Cisco Infrastructure :: 2 6509-E Switches Connected Directly To Each Other While Using VRF-lite (Sup 2T)?
Apr 11, 2013
I am trying to test (if possible) the idea of having 2 6509-E switches connected directly to each other while using VRF-lite (Sup 2T). The idea is to have 3-4 separate networks. For example Net-A, Net-B,Net-C, Net-D. There is no PE router*, just these two switches. Also, there sin't any other access layer switches. All users connect directly to the 6509-E's via switch 48 port switch blades.
Net-A and Net-B on separate VRF's, but able to talk to each other. Net-C and Net-D* on separate VRF's without being able to talk to any other. Net-D* will have a PE since it comes from an external network. This is something I would like to test in a lab environment, but I am not familiar with VRF's.
I have 2 Cisco Catalyst 6509 switches connected directly using direct point to point link.The OSPF is configured for point - point link.The currently the interface is down administratively.I will unshut the port . After that i would like to know how much time will it take for the ospf to establish the neighbour relation.
A specific switch port which happens to be part of a 2 switch 3750 Switch Stack is seeing multiple CDP packets from 3 extra switch port interfaces that are not directly connected. Noteworthy is that the far end devices have the correct CDP entries and I physically confirmed at least two of those connections that lead to the switch "upstream to the culprit switch". Tricky part is that its production so room for maneuvering is limited. At some point I disabled all Ports save for the real uplink and the problem momentarily disappeared. Re-enable the interfaces problem resurfaces. Is there an explanation, technique to eliminate the culprit with minimal disruption?
setting up VRF-lite on redundant 6509-E chassis to account for chassis failure? Let's say I have 2x 6509-Es configured with HSRP for 2 vlans, ServerA and ServerB. So
6509-A# ! interface Vlan10 description ServerA VLAN ip address 10.10.10.2 255.255.255.0 ip flow ingress standby 1 ip 10.10.10.1 standby 1 priority 105
I now need to create an environment where the Server VLANs can be provided for two customers and they need to be wholly separate. On 6509-A, I make VRF CustomerA and VRF CustomerB and I assign Vlan10 to VRF CustomerA and Vlan20 to CustomerB. Do I create the SAME VRFs on 6509-B with the same logic?
Thinking of getting one of those 8-port 2960 for a CCNP study. Is the difference between the C2960-8TC-S and the C2960-8TC-L models in Hardware, or in IOS? or both? And if it's in IOS, is the S upgradable to L?
Can an ip address be NAT'ed to an ip address on a PIX 515 which isn't an ip address of a network directly connected to an interface on the PIX?
Specifically, can a host with an ip address of 18.104.22.168/26 which is connected to a network whose PIX firewall interface is 22.214.171.124/26 be NAT'ed to an ip address of 126.96.36.199/24 which is not a ip address of an interface that is directly connected to that same PIX 515?
I've attached a PDF depicting the network topology and describing the above.My first response to this question is that it can't be configured to do this, but need either a confirmation or correction to this.
i'm using WLC AIRCT5508-K9 software version 188.8.131.52, ISE, cisco prime infrastructure 1.2 (1.2.1.012), and using Odyssey access client manager all running well but here the problem, when a user connected to our SSID, the status of connection information especially on access point.. there appear that "Access point : WLC2-ISC-JKT-GCC".that is the WLC not the access point, is there any miss configuration from me..
I'm trying to configure a 2800 series router. .I'm consoled in and put a basic config on the router (see attached). After putting this basic config on, I plugged it into a small unmanaged switch, changed my laptop's IP and plugged it in the switch also. I can't ping the router from the laptop and vice versa. This is the second switch I've tried this with, so it must be.The first switch, I installed at location, connected a cisco cable to it and a local server, so i could remote in and finish configuration. In that scenario, I had plugged the switch into a managed switch and had the same result as I'm getting now--can't ping IP addresses (can't ping the switch's IP, not can it ping local IPs).
We had a problem where a 4500 would not ping directly connected devices dispite being able to telnet to them and also view them in CDP. It was mostly forwarding packets between devices but some hosts could not connect to others.
I usually connect my PS3 to a switch which then goes to the BuT Home Hub and it works fine. However, I want to connect the PS3 directly to my Hub but when I plug it in to the Hub, it doesn't connect to the internet at all. Is there something I have to configure in order to get it to work?It is a PS3 160 GB Slim with Firmware 4.0.
I've been trying to find a response or a fix to this issue for a few weeks now.My DIR-655 RevB router is currently at firmware 2.07NA, and has speeds of around 30Mbps down and 10Mbps up when connected directly through wired connections.However over wifi, I am only getting around about 5 Mbps down and 2 Mbps up. I've tried the 'usual' fixes suggested on here, change broadcast signal to manual, not auto, shutting of QoS shaping, all of that. However nothing seems to be improving the speed.
access points are directly connected to 2016 wlc.Event log from the wlc
AP event log download completed. ======================= AP Event log Contents ===================== *Mar 1 00:00:30.157: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to up *Mar 1 00:00:30.161: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to reset *Mar 1 00:00:30.190: %LINK-3-UPDOWN: Interface Dot11Radio1, changed state to up *Mar 1 00:00:30.191: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
I have a CAT 3560 connected to a ISR 2911 The 3560 has 2 subnets ( 192.168.1.0 /24 and 10.10.10.0 /24) The 2911 has interface GigabitEthernet0/1 on the 192.168.1.0 /24 and another GigabitEthernet0/0 on a WAN connection 172.16.7.246 I need to NAT both the 192.168.1.0 /24 and the 10.10.10.0 /24 to the single address 172.16.7.246 I have to use route-maps . I have IPSec VPN's and ZBF on the 2911 My problem is the NAT does not work for the 10.10.10.0 /24 network!Why?is my only option to use trunking between the 3560 and 2911 and subinterfaces on the 2911? I want to avoid sub-interfacing.
============================================================= On the Cat 3560=====================!vlan 40name the 192.168.1.0 /24 subnet!vlan 60name the 10.10.10.0 /24 subnet!interface FastEthernet0/7description Connection to Router Gig0/1switchport access vlan 40!interface FastEthernet0/16description Connection pc host on the 10.10.10.0 /24 subnetswitchport access vlan 60!interface Vlan1no ip address!interface Vlan40ip address 192.168.1.4 255.255.255.0!interface Vlan60ip address 10.10.10.10 255.255.255.0!ip classlessip route 0.0.0.0 0.0.0.0 192.168.1.1 =========================
The host on the 10.10.10.0 /24 network has the 10.10.10.10 address as it's default gateway The host can not access the WAN thru NAT....
My Data Center has one single core switch where is connected several servers, one port is the link to the router wan and other port is the link to the FW, my boss wants to install 2 nexus in order to replace the single switch. All my network has only one address, for example 192.168.10.0/24 if I connect two nexus 7010 in VPC and Domain, each nexus is going to has 2 modules with 48 port 10/100/1000 rj45 and i wan to connect servers directly to each nexus, with this figure i'm going to have a group of servers connected in two different nexus, Do they can have the same network 192.168.10.0/24 considering that the nexus are in the same vdc and vlan and have only one gateway for both groups? If the answer is positive, which nexus would be the gate way for that address, the primary or secondary? Or i must have a different address for both group of servers, i mean for example 192.168.10.0/24 and 192.168.12.0/24?thus each nexus would be the gateway for that new address?
To have two nexus connected by VPC in a Domain mean that one computer connected to one nexus can share the same address or vlan with other computer connected to the other nexus????
We have a 3750X VTP Server and the rest of the switches are clients.
Due to cabling issues, we have a switch (Switch F) that we can't connect directly to the 3750X so we have it connected through another switch. Everything is set to VTP client with the correct domain and password but this not-directly-connected switch isn't receiving any VTP VLANs.
Anything I need to do on Switch D so that Switch F can receive the VTP updates?
I have a setup where there are two networks. A 172.16.0.0/16 and a 10.1.0.0/16 that are separated by the dlink router. I am able to ping from the 172 network to the 10 network using a laptop that is directly connected to the router and that laptop can also browse the web fine. However, I cannot ping to that router or access that subnet at all from the 10 network (if I try to access its LAN (the 172 network)). The 172 network is on its LAN and the 10 network is its WAN. I can access its WAN fine. Also, there the router is not recognizing the laptop as a "directly connected deivce" but its not preventing the laptop from using the router. I have tried to make the router as least secure as possible but still nothing.
I thought about making Static Route to point towards the router's LAN but the only option it gives me is the WAN for the exit interface.
I have been using my DIR-655 for about 2 weeks now with Road Runner wideband services. Starting yesterday my internet became very slow and I discovered the cause was the router. I tried resetting it to factory settings and things will be fine and run smoothly for about 5-15 minutes but after that it goes back to being extremely slow. My speed tests would go from 10ms (normal) to 250-450ms. Before this issue occurred the Dlink was perfect, had full speeds. I am running a wire Ethernet connection.
I am currently using revB and tried upgrading firmware to 2.01NA which had no effect, but make my internet seemingly go back to normal for the first few minutes then nosedive again. I have also changed my speed/duplex settings in Network Config to 1gbs Full Duplex. I've also disabled QoS, and still no change. Not sure what else to do. When directly connected to the modem everything seems fine. The modem is also the provided Motorola SBG6580 which I have called Time Warner to set the modem into bridge mode and have the DIR-655 connected to it.
I have a Cisco 7206VXR running 12.4(24)T3 IOS. It is configured with WCCPv2 using L2 mask redirection. I am using service groups and associated extended ACLs to select which subnets I want to redirect port 80 traffic from.
It is working fine for the subnet 192.168.1.0/24....
int gi0/2 ip wccp 10 redirect in ip address 192.168.1.99 255.255.255.0
... however, there is OSPF running between the router and a Mikrotik device directly connected to this interface. The gateway addresses for all the client subnets are on the Mikrotik. Traffic from other subnets, e.g. 192.168.2.0/24, 192.168.3.0/24 come in on this interface and I want to redirect those too. But it appears that the redirection doesn't work for those subnets (I don't see any hits on the relevant ACL for any subnet except 192.168.1.0/24).
It seems like the router only wants to redirect traffic for subnets that it has an IP address in itself. Admittedly, all of the example configs i've found on cisco.com are for redirecting traffic from directly connected subnets but I can't find anything that denies thie possibility of redirecting any traffic that comes in on a given interface.
The question is, is this how WCCPv2 redirection works? i.e., the router must have an IP address in the subnet to be redirected?
Since last week we started noticing this problem that the branch users started to complain of slow application response.. After verifying it with the ISP and middle network we noticed that if i ping from my machine (ie usernetwork) to the WAN Router interface (facing the ASA) , i get time outs.. which is strange cause this is directly connected to it via ethernet cable.
We have a 6509 running 5.4(2). We have set up a hyperterm session and connect to multiple devices, then we get to the 6509 and it will not work. When we reload the 6509 and we are consoled into it, we get data until it is finished reloading. Then the console connections is no longer there.
I am trying to find some background information regarding this error:
Cisco 6500 [SUP720-3B] %QM-4-AGG_POL_EXCEEDED QoS Hardware Resources Exceeded Out of Aggregate policers.
What triggers this error? In this case, there are QoS policies configured at the interface level. The 'show platform hardware capacity' command shows that there are1024 policers supported. What counts as a policer? Is a policer each instance of a class using the police command? I see where there have been some suggestions to use VLAN based policies instead of interface policies and others suggesting to turn off 'qos marking statistics' but I would really like to understand the details of what causes policers to be used up and how to approach fixing this.
I am trying to understand how this works under the covers but can't seem to find any documentation anywhere defining the details.
I have an Cisco 6500 CS and there is a Cisco Unified Communication Manger Server connected directly to the Core Switch.I tried to change duplex and speed ( fix and auto ) for both sides, but the same problem.
I have a Modem/Router combo and am trying to plug an 8 port switch directly into it and then have wireless AP's and other hardwired devices plugged into the switch. Normally, when I plug a switch into a router it requires no set up. This one on the other hand, will not work.
If I have two stackable switches were only one stackable switch has two uplinks one uplink goes to one core 6509 switch and the other uplink goes to the other 6509 core switch can a Layer 3 etherchannel be used if each uplink go to a different core switch, by the way hsrp is running between both switches and also can you give an example how data will be routed from the stackable switch through the ethernetchannel to one of the core switch accross the WAN to another core switch?
I have a cisco 2610 router connected to satellite modem (CDM-600). Cisco has NM-2W module with WIC-2T card, one port of this card is connected to modem via CAB-SS-530MT=, chassis WIC slot is filled with 2MFT-E1. Everything works fine for several hours. Then serial interface (connected to modem) goes down, and never comes up. I see following messages in the log. [code]
All, I am the wireless administrator for a rather large school district in Oregon, and we are seeing numerous issues with iPad's connecting and staying connected to our lightweight AP's in an HREAP configuration. Our iPad carts have about 20 iPads a piece and an AIR-LAP1142 supporting them. We have no issues with getting non-Apple products to connect and stay connected, but for some reason the iPads are creating a major issue. We currently run 8 4400 WISM blades via two 6509's, running code 184.108.40.206.Our AP's are running 220.127.116.11 as their primary software and their IOS is 12.4(23c)JA2.