Seen Duplex MisMatch errors on a N7k with a LAG going to the 5508 WLC? WLC code is 7.0.203.0. I found a BUG that is private to Cisco ( CSCth11041 ) that looks like it, but I want to make sure.
View 1 Replies
In LMS I have a 6513 with several sx 1000 interface setup for etherchannel to catalyst 3750
both sides are set for autoduplex but LMS reports that there is a link duplex mismatch. We just installed the latest patches for the LMS 4.0.1
[code] Can't find any wrong with the switch ports and AP's that can result in Duplex mismatch.The only difference I can find is the AP that is in all duplex missm. log's is used for other Mesh AP's to connect to.
View 8 Replies View RelatedI cannot seem to correct a duplex mismatch issue.I have a Cisco 2950 switch connected to a Cisco 2621 router. I am running a per-interface Vlan. I have two fastethernet ports and one NM-1E card installed on the router. One fastethernet port is connected to my gateway router, the second fastethernet port is connected to my switch for one Vlan. The NM-1E Ethernet card is being used for the second Vlan which consists of nine IP cameras. Though the cameras on the Vlan are working fine.Now, the NM-1E card is set to half-duplex. I know that I should be using a fastethernet module like a 1FE 2W or a 2FE 2W card, (which I have,) but the router does not recogonize either one of these cards when they are installed, and yes, they have been confirmed as good cards.
Using Router-on-a-Stick configuration is out due to the bandwidth contention besides the fact that the router I am using it on will not handle this due to the flash being an older version.I have forced the switchport to half duplex, setting the speed to 10. I was getting fewer error messages at first, but they soon increased back to the frequency that they began with.I have set the switchport to duplex auto, but this failed to resolve the issue.Obviously, I cannot force the switchport into duplex full since the NM-1E interface is set to half duplex. Can the NM-1E card be configured to full duplex? I can't seem to find any documentation showing where it can be forced to full duplex mode.Could nine IP cameras just be too much for both the router and switch to handle?
I have a 4503 switch (in L2 mode) running 12.1 hooked into a C2950 running 12.1, using regular 4 pair Cat5e cables to connect between them. The 4503 has Gigabit port 2/1 trunking to the 2950's Fa port 0/13.
When I set the duplex mode to DUPLEX FULL and SPEED to SPEED 100 on both switches (for their trunk ports) the link fails, and my 4503 loses connectivity (since it gets it from the 2950).
Here is my config from the switches (per description):
The 4503:
interface GigabitEthernet2/1
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 1,2,100-140
[Code].....
Note, this is the only mode that works (which seems to work fine, but I get TERRIBLE throughput for anything that goes over the 2950.
1 week ago, I got a call from a client that reported a network outage, the client told me that, 3 switch has crashed he try to console but it just hang. I ask him, did you change something? he said he didn't change anything, he just pluged a nortelswitch to the cisco switch number 9, but that switch doesn't crash like the others (3,4,8). I check the uptime, and yes the switch never been powered off..
the topology look like this
____ 6500 ____
/ / |
1 2 3 4 5 ...... 9
the vlan is end to end vlan, so vlan span between all those switches. transparant. this is collapsed topology, core and distribution is the 6500 itself all of the 1-9 access switch are in the same rack, with no loopguard, and bpdu guard configured. and connected to the core using etherchannel. the problem is there is no log available to start the troubleshooting/investigation.
I have the following issue; I am getting a duplex mismatch between a Cisco 2960 TT-L Switch running IOS 12.2(35) LAN Base Image (Gig0/1) and a Cisco 6506 Switch running IOS 12.2(33)SXH Adv IP Services (Gig2/19).
I have tried several combinations of the duplex/speed settings on both sides but the only that works is setting duplex/speed AUTO on the Cisco 2960 which ends up autonegotiating to HALF duplex and 100Mbps.
I have a customer with two WLC 5508's running 7.0.116.0. When I look at the RF Grouping I see both controllers in the 802.11b/g/n section (802.11b>RRM>RF Grouping). However, when I check the 802.11a/n RF Grouping, I only see one controller.Both are in Group Mode = Auto.
I also made sure they had the same NDP settings, and they are both in Transparent mode.
Default 802.11a AP monitoring
802.11a Monitor Mode........................... enable
802.11a Monitor Mode for Mesh AP Backhaul...... disable
802.11a Monitor Channels....................... Country channels
802.11a RRM Neighbor Discover Type............. Transparent
802.11a AP Coverage Interval................... 180 seconds
[code]....
For guest clients , we have configured guest vlan and applied external web authenication on WLC 5508 , the session timeout value is 2700secons . When a client open a browser to internet page , wlc will redirect to URL and get the login page . After completed the login , he can go to internet page .
We find the iPhone and ipad clients will get the login page again ahfter ~ 5 mins , it is mismatch with session timeout value 2700 sec (45 mins) .
When performing an audit from NCS Prime 1.3 on our 5508 controllers (500 lic) we are getting mismatch messages from many of our 3602i AP's that say the following...
(Type)Configuration Name Audit Status Attribute Prime Infrastructure Value Controller Value
(AP APname, Interface) 802.11a/n Mismatch Spectrum Intelligence true false
These AP's are not configured as Spectrum Intelligence on the controllers, rather as local. It seems that NCS believes that they are supposed to be SI. We have refreshed the config from controller many times but this does not change. The 5508's run v.7.2.111.3 Is there a change I can make on NCS or otherwise to make this mismatch go away? Is this a bug? It is not causing any problems (that we can see) but as most would rather not have these mismatches.
I have just setup a vWLC for lab purposes and it´s up and running. I have a few used 1131 LAP:s that tries to join the AP but I just get DTLS certificate errors like these:
*Sep 14 13:25:27.229: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to up
*Sep 14 13:25:27.258: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up
*Sep 14 13:25:36.198: %CAPWAP-3-ERRORLOG: Go join a capwap controller
*Sep 14 13:26:41.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 192.168.1.105 (code)
These AP:s (I have tried 2 so far) have earlier been in use connected to a cluster of 5508:s.
After upgrading my 5508s to 7.2.110.0, they are reporting mobility data path errors to one of my WiSMs running 7.0.235.0.
I get these messages on the 5508s reporting that it can't send a ping to the affected WiSM:
*ethoipSocketTask: Aug 08 21:15:41.175: %ETHOIP-3-PKT_RECV_ERROR: ethoip.c:341 ethoipSocketTask: ethoipRecvPkt returned error
*ethoipSocketTask: Aug 08 21:15:41.175: %ETHOIP-3-PING_RESPONSE_TX_FAILED: ethoip_ping.c:312 Failed to tx a ping response to <ip address>, rc=5
But maybe there is another clue because I also see in the same log these errors referencing the same WiSM:
*bcastReceiveTask: Aug 08 21:15:45.310: %LOG-1-Q_IND: mm_dir.c:1969 Failed to recreate the SSH Rule for <ip address>.
*mmSSHPeerRegister: Aug 08 21:15:44.829: %MM-1-SSHRULE_CREATE_FAILED: mm_dir.c:1969 Failed to recreate the SSH Rule for <ip address>.
Why is the controller trying to SSH to another controller? Was some SSH related feature added to 7.2 that has been accidentally enabled?
I am having trouble with a newly configured install. Basically it seems that my centrally switched guest SSID is not functioning. As you change AP groups, which should change the interface associated with the SSID and also the dhcp client address, the client is retaining the original dhcp address from whichever AP group they first associated with.
I also have a locally switch WPA2 SSID at each location which is working fine. Clients are able to change dhcp address correctly as they move between AP groups. It just doesn't seem to be working on the guest network, which is odd because it was working earlier in the install. It has only started having issues yesterday afternoon.
The interface above is assigned to the guest SSID in one of the AP group. I assume this has something to do with it but I've been over my DHCP assignments on the core switch, local switch, controller, and dhcp server and can find no issue with the configuration..
I am not sure why as I am not using DOT1X at all. The guest is a pass-thru and the WPA2 network is just WPA + WPA2 with TKIP and AES. No DOT1X anywhere on the controller...
I have a AIR-AP1121G-A-K9 running c1100-k9w7-tar.123-7.JA2 (Autonomous)We have monitoring setup with Orion NPM and we consistently see output errors, Transmit discards and big buffer errors The users at the site have not reporting any issues but was wondering how to prevent these or are these normal?What causes the output errors on Wireless Radio ? How to troubleshoot further ?
Radio0-802.11G
Total Output Errors 0 47749
Small Buffer Misses
4 misses
139 misses
[code]....
I have a 2wire router and can currently only connect to the internet with an ethernet cable. I've screwed my settings up trying to install my new router(WHOLE 'nother post lol!) Anyway it's not taking my Security Key..that I think is the right one. If I enter a different one it doesn't say incorrect, but it says possible security key mismatch or something like that.
View 1 Replies View RelatedI'm receiving a lot of these messages in a ACE4710 cluster. 192.168.100.1:80 is the VIP, 193.126.127.28:56380 is the client. Already tried to set the mss with this:
parameter-map type connection my map set tcp mss min 0 max 1380
policy-map multi-match L4_policymap
class vip_PRDWEB_http
loadbalance vip inservice
[code].....
But it doesn't work.
I am trying to access the internet (Plusnet) using a laptop, via as wireless computer. All that appears on the laptop screen is "network security key mismatch. What is a security key?
View 1 Replies View RelatedI have an ASA- 5585X (v.8.2.4) directly connected to an upstream 6509, which is running EIGRP. I configured the ASA for EIGRP with same AS# and network numbers and no auto-summary. Here are the log messages I got:
Mar 8 15:11:08: %PIM-5-NBRCHG: neighbor 164.72.178.28 UP on interface Vlan150 (vrf default) Mar 8 15:11:08: %PIM-5-DRCHG: DR change from neighbor 0.0.0.0 to 164.72.178.28 on interface Vlan150 (vrf default)
Mar 8 15:11:11: %DUAL-5-NBRCHANGE: IP-EIGRP(0) 1: Neighbor 164.72.178.28 (Vlan150) isup: new adjacencyMar 8 16:16:08: %DUAL-5-NBRCHANGE: IP-EIGRP(0) 1: Neighbor 164.72.178.25 (Vlan150) isup: new adjacency
Mar 8 16:18:54: %DUAL-5-NBRCHANGE: IP-EIGRP(0) 1: Neighbor 164.72.178.25 (Vlan150) is down: K-value mismatch
I lost my SSH connection to the upstream 6509 and couldn't get it back. Luckily I didn't lose my ASDM connection to the ASA, so I disabled EIGRP and went to look at the logs on the 6509.
What causes a K-value mismatch, and how to I rectify the situation?
When i'm trying to connect using stand-alone Anyconnect (not through the web), I got the SSL error message "The certificate you are viewing does not match the name of the site you are trying to view" (attached).
The certificate I installed for the SSL connection on outside interface got Subject CN=testvpn.mydomain and Subject Alternative Name (SAN) --> DNS Name = testvpn.mydomain
It seems to me that instead of connecting to testvpn.mydomain, anyconnect try to connect to the its IP address. I did try to remove the IP address in Server List in the profile, but it still doesn't work.
If I'm using Clientless (through browser), I don't received this error which means the certificates installed correctly.
Is that a bug on anyconnect 2.5.2019 or is there other ways to force anyconnect to check name instead of the IP against the certficate?
I still get the "security key mismatch error" for my school and home wifi. I know the passwords i'm using are correct.I also have the fake "Intel(R) Centrino(R) Wireless-N 6150" in my Device Manager. This does not have a driver nor can Device Manager find one.I recently noticed that there are 8 Virtual Wifi Miniport Adapters. What are these and why do they exist?
View 5 Replies View RelatedIt is possible to detect situation when two neigbour routers involved in EIGRP routing are configured by mistake with different AS number ?I tried this situation practically. Two routers are connected together via Serial link network. One router has AS 1, other AS 10. I try to detect AS mismatch. First I check what EIGRP packet are comming debug ip packet detail show source <my neighbour IP address> destination 224.0.0.10 Ip protocol type 88. These packets are EIGRP Hello packet.
I try to go more deeply into details.debug eigrp packetsI see only ongoing EIGRP Hello packets. But I don't see any incoming packet from my neighbour (which has different AS number). It seems, because of different AS number router silently drop eigrp packet.Other debug eigrp command also doesn't show any info about AS difference.
Cisco IOS 12.4 (16)
I ran into a strange problem. When I want to change the ethernet0 interface of a Cisco 828 sdsl router, but there is no command to do that in the interface configuration mode (speed 100 and duplex full). A show interface gives 10MB half duplex and I want to change this.
This is the running config (a little censored):
!
!
interface Ethernet0
[Code].....
I have a 7604 Edge router that connects to our Data centre via Fiber.
but i keep getting input errors on the interface Gi3/5. i also found out that i cannot change the duplex settings on the edge router to auto, i only have two options of full and half and changing it has not worked either.
I have tried to use a switch in between the fiber modem and the edge router to try to manipulate the duplex settings, but when i tried it the port simply shutdown and then i have to reverse the configuration.
The software version of the router is 12.2(33)SRE3, i really need to sort this out as connection to and from the Data centre is quite slow.
I have the following configurations for switch to switch connectivety. sh int sh config int
2960 will not take full duplex setting.
Core switch
WS-C4506 cat4000-i9s-mz.122-25.EWA10.bin
FastEthernet5/8 is up, line protocol is up (connected)
[Cdoe]....
We have some legacy Cisco 6513 switches with the backbone (16-port GBIC blade) MTU set to 1500. It has a WS-X6148A-GE-TX blade as well, MTU set to 9K.
Now we have a customer sending MTU of 1546, their copper interface terminating on WS-6148A keeps flapping. Does the flapping have something to do with the backbone set to 1500? We cant set the backbone to 9K at this moment since it may be intrusive (reuire a reboot).
I have a tunnel between a PIX 515E version 7.2(2)and a Cisco 3800 version 12.3(11r). There is a mismatch somewere in the configs but I cannot find it. I have included the configs and the syslog errors.
View 5 Replies View RelatedI'm able to upgrade the master of a 3750 stack, but the member fails to upgrade. [code] I couldn't do rmdir flash:update unless I reload chassis... but even after reloading still cannot make the 2nd member to load with the newer IOS.
View 3 Replies View Relatedwe have over 100 AP1242 with c1240-k9w8-mx.124-23c.JA2 image, tow 5508 controller and WCS running. After the ap reboots, the duplex settings of the fa0 interface change to half duplex. I have to set it manually to full duplex. In my WCS or with the 5508 controller I have no chance to set the duplex settings for my ap's.
View 7 Replies View RelatedHowto set ports from WS-C2940-8TF-S to full- and half-duplex 100Mbit?
View 1 Replies View Relatedwe have connected gig interface Ethernet on Cisco 2900 series router to mpls link connected to our corporate network ,the issue here is our router interface speed and duplex settings are set to auto negotiation.The interface is negotiating speed and duplex at 10 and half where the provider side interface is hard coded to 100 and full duplex.when we tried to hard code the settings on our router to match the provider the interface never come up.
View 4 Replies View Relatedif I have a half duplex 10 mbs connection, is the max speed to download a large file 5 mbs or would the download tend to hog the channel direction?
View 9 Replies View RelatedSo I recently got a new computer today and it won't let me use my 100mbps of internet bandwidth. (Asus Sabertooth Z77 with an Intel 82579v gigabit lan controller) I noticed that at the LAN connection properties>Properties>Configure>Link Speed tab the 'Speed and Duplex' option was on Auto Negotiation and it was only accepting (or supporting) the 10mbps Full Duplex. When I switched it to 100mbps Full Duplex it would mark my connection icon with a red cross and when I clicked diagnose it said "Please connect your ethernet cable or your cable might be broken". So I tested my internet speed with that same cable on a different computer (laptop) and it worked with 40Mbps, so I don't think the cable is broken. Also I just recently downloaded some drivers but one was specifically for the Intel LAN controller but I'm a total noob for all of this computer stuff I don't know if it messed it up or something. Is it the motherboard that's not working correctly?
View 3 Replies View RelatedI was trying to upgrade my 3560 in the lab and I think I might have bricked it. I tried to load up IOS image c3560-ipservicesk9-mz.122-55.SE5.bin so I would have SSH support. I originally was running c3560-advipservicesk9-mz.122-25.SEE2.bin and now I can't get either to load, I get the error message 'magic number mismatch: bad mzip file'.I've formatted the switch and attempted to load the 122-55.SE5.bin image and got the error message above. In hope I could revert back to my old IOS I tried to load up the 122-25.SEE2.bin image but got the same error message! I've verified that the image was indeed on the flash. I'm at a loss here because I know both images are valid. I've tested them both on my other 3560's.
View 11 Replies View Related
