Cisco :: 6500 - Unable To Get Configuration
Dec 5, 2011
We have an issue with our 6500 catalysts.
We are regularly seeing the error above on our cat6500 devices when executing a 'sh run ' command:
We've seen this error for quite some time but the frequency seems to be increasing up to the point where it becomes problematic now because backups and other automated actions are failing regularly.
We don't see multiple processes with the commando "sh config lock" at that time. But when we do a "sh users", we can see sometimes multiple users.
I supose it is possible for multiple users to do a logon at the same time, but not make changes at the same time.
We are using IOS s72033-ipservicesk9_wan-mz.122-33.SXI7.bin. It seems that all switches with these IOSses seem to have the problem. But in the bug toolkit I can't find any reference to a bug...
View 3 Replies
ADVERTISEMENT
Mar 2, 2013
I would like to configure a Management ip address on 6500 by giving ip to the SVI. Following is the configuration done
1) int vlan X
ip address 10.1.1.1 255.255.255.0
no shut
However i am not able to reach this Switch IP from other subnet's. for ex:- 192.168.1.0/24.What next configuration should be done, in order to make this work. I dnt want to use any routing protocol.
View 4 Replies
View Related
Jul 17, 2011
In an IPSec port to DUT scenario, with Mode-Config set so as the DUT sends the IP address to the port, I get to a situation in which the DUT continuously enter the "Need config/address" state for the port, even if the port sends its ACK packet to every set IP address from the DUT.
The DUT is a Cisco 6500 Version 12.2 (33) SXI3, having Mode-Configuration configured to provide clients with IP addresses from a local pool. I enabled the "debug crypto isakmp" on Cisco, and below is an extract form the log file:
5d23h: ISAKMP:(80653):Need config/address /* My comments here: This is the first Address configuration message from Cisco to port */
5d23h: ISAKMP: set new node 1768971286 to CONF_ADDR
5d23h: ISAKMP: Sending private address: 94.94.0.164
5d23h: ISAKMP:(80653): initiating peer config to 171.159.1.113. ID = 1768971286
5d23h: ISAKMP:(80653): sending packet to 171.159.1.113 my_port 500 peer_port 500 (R) CONF_ADDR
5d23h: ISAKMP:(80653):Input = IKE_MESG_INTERNAL, IKE_PHASE1_COMPLETE
5d23h: ISAKMP:(80653):Old State = IKE_P1_COMPLETE New State = IKE_CONFIG_MODE_SET_SENT
above debug messages that Cisco produces I can not realize why Cisco resends the IP adderss configuration message for remote peer. Any other methods to use so as to get the reason behind this behavior? Or any explanation to the above behavior?
View 1 Replies
View Related
Mar 22, 2013
I am new to the NCS implementations and configurations. I have one very specific case with Cisco Prime Infrastructure 1.2 and autonomous APs and several issues with Cisco VSS on 6500 switches. So here is the version from Prime:
NCS/admin# show version
Cisco Application Deployment Engine OS Release: 2.0
ADE-OS Build Version: 2.0.1.038
[code]......
Well the issue what we have now is that access point has been added but its not recognized by the NCS prime. I have tried all three versions of SNMP but I get the same result. The SNMP configuration is valid since I use the same for my switching infrastructure. When I enter "debug snmp packets" and "terminal monitor" I can see the SNMP communication between Prime and Aironet 1250 which is standalone.
When I switch to Life cycle theme and go to Operate > Device Monitor Center I see all devices I have added. The Aironet 1250 is reachable but under collection status I get Managed with Warnings. When I hover over with my mouse I get "None available".
I have successfully added my switching infrastructure in total, which is operating perfectly for Catalyst 2960/3650/3750/4500 series but for 6500 under VSS I have some warnings. The device is recognized by the system which is excellent and all is operational. I get the following errors under Collection Status:
feature_sensorSNMP request timed outfeature_powerSupplyFanStatus-6kSNMP request timed outIdentityCapabilityThe device is unreachable.feature_flashdeviceSNMP request timed outsam_ipsla_featureThe device is unreachable.
What can be done to resolve these issues ? I have attached a screenshot of this particular issue. The affected access point is 172.16.165.241.
View 4 Replies
View Related
Apr 26, 2012
Any step-by-step configuration guide of how to enable DAI on Cisco Catalyst 6500 Series Switches.
View 1 Replies
View Related
Dec 20, 2011
I got problem with wake on LAN software.. The software unable to ON all pc's remotely if sitting under different vlan. Everything is ok if using the same vlan. Below are the network diagram & switch configuration.
Layer 3 switch Intervlan routing configuration
ip forward-protocol udp 7
!
interface Vlan4
description vlan Client-WOL
ip address 172.22.51.253 255.255.254.0
ip access-group Deny_HTTP_Vlan1 in
ip helper-address 172.20.1.246
[code].....
After configured all the switches with the above setting, the software still cannot wake all the pc's using LAN. Base on sniffing, i can't find UDP port usage by the software. Attached here with print screen from wireshark.
View 7 Replies
View Related
Aug 26, 2012
I manage a small/medium sized campus network consisting of 4 Cisco 6500 series chassis (each with SUP720's) and a couple hundred Cisco 3550/3560/2960 edge switches. We recently completed a new leg of fiber that will make a completed loop between all of the 6500's .... before I make the pyhsical connection I need to figure out my OSPF entries on each 6500 switch.
View 4 Replies
View Related
Apr 22, 2013
I am migrating services from SUP720-3B to VS-SUP2T-10G= and moving to a VSS configuration between a pair of Cat6506 distribution layer switches. I need to enable QoS on these switches, primarily to trust dscp and also to prioritise voice traffic. The autoqos feature works for some ports but does not work on port-channel interfaces and port-channel member interfaces. How can I apply the qos settings for these interfaces in line with what auto qos would normally provide. My line cards are as follows:
Civic_6506VSS#sho mod
Mod Ports Card Type Model Serial No.
--- ----- -------------------------------------- ------------------ -----------
1 4 CEF720 4 port 10-Gigabit Ethernet WS-X6704-10GE
[Code].....
View 1 Replies
View Related
Aug 27, 2012
I am going to change a running 6500 switch. I am missing a best pratice doc for changing a cisco switch configuration. My question is if a startup-config has an error (due to typo mistake, or due to comands not supported on latest IOS) and I do copy tftp startup-config then what will happen ? I want to make sure when I do "reload" the switch then it should boot normally with the latest startup config !
View 3 Replies
View Related
Dec 6, 2012
what is the best configuration between vmware ESX server with 10 Physical NIC card and cisco 6500 , This ESX Server host 12 vm with VLAN 100,150.200.
View 6 Replies
View Related
Apr 8, 2013
I have Cisco 6500 with FWSM and ACE module which are in one central DC. Also we have four different Datacenter (Hub & spoke) and in our FWSM we have configured four contexts in central DC FWSM for each DC. Each DC servers are different VLAN and IP subnet. Now we have to configure ACE module for load balancing among those different subnet servers. What will be the design and configuration for this solution? Like routed or one-arm mode design.
Scenario Example:
1. App Server01
IP:192.168.11.5/24
GW: 192.168.11.1 in FWSM
FWSM Context: DC1
Physical Location:DC1
VLAN:11
[code].....
Now customer requirement is we have to load balance using ACE between these App Servers which are in different context s in FWSM and one Server is not FWSM. how to configure or design or placement of ACE and FWSM for above scenario.
View 4 Replies
View Related
Apr 3, 2012
I am facing problem about dot1ad global configuration command and my topology is here;
Notebook >> (access vlan 100) SW2960 (trunk)>> (trunk) C6500
First time I have create SVI interface on C6500 and enable trunk on interface that connected to SW2960 and SW2960 assigned access vlan 100 on port connected to Notebook. Then I tried to ping from Notebook to C6500 on SVI100 which work fine.
Second time I tried to enable MST on C6500 and after that everything still working and I can ping from Notebook to SVI100 on C6500.
Third time I tried on turn on dot1ad in global configuration mode and from now I can't ping from Notebook to C6500.
Forth time I tried to disable dot1ad from global configuration by "no dot1ad" command and then I can ping.
My intention is I would like to do EVC which require dot1ad in global configuration but I stuck in third step and don't know what's does it mean for this command and how I can resolve this issue?
Information on C6500
IOS Software (s2t54-ADVENTERPRISEK9-M), Version 15.0(1)SY1
Processor SUP-2T
Linecard WS-X6824-SFP
View 3 Replies
View Related
Mar 27, 2013
We have 6500 chassises in our set up. But using CWLMS 4.0 , we are unable to manage VSS feature of 6500.Also User tracking for Nexus 7K Switches subnets are not working.
View 1 Replies
View Related
Jan 22, 2012
I have a pair of 6500's setup with VSS and there is currently only one link between then. However one end of the link is on Po10 and the other end is on Po25. If I move the Po25 over to Po10, will things break? It seems to be working fine now. I'm about to add a second link and I'm concerned about the current configuration. It makes more sense to me to have both ends of the same link on the same port-channel ID. I've seen documentation which states otherwise however.
interface Port-channel10
no switchport
no ip address
[Code]....
View 2 Replies
View Related
Feb 29, 2012
I have been having an annoying issue for the past few weeks with my ASA setup. We are using the ASA as our Remote Access Gateway and originally had it setup in a Active/Standby failover configuration using 2 x 5520 ASA's.The original setup of the devices was that the 2 x ASA were setup in a failover configuration, with both of them connecting back to the internal network via a 6500 device. Because of using failover I created a VLAN on the 6500 and put the two ports that connect the ASA's into that VLAN. I then configured the VLAN interface to be the EIGRP interface for the neighbour relationship to the ASA's.
The problem I am seeing is that the EIGRP neighbour relationship between the Active ASA and the 6500 keeps flapping. It occurs abour 4-5 times every day at randmon intervals. Sometimes the neighbour relationship will stay up for 6-7 hours, other times it flaps every 1-2 hours. I initially thought it was due to the failover configuration so I removed one of the ASA's and removed all of the failover configuration, but the EIGRP neighbour flapping problem still exisits. [code] Since removing the failvoer configuration I am thinking it could be a physical cable problem?
View 4 Replies
View Related
Jul 9, 2012
I have seen conflicting information regarding downtime for this upgrade process and still have questions after reading URL. In this scenario, we have a VSS with one SUP in each chassis.
Are the chassis or modules rebooted one at a time? For instance, if I issue an "issu loadversion", will this just load the code on the SUP in the standby chassis, or will it load the code on the modules as well? If it does load the code on the modules, then I will have to wait the longest time from the "show issue outage slot all" before issuing a "issu runversion", correct?
Also, what outage times have people seeen on modules that support pre-loading? I have not been able to find any documented information on this other than it is faster, and the link referenced above still shows a 5 minutes outage for a warm reset on one of the modules.
View 7 Replies
View Related
Dec 12, 2012
I was trying to configure copp on one of 6500 sup-2T. Is it ok to add customized policies to the default copp "policy-default-autocopp".When I created my own customized policy using policy-map, I get following error
control-plane service-policy input policy-custom
error: failed to install policy map policy-custom
View 7 Replies
View Related
Jul 17, 2012
how to convert configuration catos on 6500 to IOS image.
View 3 Replies
View Related
Nov 5, 2012
What is the reason of following NTP error. I am unable to configure further ntp peers on the router. Could not able to understand the reason of 100 peers. I am adding only 2nd peer on the router but getting this error. There is no problem adding peers in other 6500s .
View 2 Replies
View Related
Jun 11, 2012
I have FWSM failover pair, Active/Active configuration, admin and another 4 context, few context active on first FWSM, other on second FWSM.I needed to add VLANs 51 and 52 to FWSMI created VLANs on both Cat6500, created firewall vlan-group 3 a and put "firewall module1 vlan-group 3" on both cat6500Then I log in in system space on primary FWSM and created interface VLAN.Created VLANs automatically occured in system space on Secondary FWSM.Then I wanted allocate VLAN 51 and 52 to context XY, so I went to part of configuration for context XY and "allocate-interface Vlan51" and "allocate-interface Vlan52".
View 1 Replies
View Related
Aug 20, 2012
I have a 6500 switch and i recently removed a module (line card) from the switch. The problem is that the port configurations of the removed module still exhists in running configuration. I was not aware of the right procedure,[URL] however, i would like to know whether it resolves if i reboot the switch.
View 1 Replies
View Related
Mar 28, 2012
I've just reset our WISM2 in the test lab back to factory default as I needed to reconfigure the 6500 and the WISM2 itself. Bearing in mind I had it working before.I've just renamed and re-addressed some of the vlans so things flow better and make it easier to add more WISM2s in the future.Now I've run through the initial configuration and it's rebooted ok and show WISM status is showing Oper-Up and there's a port channel 407 been created as I would expect. However, I am unable to get to the management interface via GUI or SSH. In fact from the 6500 I can't even ping the management interface (but I can the service port).The Vlans have been changed in the 6500 config so it knows the native-vlan and service vlan etc and all the vlans are up/up.
View 17 Replies
View Related
Feb 7, 2013
I've installed our previous WISMs and other WISM2s previously and never had a problem.
6500 running SXJ2. WISM2 running 7.3.101.0 (which is what the rest of our WISM2s are on)
Insert WISM and go through initial setup. Run a show wism status on the 6500, and show sysinfo on the WISM. All looks good. Service port and management vlans are up. From the 6500 I can ping the service port IP, but not the management IP. From the WISM I can't ping the managment default gw but I can the service port. Unable to get anything back from the GUI..not surprising as not even ping works.
Now, as I said I've done it this way many times before...in fact I'm following my documentation from the last successful implementation and even adding in Cisco docs.
View 7 Replies
View Related
Mar 6, 2013
I tried to clear monitor session on 6500 and keep on getting the following error:
%Another session parameters or permit-list is being configured %Please wait for another configuration to complete.
how i can go about clearing the monitor session.
View 9 Replies
View Related
Feb 17, 2012
I have 2 modules of FWSM in 6500 switch (failover). I need 5 context. When I use in routed mode (like in the picture) , I cannot ping the servers behind the firewall. (I have ping to FW context) In transparent mode, it is not happening.
View 1 Replies
View Related
Dec 27, 2011
Cannot get my Intel WiFi Link 5300 wireless card to install properly on my my Latitude 6500 using XP SP3. I can go to the Intel website and download the latest driver but once everything has been downloaded and ran, then restarted the wireless icon says that my driver is not installed.
View 13 Replies
View Related
Apr 6, 2012
Here is my Lab Setup: 2691 is BGP nei to R4 router and they are not directly connected. 2691 and R4 are in same AS 6500. 2691 Config---router ospf 1 network 3.3.3.3 0.0.0.0 area 0 . Its advertising its loop back IP to OSPF domain.
router bgp 6500
no synchronization
bgp log-neighbor-changes
neighbor 6.6.6.6 remote-as 6500
neighbor 6.6.6.6 update-source Loopback3
[code]...
R4 Router
router ospf 11
log-adjacency-changes
network 6.6.6.6 0.0.0.0 area 0
[ code].....
We can see that 2691 and R4 are BGP neis and 2691 has 200.1.x.x routes in its route table. My question is why from 2691 router i am unable to ping any route learned by BGP from R4?
2691Router# ping 50.1.1.0 Type escape sequence to abort.Sending 5, 100-byte ICMP Echos to 50.1.1.0, timeout is 2 seconds:.....Success rate is 0 percent (0/5)2691Router#ping 200.1.2.0 [ code]...
View 12 Replies
View Related
Mar 22, 2012
I'm using LMS 4.0.1 and VPN hw client 3002 with software 4.7.2.L.I'm not able to collect the first configuration and sync jobs end with these errors.
View 2 Replies
View Related
Sep 25, 2012
When doing some tests with an ASR1K running 3.7.0.S, I noticed that everytimes I reload the router, I got the following error when it loads the configuration: [code]
View 1 Replies
View Related
Dec 21, 2011
how can we upgrade 6500 non modular ios to normal 6500 ios?
View 5 Replies
View Related
Oct 1, 2011
'm having problems accessing the configuration utility of the *second* router in my daisy chain. Here's my setup. I have one router (router 1) on ground floor which gets internet from the modem. That router is then plugged into the LAN port of a wireless router upstairs (router 2). My laptop is then plugged into another LAN port on router 2. This allows me internet access as intended. But I'd like to log into the the configuration utility of router 2. But when I type the IP address of router 2 into my browser (192.168.1.1), it takes me to the configuration utility of router 1. Router 2 is out of the box--I haven't done any configuration to it (for example, changing its static IP address).
View 2 Replies
View Related
Feb 20, 2013
Below is my configuration so far.
GE1 General 1UP, 100T, 101T
GE26 General 1UP, 100U, 101U
But I could not get port GE1 on vlan 100 to ping to anything on GE26.It only works when i change it to 100UP... BUT the rest of the vlan ID (101) will still unable to work.
Yes. i need multiple vlan on a single port as I am running Virtual machines on the GE1 and GE26 is an uplink I need all vlan to communicate from GE1 to GE26. Is this possible?
View 1 Replies
View Related
Aug 14, 2012
I was working on a Cisco 2600 series router earlier today running IOS 12.4. I ran into an issue where I could not clear the startup-config. I tried:
router#erase startup-config
router#reload
router#erase nvram
router#reload
[code]....
each time IP addresses and things got cleared but other aspects did not which should have been. In the nvram there were several files:
Router#dir
Directory of nvram:/
126 -rw- 2143 <no date> startup-config
127 ---- 5 <no date> private-config
128 -rw- 2143 <no date> underlying-config
1 ---- 49 <no date> persistent-data
2 -rw- 0 <no date> ifIndex-table
View 1 Replies
View Related
