Cisco :: Catalyst 2960G / Get SNMP Management Working Over IPv6?
Jul 20, 2011
I recently picked up a Catalyst 2960G and am trying to get SNMP management working over IPv6. I have the IP Address set to the local link, and can successfully ping and telnet to the switch (so the network can get traffic to and from the switch). However, SNMP packets just seem to disappear. I am running WireShark on my machine, and I see the packets go out to the proper IP, but nothing comes back. When I check "sho ipv6 traffic", I can see where there are UDP packets that are received, but, again, none going out. Also, when I run "sho snmp", all of the packet counts are 0.
Here are some relavant snipets from my "sho run":
interface Vlan1
no ip address
no ip route-cache
ipv6 enable
I have got a catalyst cisco 2960G series switch and via this switch I want to creat serveral vlans. I am getting a dhcp IP from a router and I want to setup my own vlan networks.
I plugged in the Ethernet cable that came from the dhcp router to port 16 of the cisco switch and configured the ports 1,2 and 3 for vlan 1, 2 and 3
the dhcp router has given me this IP 192.168.10.158 defautl gateway is : 192.168.10.1
when I plug in a PC to port 1 or 2 of the cisco switch I still receiving the IP from range 192.168.10.* but not from the range that I configured for the vlan 1 or 2.
Below is my startup configuration:
no file verify auto spanning-tree mode pvst spanning-tree extend system-id
I got problem with wake on LAN software.. The software unable to ON all pc's remotely if sitting under different vlan. Everything is ok if using the same vlan. Below are the network diagram & switch configuration.
Layer 3 switch Intervlan routing configuration
ip forward-protocol udp 7 ! interface Vlan4 description vlan Client-WOL ip address 172.22.51.253 255.255.254.0 ip access-group Deny_HTTP_Vlan1 in ip helper-address 172.20.1.246
[code].....
After configured all the switches with the above setting, the software still cannot wake all the pc's using LAN. Base on sniffing, i can't find UDP port usage by the software. Attached here with print screen from wireshark.
I am unable to access a series of switches connected together through a management vlan. I receive the message "The server xx.xx.xx.xx at level_15_access requires a username and password." Entering the username and password fails and the same username and password message returns. I am able to ssh into the switch with the username and password that fails trying to access the switch with the browser.
How can I check the username and password for access with the browser?
I am trying to monitor switch performance. Is there a good way to monitor switch performance with the command line interface?
I'm running 12.2(33)SXJ1 on a 6500 with several IPv6 BGP peers. Is there any way to monitor the BGP status of IPv6 peers? I've been through the BGP4 mib and cant seem find a way to check the status of IPv6 peers.
We faced one recent issue with WLC configuration behavior and explaining our observation and workaround we did.Requirement is to manage the WLC (5508 with 7.4 code) using two SNMP managers in different locations. Also these two Servers should use the same community string to manage WLC.
We were able to configure the SNMP community string for one server IP (to allow access) through GUIWhile trying to add another Server – IP with same community string – it didn’t allow As per the configuration guide, Controller can use only one IP address range to manage SNMP community. So we cannot configure the same community string to allow only two different server IP addresses [code] We currently configured the major subnet ( 10.x / 8 - two match both server addresses) and it works fineAlso when we tried 0.0.0.0 / 0.0.0.0 , it didn’t work (SNMP was failing)But this creates a security issue wherein anybody can poll the WLC.
I have used all the ports on my 24 port 2960G and need to extend it with another 2960G. These switches do not have trunk ports so what is the best way to stack them and have all 5 vlans on both switches.Can I just use a port Channel trunk etherchannel ?
I installed two AIR-AP1142N-E-K9 access points, running a fairly simple config, WPA2 PSK, with AES cipher, both the same SSID.The two access points are connected to Cisco 2960G switches, which are in turn connected to each other, again without any fancy config options, no VLAN's ed.
After a random while, varying from 30 minutes to 15 hours, the access points will stop sending/recieving traffic on the ethernet interface.The units don't stop at the same moment, this also varies seemingly random. It's not related to load or the amount of clients (1 to 15).Only turning on one unit doesn't make any difference.
The units keep sending out their SSID, you can associate to them, but the DHCP requests aren't passed on to the DHCP server which is connected to one of the 2960G's.If you wirelessly connect to the AP and set a manual IP adress you can reach the webinterface and telnet/ssh to the access point. The ethernet link is reported as being up on the access point. Also the switch reports a link on the port to which the access point is connected.Resetting the link does have no effect. The log doesn't mention any errors or warnings.Power cycling or reloading the access point will put it back in working order for a varying amount of time.
! ! Last configuration change at 14:41:40 +0100 Sat May 12 2012 by admin ! NVRAM config last updated at 14:41:40 +0100 Sat May 12 2012 by admin ! version 12.4 no service pad service timestamps debug datetime msec service timestamps log datetime msec
Just I have upgraded some 2960S to IOS 15.0(2)SE from a IOS 15.0(1)SE3 and the catalyst don't switch any IPv6 traffic. Don't work any RA and also don't work any unicast IPv6 traffic from any interface. I can see some references to IPv6 changes in the FHS (First Hop Security) in the Release Notes, but no any reference to changes in the configuration.
The switches don't have any IPv6 specific configuration and the sdm is the default templata. Returning to 15.0(1)SE3 everything work ok.
On Catalyst 2960, and 3560E this IOS version seem to work fine with IPv6.
I have a really weird issue with my cisco catalyst 3560G.
-device: cisco catalyst 3560g -ios: 12.2-53(SE) IP SERVICES
scenario: configured IPv6 iBGP link between this switch and a router. the router is announcing 1 (test) route. the switch sees the route properly, but doesn't add it to routing table (the route never gets to be "best path", although it should be).
I'm a C# programmer and as part of my software I need to monitor some Cisco Catalyst 3560V2 24 switches using SNMP (By reading MIB/S data).Apparently this switch supports more than 50 different MIBs.My question is which MIB/MIBS contains general health data (parameters) that may determine if the switch is OK, Degraded or Malfunctioned.
I would like to be able to query the dot1dStpPortState obect on the Catalyst 2960-S on our LAN . Im running firmware c2960s-universalk9-mz.122-55.SE2.bin and according to the Cisco SNMP Object Navigator the object is supported (via the BRIDGE-MIB).However when i query using snmpwalk from my workstation :snmpwalk -v 2c -c bic-zua-ro 10.u.y.x 1.3.6.1.2.1.17.2.15.1.3 I receive and error .SNMPv2-SMI::mib-2.17.2.15.1.3 = No Such Instance currently exists at this OID For the sake of comparison, querying our 4700 :snmpwalk -v 2c -c bic-zua-ro 10.u.y.x 1.3.6.1.2.1.17.2.15.1.3 returns (as expected, cropped)
Is there some special configuration i need to do on our 2960's. The only snmp related settings i can see in the running config is snmp-server community. In this case :
which models of HP ProCurve or Dell PowerConnect support 64-bit IF-MIB counters, or for that matter any other manufacturer (Zyxel?) (snmpv2 or v3, OID .1.3.6.1.2.1.31.1.1.1.6)I believe pretty much any Cisco Catalyst above a 2950 do, however don't believe any of the SG series do. I realize I could pick up a 2960G for $1500-2k and be good to go, but I forsee a larger switch purchase in the future, but still could use a switch in the meantime that was able to allow accurate monitoring of closet uplink bandwidth?
I have a Catalyst Switch 6000. Inoticed that after the execution of the job inventory in LMS, and after the snmp queries reached the equipement, the cpu value reached 98-99 % due to the process : PDU DISPATCHER (what’s it ?)
I have also a script running in the switch to observe the differents logs. For exemple, when high cpu is obtained, the message bellow appear :
« %SNMP-3-INPUT_QFULL_ERR: Packet dropped due to input
« %SNMP-3-INPUT_QFULL_ERR: Packet dropped due to input
« %SNMP-3-INPUT_QFULL_ERR: Packet dropped due to input
I have couple of Linksys SRW 224G4 and SRW 2024 connected together with Cisco C3650 switches. For my part of network VLAN100 is used as administrative vlan and VLAN1 as defult (on trunks or unused ports).Altrough most of switches work fine, on all older models of SRW224G4 (hw 1.0, various firmware versions) there is no connectivity to management utilities (also ping won't work) via trunk (where of course VLAN100 is present). At the same time there is no problem with access from "local" ports (assigned to VLAN100) and there are no problems with traffic on VLAN 100 along the network.
For example:Two computers (A and B), two switches (sw1 - old SRW224G4 and sw2 - Cisco switch), are connected as follow: A--VLAN100--sw1--TRUNK--sw2--VLAN100--B
Swicthes have VLAN100 as management VLAN, computers are connected to access ports (untagged).A has access to management on sw1 and sw2 and connectivity with B?B has access to management on sw2 and connectivity with B but has no access to management on sw1...If sw1 and sw2 are same, old SRW224G4 - everything works fine.Newer versions of SRW224G4, SRW2024 and SLM2024 works OK.Why it doesn't work?
We have quite a few 3560 & 2960 on our edge network - what I have been looking at was to access switches via web-interface i.e. web-browser. Only problem with this is it always gives you access on privilige level 15 which is not ideal as not all who we decide to give access to these switches will be admin and allowed to configure these swicthes - In the 3560/2960 data-sheet states:
"Alternatively, a local username and password database can be configured on the switch itself. Fifteen levels of authorization on the switch console and two levels on the Web-based management interface provide the ability to give different levels of configuration capabilities to different administrators"
Where as there is no mention of how to configure these two levels of Web-based management in the configuration guide.
Any snmpset commands to add, modify and delete vlan table entries on SG300-10 switches? I checked url... however this information is apparently only valid for catalysts. The latest firmware is installed and the provided MIB files are used.
I have a question about SNMP OIDs for the command "show counters interface intx/y delta" on Catalyst6500. The customer wants to create graphs for the following values:Overruns, qos0Outlost, InErrors, OutErrors, InDiscards, OutDiscards etc..Is possible to get these values using SNMP?
I have v4 mpls working fine but v6 refuses to work correctly.Looking at the ipv6 routing table for the VRF we can see prefix's coming from the remote PE's BGP is up in vpnv6 and ipv6 unicast.Everything seems fine but I just cant seem to ping between the sites.as mentioned, ipv4 works fine for the same vrf.
has quite frankly gotten me absolutely annoyed . I've tried just about everything, from using the netsh commands to changing the dns to 8.8.8.8 or that other one or the other. Nothing is working, I unplugged the router, problem persists, I disabled IPV6 problem persists, I restore, problem persists. The only clue I have is my router, and mysteriously, there are TWO of my computer on it. It might be nothing but most certainly has caught my attention. Also, it gives me this info about my media being disconnected
I am using my DIR-825 as a switch and AP. I have turned off DHCP and plugged the internet into the lan-1 port. This works perfectly for IPv4, but I cannot get IPv6 to work. On the outside there is native IPv6 running radvd. How should I configure IPv6 on my DIR-825?
My network is currently running with SNMP v2 configured in easch devices. With snmp v2 our LMS 3.2 server is working fine. However we have planned to migrate our network to snmp v3 . I have configured my few devices for SNMP v3 and added them to my LMS server.
Except DFM module these new SNMP v3 devices are working fine in all other modules. In DFM these devices are reflecting under "snmp timeout" group. I checked with device center -> management station to device; where the SNMP v3 connections are showing "okey"
following are tyhe configuration i have done in my devices.
snmp-server group v3g v3 priv read testr write testw snmp-server user v3u v3g v3 auth md5 test123 snmp-server view testr iso in
I have a Dlink DIR-825 B1 with firmware 2.05NA. I recently reset it to factory defaults to make sure I didn't misconfigure something.
I have been struggling to get a IPv6 in IPv4 tunnel working with tunnelbroker.net. I think the issue is a problem with the router itself and i'm not sure how to get it fixed.
All of my machines were getting IPv6 addresses (both windows, mac, linux) but none of them seemed to work. All I was able to do was ping the gateway itself using the local lan address. In each case they were missing a default IPv6 route. If I added a default route then it would work.
I started looking at the packets using a network sniffer and the Router Advertisements all had a Router lifetime value of "0" which is RFC4816 speak for "don't use this router as the default router". So Windows/Linux is exactly right by not setting a default route.
The strange thing was that when I reboot the router I would briefly get a router advertisement with a lifetime of 1800s, the corrert prefix and dns server but then another router advertisement would come along 5 seconds later with a router advertisement of 0.
I have TCP' Other observations
... using 6to4 I would get working IPv6 address. The difference again seemed to be the Router Lifetime. But I want to use a permanent tunnel. I have found 6to4 unreliable.
... the router never responds to router solicitations. It only sends a router advertisement when it wants to.
... the router never responds to DHCPv6 when that is configured.
Have a v2 E1200. Connect with PPPoE to ISP. IPv4 works fine. With firmware included on router, 2.0.01, it would receive a /64 of IPv6 from the ISP. This /64 would show up under 'status' / 'local network'. Although it did not seem to advertise this space to PC's on my network so I was unable to use it. I updated firmware to 2.0.04. Now it does not even pick up the IPv6 /64 at all.
Anyone have PPPoE and IPv6 working? Anywhere I can download 2.0.01 to try it again?
Is there a model of router that actually works with IPv6?
