manage and get SNMP information of the Catalyst from the servers but I can't do the same from the VPN.Is there some feature I need to enable on the switch in order to allow to access it?

View 4 Replies View Related

Cisco AAA/Identity/Nac :: Dynamic ACLs On 2960S Switch Using ACS 5.2

Apr 20, 2011

I am testing a ACS 5.2 in our lab environment, I am testing port security for policy based VLAN and ACL assignment. The problem I am having is with the 2960S switches; in my current setup it is working but it doesn't seem to me like it is the way that it should be working. I have a downloadable ACL in the ACS defined and associated to an Access policy and it is working correctly. The problem is, from what I understand, I have to assign a default ACL on the switchport? So what I have assigned on the switchport is ip access-group 10 in. The downloadable ACL from the ACS is also called 10. Do I really need to match the ACL on the switchport with the ACL name I have created in ACS? That doesn't seem like it's dynamic if that is the case? What is the ACL that I should apply to the switch port (if any) in order for the downloadable acls that I configure in the ACS to work no matter what port the user is patched into?

View 2 Replies View Related

Cisco Switching/Routing :: 2960s / Add One More Switch In Stack?

Apr 29, 2013

I have a running setup having 2 Cisco 2960s 24 TS switch with Stack configuration. Now I want to add one more same Cisco switch. My questions are:-
1) How can I do this...(Should follow the same process as I did before.

2) Could I do this without impacting the service. i.e. without rebooting the switch.

3) What should be the connection archiecture as of now since there is two switch so it is connected 1 -1 and 2-2. but for 3 switch should we require to change the connectivity.

View 1 Replies View Related

Cisco Switching/Routing :: Information About PoE Of Switch 2960S

Jan 21, 2013

I use the Switch 2960S support PoE and 10 access points cisco.I have one more question:
-- If all 10 access points cisco use copper cable to connect to 2960S, 5 access points use power adapter and 5 access points use power from Switch. How Switch 2960S will provide power for 10 AP or switch 2960S will understand and only provide power for 5 APs?

View 3 Replies View Related

Cisco AAA/Identity/Nac :: 2960S Web Authentication With RSA Secure-ID On Switch

Feb 4, 2012

I've recently been looking into linking in our Cisco 2960S Gb Switch with RSA SecureID via Radius.I've already managed to link it in for ssh access
but I've not managed to get it working for http / web access to the switchI think this is because we're using "single use" tokens for maximum security with RSA Secure-ID and the web interface attempts to authenticate multiple times against the Radius part of the RSA SecureID server (okay on the first authentication, but each time after it's going to want a different token code)
(if there's a way to get the switch to just authenticate once instead of multiple times against the radius server) For info the switch is a WS-C2960S-24TS-L with IOS 15.0(1)SE2

View 2 Replies View Related

Belkin Routers :: Surf N300 - Configuration With Lan Switch Through Network?

Nov 23, 2012

We have 12 PC connected through a Switch(D-Link 10/100 mbps) with Configtured with Manual IP Address. the IP address range is subnet mask default gateway Cable Connected from Modem to Switch Directly & all the computer access internet by filling DNS with other, We fill this DNS only where we want Internet access allowed by limiting that pc with Limited User access. How to configure Belkin Surf N300 Router with this network.

View 1 Replies View Related

Home Network :: How To Simulate And Analyze Network Design In OPNET

Apr 19, 2011

My objective is to analyze company network and enhance it.So I went to this company and ask them to give their network design.

View 2 Replies View Related

Cisco Switching/Routing :: IOS Upgrade Option In 2960S Switch

Dec 11, 2012

We  have a Cat2960-S Series PoE+ currently running 12.2(55) SE5 ios with SW image C2960S-UNIVERSALK9-M.We want to upgrade the ios to the lastest version but found there are 2 version: 12.2(53) SE2 and 15.0(1) SE.Which is the best & suitable for upgrade?

View 3 Replies View Related

Cisco Switching/Routing :: 2960s Switch Stack IOS Upgrade?

Apr 18, 2012

I was just curious about something with upgrading a 2960s stack.
To copy the image to the switches in the stack I use: Switch# archive download-sw tftp://x.x.x.x/filename
Does this also set the image as the boot image or do I still need to issue the boot system flash command?
can I just issue this command on the master switch and reload and the new config will be pushed to the rest of the switches?

View 5 Replies View Related

Cisco Switching/Routing :: Switch 2960S Did Not Configure Username

Jun 5, 2013

After i have already configured my cisco switch 2960 , i configured my console as the below [code] after i reboot my switch , i found that the switch asked me for username . However i did not configure username , how can i solve this problem , without password reset . I have already configured 15 switch , 100% this problem will be in all switches.

View 19 Replies View Related

Cisco :: When Will Campus Manager 5.2.1 Support 2960S Switch Series

Sep 29, 2011

When will Campus Manager support the 2960S switch series?

View 2 Replies View Related

Cisco Switching/Routing :: Configure VLAN On 2960S Switch

Jan 20, 2013

I have hybrid network in which I want to configure VLAN on  Cisco 2960 S switch. I have unmanged switch where my DHCP server and other servers are connected. Now I created two VLANs on cisco 2960S and they don't talk each other, but as soon as I connect unmanaged switch to 2960S switch, both VLANs start communicating which I don't want. I want to listen server traffic from unmanaged switch from both VLANs but simultaneously I don't want to communication between two VLANs.

View 10 Replies View Related

Cisco Switching/Routing :: Enabled Syslog On 2960S Switch

Oct 3, 2012

I have enabled syslog on my Cisco 2960S swtich as shown below -
-logging facility local6
-logging host transport tcp port 514
I have sent the port to TCP since that is what is configured on the SYSLOG server which is a CENTOS 5.8, running rsyslogd.I have tested the rsyslogd locally and it work.However i want to send any and all log messages in the buffer to my syslog server and it is not working.there is no firewall on the CENTOS and the ASA firewall filter is enabled for outgoing traffic.

View 5 Replies View Related

How To Design Network

Sep 30, 2012

and this router will connect to 18 access point.and each access point need 30 usable host...how to design this netwotk, what subnet should i use...there is only 1 router, so just have only 1 default gateway,it is if the network have too many host, the speed will slow down, because they need wait others host to broadcast?

View 11 Replies View Related

Cisco Switching/Routing :: 2960s - Unable To Access Lite Switch

Nov 9, 2012

Unable to access switch from outside the local network. Can get to all routers and PC's

View 2 Replies View Related

Cisco Switching/Routing :: 2960S Unable To Connect To Core Switch

Sep 21, 2012

I have a problem with extending the LAN on a client site . They are looking to extend the LAN with a 2960S-series switch. Already in place is a 4510 switch which the 2960 is connected to via fibre. The 2 switches are both set up but there is no connectivity as I cant ping between them or anything. The management VLAN on the 2960 shows line up, protocol down, which I believe means the VLAN is enabled but there is a form of physical mismtach on the ports. I have attached the configs of both switches. I feel it might be a problem with GBIC module compatibility. The SFP installed on both ends of the switch are GLC-SX-MMD. On the 4510, the SFP sits in a twingig converter (CVR-X2-SFP) but there is no light on it at all when the cables are plugged in.

View 40 Replies View Related

Cisco AAA/Identity/Nac :: 2960S Switch-port Stuck In Guest Mode?

Mar 18, 2012

I am using 802.1x authentication with multi-domain ports; Phone and PC connected to phone. The phones are Nortel (Avaya) and the PCs are Dell/HP Laptops. All are configured for Certificate authentication and this works well. However we sometimes get some ports stuck in Guest mode. when a non certificated laptop connects to a phone port and fails authentication, the data port is placed in the Guest VLAN. However when the laptop disconnects the port isn't reset and remains in the guest state. When a subsequent good laptop connects and attempts to authenticate the switch ignores this and leaves the data port in the Guest VLAN. he switch is a 2960S with Version 12.2(58)SE2 IOS.
The port is configured as follows:
interface GigabitEthernet1/0/15
description DANS Port
switchport access vlan 1807
switchport mode access
switchport voice vlan 1855
priority-queue out


I placed the AAA, dot1x, eap and auth debug on for all events and then connected a good laptop, the only debug message I got were as follows:
Mar 19 16:17:01.391 GMT: AUTH-EVENT (Gi1/0/15) dot1x_switch_is_restrictive_vlan_open_auth:Multi-Host with Guest Vlan/Auth Fail Vlan or open aut
Mar 19 16:17:01.653 GMT: AUTH-EVENT (Gi1/0/15) dot1x_switch_is_restrictive_vlan_open_auth:Multi-Host with Guest Vlan/Auth Fail Vlan or open aut
Mar 19 16:17:02.654 GMT: AUTH-EVENT (Gi1/0/15) dot1x_switch_is_restrictive_vlan_open_auth:Multi-Host with Guest Vlan/Auth Fail Vlan or open aut

I would have expected the auth function to have reacted to the EAP packets sent by the good client when it connected and performed eap authentication but it didn't, all it did was say the ports in Guest mode and left the laptop in this VLAN.

View 2 Replies View Related

Cisco Switching/Routing :: 2960S Replace Master Switch In Stack

Jun 4, 2012

I have a stack of 2960S (c2960s-universalk9-mz.122-55.SE2.bin) and the master has failed (used to have a priority of 14). The second switch has become master (priority 1) as can be seen below: [code]

If I connect a new blank 2960S (same IOS) through the stack ports, will the master sync its config to the new one without causing problems?As I understand the new blank switch will also have a priority of 1 and will by default be numbered as 1. So if the config is correctly synced and I later on want to make switch 1 the master, I need to set the priority: [code]

View 4 Replies View Related

Copyrights 2005-15 www.BigResource.com, All rights reserved