Cisco LAN :: Management Interfaces On 7600 Switches And Its VLANs
Jul 19, 2012
I am using a Catalyst 7600.
I set up a VLAN interface (VLAN 3) with an IP-address and I can connect to it using telnet and log in to the switch as admin.I call this my management interface.
How come I manage to log into the management interface when the native VLAN is default 1? I thought the native VLAN determines which VLAN I need to log into to access the switch?
Can I make management interfaces of all the 48 ports if I want?
View 5 Replies
ADVERTISEMENT
Nov 23, 2012
tell me for the FWSM (blade on 6500 or 7600) the maximum number of virtual interfaces (VLANs)
View 14 Replies
View Related
Sep 3, 2012
I didn't design the job, but is pretty straight forward, except the following, the design has a single wlc 5508 with 2 physical connection between two non cisco switches. There are 2 initial WLANs to be created. I am ok with most of the wlc config execpt the following:
Now from my understanding of everything I have read recently, you can't use LAG on the 2 physical connections if they connect to 2 seperate switches, unless, although not offically supported, the 2 connections are on either 2 3750s in the same stack or a pair of 6500s running VSS. So I believe that in my case 2 seperate connections from the wlc to 2 non cisco switches will not work with LAG. Is my understanding of this correct?
Is there a way to maintain the 2 physical connections from the wlc to the 2 non cisco switches to maintain redundancy?The wlc will have a management interface obviously, but from what I have read, the 2 WLANs that are going to be created have to have their own interface on the WLC. Which I understand as the managment int and each of the 2 WLANs are on different subnets.
If I don't use a single uplink to one of the non cisco switches (either 1 or 2 physical connections) using LAG, it appears to me that each of the interfaces ( management, wlan1 and wlan2) need to have a physical connection from the WLC to the switch, with each interface mapped to a physical port on the WLC, so correct me please if I am wrong, but this would mean I need 3 physical connections between the wlc and the swtich?
View 3 Replies
View Related
Dec 12, 2011
I have VLans 20 and 21 set by ISP for Voice and Data respectively.What will happen if I already have VLans 20 and 21 in my Local network?
View 4 Replies
View Related
Jan 10, 2013
I have a Nexus 5548UP that would be managed by two organizations. Is it possible to set IP addresses for mgmt0 and an SVI (or an L3 interface) without using the L3 daughter card? I don't want to route between VLANs, just to separate management traffic.
View 4 Replies
View Related
Aug 30, 2011
I've got a new 5508 wireless lan controller and can ping the ip address of the management interface, but can't access the GUI at the management interface's ip address. I can access the GUI on the service-port interface. No static routes in the controller; trunk appears to be set up correctly.
View 5 Replies
View Related
Nov 29, 2011
I am currently doing some research (for my employer) into creating multi-context sub-interfaces on a Transparent ASA 5550.
I have not been able to find any details on this subject which state it is or it is not possible. This will be used for Syslog logging.
View 1 Replies
View Related
Jun 2, 2012
The management VLAN(the one I use to connect to the devices) and the native VLAN dont have to be the same VLAN ,right?They are independent and can be different. For instance I can use VLAN 5 for management and 10 as the native VLAN
View 8 Replies
View Related
Oct 8, 2012
just have few questions about designing WLC 5508
The scenario is that currently one of the client has a firewall Tie ring T1 internet facing and T2 internal which has multiple DMZ connected.
T2 firewall has a DMZ switch connected which has a router which connects to MPLS cloud to different site across the country. (around 10 sites) all static routing.
Now the client is thinking to deploy wireless at all 10 sites using H-REAP. The issue is that client has only one WLC and they are not willing to buy other as i was thinking to deploy two WLC one for corporate and one for guest users. (one in internal network and on in DMZ)
Now my question is as follow.
1- Keeping in mind that there is only one WLC where should i physically put it?
2- How guest users will work ? How the authentication will be done?
3-There are 8 SFP ports in WLC how physical topology will look like?
4-How many Vlans i have to make for wirless users will that be 10? (1 at each site) ?
my last question is that how these ports work on WLC are they just like switch e.g one port can be assigned to different vlan....just confuse about interfaces and vlans on WLC (interfaces concept)
View 3 Replies
View Related
Aug 20, 2012
ASA's G0/2 interface is connected to G0/1 interface of a 3560G switch in DMZ, below is the config and diagram
Switch Config
int g0/1
switchport mode trunk
switchport trunk encapsulation dot1q
int vlan 1
ip add 192.168.0.100 255.255.255.0
We are running out of IPs in 192.168.0.X network and planning on creating sub interfaces on the ASA and trunk it to the switch so that we can have multiple V LANs in DMZ. Tried the below config in LAB but that didn't work, can you have a look at it and let me know if I miss anything. No change on the switch config since G0/1 is already a trunk port.
ASA Config
interface GigabitEthernet0/2
description Trunk to DMZ networks
no nameif dmz
[code]...
If I change the V LAN on the switch from 1 to a different V LAN, say V LAN 50 for example, and configure the ASA accordingly its working fine.
View 5 Replies
View Related
Oct 8, 2012
just have few questions about designing WLC 5508. The scenario is that currently one of the client has a firewall Tie ring T1 internet facing and T2 internal which has multiple DMZ connected. T2 firewall has a DMZ switch connected which has a router which connects to MPLS cloud to different site across the country. (around 10 sites) all static routing. Now the client is thinking to deploy wireless at all 10 sites using H-REAP. The issue is that client has only one WLC and they are not willing to buy other as i was thinking to deploy two WLC one for corporate and one for guest users. (one in internal network and on in DMZ). Now my question is as follow.
1- Keeping in mind that there is only one WLC where should i physically put it?
2- How guest users will work ? How the authentication will be done?
3-There are 8 SFP ports in WLC how physical topology will look like?
4-How many V LANs i have to make for wireless users will that be 10? (1 at each site) ?
My last question is that how these ports work on WLC are they just like switch e.g one port can be assigned to different v lan....just confuse about interfaces and vlans on WLC (interfaces concept).
View 3 Replies
View Related
Apr 18, 2013
I have a an ASA 5520 connected to a Layer 3 (3750) switch (Inside) and a connection to a 2960 switch (Outside) to get to the internet. . I have created vlan interfaces on the 3750 switch and enabled ip routing on the switch to enable the vlans to communicate with each other.
Vlan Interfaces on the switch:
Vlan 100 172.17.1
Vlan 200 172.18.1
Vlan 300 192.168.3.1
I want the devices connected to the 3 vlans to be able to pass through the firewall and get out to the internet.I have connected the ASA to the 3750 by routed interfaces (10.10.10.1) --------- (10.10.10.2) and they are able to ping each other.I have also put a default route on the 3750 sending all traffic from the switch to the ASA inside interface (10.10.10.1)The issue that i am having is that the ASA also connects to a 2960 which has a connection to the Internet, and they are handing off an ethernet connection from the 2960 that sits in VLAN 55 (Vlan 55 is the Internet accessible vlan).How do I configure my ASA to send all traffic from my (3) vlans to the interfaces that connects to the 2960 switch?
View 21 Replies
View Related
Aug 7, 2011
Any snmpset commands to add, modify and delete vlan table entries on SG300-10 switches? I checked url... however this information is apparently only valid for catalysts. The latest firmware is installed and the provided MIB files are used.
View 8 Replies
View Related
Aug 20, 2012
I have 2 switch groups.
2 SGE2010's with VLAN's defined as 10,20 and 30
Vlan 10 is the management VLAN, and it uplinks to our border router.Vlan 20 is the workstation VLAN, and all workstations point to the switch as their default GW? Vlan 30 is the ip phone VLAN, and all phones use this as their gateway.
I would like to put a LAG between said switches, we have some servers on the ip phone switch that need to be accessed by the workstation clients, and the single 100mb link through the router is probably not going to be enough.As I understand it, because the switches have different networks on them, a simple lag will not work. I did create a lag, and assign ip addresses to each side, however in that mode, it doesn't appear I can block vlan 10 from transiting the LAG, and with out that block I will end up with a logical loop, and spanning-tree will block one of the uplinks, or the LAG itself.
View 10 Replies
View Related
Jul 17, 2012
I was looking for configuring QOS for two VLANS i have created. these will be for voice traffic vlan 22 and video traffic vlan23. i also have three other vlans for pc's, wireless devices and our cnc machines. we have 5 switches that are all SG30028P's with a single switch doing the intervlan routing (operating at layer 3). all of the switches are trunked back to the main switch and ive been through the guide written on how to do this on a single switch which i dont think is layer 3.
View 5 Replies
View Related
Aug 20, 2012
I'm going to have several SG300-28P switches to setup. I'll need to create multiple vlans for data, voice, and wireless traffic. I have the following questions in setting up this configuration:
VLAN 1 Management
VLAN 100 Data
VLAN 200 Wireless
VLAN 300 Voice
1) For managing the switches via IP, will LAN1 be the default management network? Should I create a seperate VLAN for managing the switches?
2) For uplinking the switches together, I plan to trunk a port to connect the switches together. What's the configuration on the trunk port to forward all vlans from one switch to another?
3) On some ports, I want to configure a trunk for two vlans (Data and Voice) where the phone has a pass through for PC. The phone supports tagging for the PC and the VoIP traffic. For example on port 10, would VLAN 100 and 300 be set to tagged?
View 3 Replies
View Related
May 22, 2011
I am trying to set up three vlans across two switches. The switches are Cisco SG200 and SG 300 series. There are 20 devices connected to the two switches including a router for Internet. Among these devices are five wireless access points all hardwired to the LAN. If I understand correctly the first thing I have to do is aggregate the two switches. I ran two cat5 cables to ports 1 and 2 of each switch. As I understand it all I need to do is to create SAG with the two ports on each switch. I think I need to use tagging but I don't really understand how to do this. Once I get the trunking set up correctly I want to create one vlan to which all devices will belong for Internet access. The other two would be for data and VoIP. Do I create vlans with the same name on both switches? When I assign the devices (by port) do I need to enable tagging? Which type of port setting should I use? I am assuming that by including the acess points in the vlans will mean that any wireless device connected to them will have acess to the Internet and the devices in the same vlan.
View 1 Replies
View Related
Sep 12, 2006
Is there any commands to know the Current Heat Dissipation of high end routers and switches 7600,6500? Even though we can calculate thro. corresponding calculators, i eager to know is there any commands to do that?
View 4 Replies
View Related
Dec 8, 2012
I have been configuring the SG-300 28 from both web and cli interfaces.When doing a sh run I get Int gi2 before int Gi1? WTF?Also one of my vlans wasn't working on interfaces but was working through the assigned trunk port to my other switch.I deleted it and recreated it and it is now working. Why we have a failure and go to reconfigure a switch and have these same issues.
View 1 Replies
View Related
Oct 11, 2011
I'm having a hard time getting Compliance Manager to accept a "banner login" command I'm attempting to use on 6500 IOS switches. I've edited the template, tried cut-&-paste, looked for the archive file on the server to directly modify it (without success), among other things. I have this feature functioning correctly on CatOS switches, but can't seem to get it properly set on IOS switches. What's the limit, as far as the template is concerned, on the number of characters with this type of command? Where are the archive configs located on the server; in the "shadow" directory?
View 1 Replies
View Related
Nov 29, 2011
I just purchased 2 SF-300 48 port units for 2 customers. I want to be able to remotely manage them over the Internet with my browser. BUT, customer sites already use port 80 for web servers. So, how do I configure this switch to use some other port than 80?
I called support, and much to my surprise he said it cannot be changed. How bizarre that a device with many hundreds of configuration settings does not have one of the most basic settings...
At one customer site I can configure port forwarding and translation to get around this problem, but the other site's router does not offer port translation..
View 2 Replies
View Related
Jun 19, 2012
I've noticed that a couple of switches are complaining about duplex mismatches on trunk interfaces. When I took a closer look, two switches (switches 1 & 3) are reporting that they have a duplex mismatch to a device connected to a downstream switch (switch 2). Basic topology is switch 2 has a 1G fiber link to both switch 1 & 3.
View 11 Replies
View Related
Jun 10, 2013
we have two ASA 5510 connected in failover, and a pair of cisco 2960s switch connected in stack. Currently one interface of primary ASA is terminated on switch1 and a interface from standby is connected to switch2 as Inside, and switch1 and switch2 are in stack. for redundancy purpose i want to use multiple interfaces of ASA for inside , so first i thought to use etherchannel , but it has a limitation that , it cannot be terminated on stack switch(as per cisco document [URL]
So my question is :
1. can we use redundant interface feature where 2 physical interfaces combined to a redundant interface (eg interface redundant 1) for inside redundancy purpose.
2. Can these ports from primary/standby ASA terminated on stack switches (2960s), will this work (if the switch with active port goes down, will the other port take over in the redundant interface with the other switch).
View 1 Replies
View Related
Jun 6, 2013
I have two switches (sanitized configs attached) and I am trying to bond int gi0/1 and gi0/2 between the two. Then I need int gi0/3 back to the main LAN switches. These are new Vlans created 982 and 983 for these switches. Question #1: do the configurations look correct? I haven't placed any laptops on the interfaces to test interconnectivity yet but I am wondering if it will work with no default routes.
The admin team needs these switches at location A for setup then they will be moved to Location B. The only thing that sucks for me is that the network admin before me created gateway interfaces for all the local Vlans on a main router as sub interfaces. For example, for these two subnets, I need to create subinterfaces below (at location A), which is why a gave the Vlan on the switches, ip addresses.
interface GigabitEthernet0/0.982
encapsulation dot1Q 982
ip address 10.98.2.1 255.255.255.0
ip flow ingress
no cdp enable
service-policy input mark-mplsqos-in
interface GigabitEthernet0/0.983
encapsulation dot1Q 983
ip address 10.98.3.1 255.255.255.0
ip flow ingress
no cdp enable
service-policy input mark-mplsqos-in
When I move the subnet to location B, I will also move the gateway. These two switches will be used mainly for a VMWare and HyperVisor environment so Vlan 982 is for VMA network and Vlan 983 is for management. The admin tells me the software needs to tag the packets, I am not sure if I care as the switches should handle that also.
View 1 Replies
View Related
Sep 9, 2012
I am trying to get WOL working across different VLANS on a SG-300-10 Switch in Layer 3 Mode. To achieve this, I've setup an UDP-Relay (GUI menu IP Configuration) for UDP-Port 7 to 255.255.255.255 (this should flood all interfaces with the paket), however, WOL doesn't work across different VLANS. When I am connected directly to the corresponding VLAN, WOL works fine within the same subnet.
View 2 Replies
View Related
Mar 22, 2012
How shall i use different vlans outside another gateway in sg-300 28? Example:
vlan2 192.168.2.0/24 gateway 192.168.2.1 outside router gateway 192.168.2.254
vlan3 192.168.3.0/24 gateway 192.168.3.1 outside router gateway 192.168.3.254
should me doing in sg-300 28?
View 1 Replies
View Related
Jan 8, 2013
I am setting up a 3 host ESXi cluster. I am using a pair of stacked SG500-28 switches for switching redundancy. Each host has 8 NICs. 4 to each switch. I have successfully setup a 3 NIC LAG with 1 path to one switch and 2 paths to the other. These LAGs work. When I setup a 2NIC LAG via the console for management, and the associated ports on the switches, I lose managment communication with the host. Before setting up the LAG in the ESXi console, I set that vswitch properties to us IPHASH as instructed here bit.ly/VLaTEt I have attempted to follow those instructions as closely as possible. The one thing that I am wondering is whether the SG series supports etherchannel. I can't find any reference. Either way, it works on the other vswitch that is for vMotion. I can vmkping between the hosts over that LAG. But setting up a LAG on the management vSwitch doesn't?
View 5 Replies
View Related
Mar 12, 2013
In one of my client location I have deployed one Cisco 3560X (core switch) and one SG-200-18 (access switch). I’ve configured three vlans (vlan 2, vlan 3 and management vlan 1), relevant trunking and I’ve connected two pc to the access switch to vlan 2 and 3 respectively. So far everything (including inter-vlan communication) works fine, except that I couldn’t reach the vlan 1 (management vlan) devices (access switch and core switch) from any pc which is connected to either vlan 2 or 3.
I’ve configured the “port VLAN membership” settings in SG-300 as follows,
Interface mode Administrative vlans Operational vlans
GE 2 Access 2UP
[Code].....
View 4 Replies
View Related
Mar 25, 2012
I have a SG300 switch working in layer 3 mode. I created 3 VLANS and the intervlan communication is working fine. I want to know how to block acces to switch managment from the Vlans. One of the vlan is allowed to access the switch but not the others vlans. What is the best way to implement this? with ACL or with Managment Access Method, creating an access profile?
View 1 Replies
View Related
Dec 21, 2012
I have a new SG300-28P, and have had occasional issues with being unable to connect to it via anything other than the serial port. I have connectivity between my machine and the switch (tested with ping each way), and in fact, have the same problem if I take a laptop to the switch and connect them directly.What happens is that though the switch is operating normally, http, https, ssh and telnet attempts to access all fail in one way or another. Ssh and telnet either yields no response or a refused connection (even though those services are enabled). For http and https, I'll occasionally get enough of the web page to be able to tell what it is ... but attempts to log in just don't work.While this is happening, the CPU and packet load on the switch is very, very low.Rebooting didn't work entirely, though it may have made it better. Resetting to factory defaults and then reconfiguring makes it work.This is using the latest firmware: 1.2.7.76.
View 3 Replies
View Related
Jan 30, 2012
Trunk from 3500 going into SF300-8 #1 QNQTrunk from SF300-8 #1 going into trunk SF300-8 #2QNQ from SF300-08#2 going into Trunk SF300-24, All Vlans from Network 1 seem to be communicating properly between the 3550 and SF300-24 and is isolated from the Transport Network by QnQ. I am having one problem, I can not ping the SF300-24 or get to the management interface. I am able to access other devices on the SF300-24 Vlan1 from devices on the 3550 Vlan1 and vice versa.
View 1 Replies
View Related
Apr 12, 2013
At the moment i have 2 internetconnentions with 2 different modems/routers. The computers are currently direct connected to the router.I'm considering adding a switch in the network and i hope i can make 2 different vlans each for one internet connection. The two networks should not be able to connect eachother.But i dont know what switch i need to do that. Do i need a Sg-200 or a SG-300 switch?
View 1 Replies
View Related
Aug 26, 2012
I have 2 SG300-10 switches, and I need two VLANs, one for internal network and one for WiFi APs.I need ports 1->4 on both switches to be part of 1st VLAN and ports 5->8 on 2nd VLAN; and port 10 uplink to 2nd switch.How I set up the VLANs and interface VLAN mode?
[code]...
View 1 Replies
View Related
