Cisco Switches :: SG300-20 - Password Lost After Firmware Update V220.127.116.11
Aug 31, 2012
I have a problem. Yesterday I have upgraded both my SG300-20 switches to firmware v18.104.22.168. Now I cannot login on of my switches, unknown username and password. I am absolutly sure I have the password, because they are the same and I just upgraded it. I have re-booted the switch, but without any luck.
I updated the fimware on my WRT160N v3 and followed it up with a reset of the router. I then restored the router settings that I had saved. All the settings appeared to be good, but none of my wireless devices would connect. I reneted the pass phrases (WPA2) but still nothing. Tried to change the passphrase, still no good. I then did a factory reset of the router from the setiings page and manually re-entered and save the settings, again nothing. All of my devices are able to "see" the network and the correct SSID.
I have two Cisco SG300-20 switches. Both of them are configured in L3 mode. They have several VLAN's configured.
When I reboot my switches some VLAN membership settings are lost! I have already saved the settings over and over before rebooting, and even tried to save it to the backup memory and so on. Say for example I have changed port 9 to 14 from VLAN 101 to VLAN 105. I save the configuration, reboot the switch. And then the changes are lost. This is a big problem, because servers and my iSCSI network loose connectivity. They already have the latest firmware. This issue was there three firmwares before.
This issue pop-ups when I have a power loss, or I need to reboot/shutdown them manually. It may be off-topic but I also have the feeling that the performance of the switches goes down during uptime. A reboot solves the performance issue. I don't have a performance benchmark, but I can notice it on the performance transfer rate between clients and servers.
We just upgraded our Sg300 series switches to the new IOS so we can get CLI access. The upgrade went fine but it seems we have two login prompts, the first being completely unnecessary as you can just hit return to get by it. IE here is the progression:
1. Connect SSH
2. Receive a "login:" prompt. Anything can be entered here, including just return
3. Login banner is displayed
4. Username Prompt is then displayed. Valid username required
I am trying to get rid of that first login prompt (IE Step 2) as it is causing issues with our configuration software. I have tried every line and authentication command I can think of, the only thing that gets rid of it is using none authentication which obviously we can't stay with. how did you get around it?
we are looking to use the new firmware's DHCP server feature to setup different DHCP scopes for 5 different VLANs configured on the switch. I see where to turn this on and setup the scope however I can't clearly see where I can assign the specified scope to each VLAN on the switch.
I am using the CISCO SG300-28 with firmware version 22.214.171.124. I enabled RADIUS authentication and accounting. Authentication is working but there are no accounting requests/replys (Accounting on, accounting off, accoun ting start, accounting stop) when running RADIUS in debug mode. I also did a packetcapture and there are no accounting packets.
So i updated the firmware image up to version 126.96.36.199. When I now want to configure accounting in RADIUS settings then there isn't any option to set an accounting port.
Ich checked the data sheet of the switch and it says that accounting is supported:
=============================================== 802.1X: RADIUS authentication and accounting, MD5 hash; guest VLAN; unauthenticated VLAN, single/multiple host mode and single/multiple sessions [URL] ===============================================
I did a second packet capture with the new firmware image and there are still no accounting packets.
The RADIUS server is configured correct for accounting because when using another NAS like a WLAN-AP with DD-WRT accounting is workings. It is working with pfsense Captive Portal (an open source firewall and routing solution with a hotspot portal).
we are looking to use the new firmware's DHCP server feature to setup different DHCP scopes for 5 different VLANs configued on the switch. I see where to turn this on and setup the scope however I can't clearly see where I can assign the specified scope to each VLAN on the switch.
I've been having a problem with a brand new SG300-10 switch that I posted about yesterday. I checked the firmware and it was at 188.8.131.52 and the lastest is 184.108.40.206. So I backed up the current firmware and loaded the 220.127.116.11 version and it seem to be CLI based only, with no web GUI.
If so is there an easy way to reload the 18.104.22.168 using the CLI? There is nothing in the CLI docs that I can see unless it's buried.
The release notes for 22.214.171.124 don't say it's CLI only either, maybe something just went wrong but the CLI seems to be functional.
I have a question regarding SG300 series small business switches.If I switch between the two possible images, will the configuration get lost or is the configuration the same independent of which image I choose?
I installed the 126.96.36.199 on a couple of SG300-28Ps. On the Status and Statistics page, the PoE indicators no longer lit. Physically, on the front of the switch, they did still light. I didn't yet reboot to factory defaults to see if that clears it, because I don't feel like entering the config again this early in the morning. But I am willing to test that, if needbe.
When reverting the image back to 188.8.131.52 (tested) or possibly earlier, the ip default gateway must be re-entered (if it was configured). Even if ip-default gateway x.x.x.x shows up correctly on a 'show run', the switch will not obey it, and on the IPv4 settings page it will report the operational default gateway as blank. This came as a surprise becauset he switch suddenly wouldn't talk to the VPN anymore.
Logging onto the switch locally, going to the IPv4 settings, ticking the radio button back on User Defined and typing it back in cleared that up. It appears this cropped up because the syntax for specifying the default gateway changed in 1.3.x but it's still odd that the config shows correctly in console but not in the gui.
I have tried to update the firmware of my srw2016 but after this update my switch wouldn't start again.
It shows this message in my console: Exit from boot menu. Continue with flow. Preparing to decompress... Image in address: 0x0 - Check Sum error! Please download a new image. Downloading code using XMODEM.
I have several SG300-10 and SF302-08P switches running with L2-mode, and after I upgraded their firmware to 184.108.40.206, they began to record the following logs every one hour.
- Severity: Warning
- Description: %COPY-W-TRAP: The mirror-config file is illegal due to failure of previous copy operation/s to mirror-config.Also I found that I didn't see the Mirror Configuration file on the Configuration File Table in the Configuration Files Properties page.
I just purchased and installed this switch. It has firmware version 220.127.116.11 with boot version 18.104.22.168. I want to update te firmware to 22.214.171.124. Perhaps I am not doing something correct because when I try to update it I receive an error message that tells me the file is an illegal software format. Here is what I did. Under file format went to update firmware select http, update the chose the 2008.ros file. Start the upgrade but it fails.
i have a SG300-28 switch here but I do not have the password to login the device. From the startup config of the switch, I see the login password is encrypted. Are there anyway for me to access the device without reset it?
Have an SRW2024 that I was updating firmware and it got interrupted. Now I can't access the switch from either console or IP. Switch will not pass traffic. Is there a way to get this switch completely reset so I reconfigure and use it again?
I have a dozen or so SG300 switches and a few months after configuring and deploying them, I have noticed that as I'm logging back into them, I'm being told that I'm required to change my password as it has expired. The problem I have with this is that we pick a super complex password and stick with it because we have bots that telnet to the switches and pull configs and make config changes. I do NOT wish to have this enforcement turned on for these switches and I think it should be an option but neither the Admin Guide, the command line, nor the GUI seem to have any mention of this "feature". how to disable this feature?
These are our first switches and seems like GUI is lot different than the online. Out intervlan routing is o not working. I am absolutely sure that I setup the switch in L3 mode since it allows me to create mutiple interfaces. I am hoping that this GUI issue is related to interVLAN routing.
Below is the blog I started for InterVlan issue [URL]
This is the link for online simulator and what I see in its IP tab. I know this switch is not SG300. [URL]
This is what I see on our switch.
Our switch version switchd64684#show version SW version 126.96.36.199 ( date 19-Jun-2011 time 18:10:49 ) Boot version 188.8.131.52 ( date 08-Apr-2010 time 16:37:57 ) HW version V01
I have SG300-28P that I am using as layer-3 switch. Recently I ran in to SG300-52 switch and even though loading same firmware doesn't give me option to do layer-3 switching. For SG-300 I see options in GUI to create vlan interfaces under IP information section, while SG300-52 has IP information option only under the management section.let me know if these are 2 different hardware types and L3 is not possible on SG300-52. If its possible to enable L3 switching on SG300-52?
I'm replacing 2 3COM 4500 Swithes with the SG300-52 Cisco switch. We have 3 VLANs, 10, 20, 100. The switch is set for Layer 3 and I have setup DHCP relay. what settings i should set on the Cisco for the following setups:
We have several of the SG300 Serices switches. We use them to route VLAN traffic to Remote Offices, Internet Connections, and WiFi Access Points.In one remote office we have a SG300-10 setup to route the HQ Network and the remote Office Subnet. The SG300 is Connected to HQ via Fiber and has multiple Tagged VLANs on it. If I do speed tests over the Fiber Link on the Incoming Tagged Netwotk I get Decent performance, 80Mbs. If I switch to a networtk that is not priginating from HQ, and have the SG300-10 route packet, I get dismal performance. 15-20Mbs.
I Fireded up a New SG300-28P FW v184.108.40.206. Added a the HQ VLAN 101 and new VLAN 1025 . Mapped some Tagged and untagged ports for each. Switch was connected to HQ Network as untagged VLAN 101. I put a laptop on an Untagged VLAN 101 port. Ran some tests, cam back with 750-850Mbs. Great. Put the same laptop on a Tagged 101 Port, Configured the NIC for Tagged VLAN 101, Same test, same Speeds, 750-850Mbs.I then Configured laptop for Tagged VLAN 1025. Connected to tagged VLAN 1025 port. Ran speed tests, resuts were 15-20Mbs!
I then Configured laptop for Untagged VLAN 1025. Connected to unagged VLAN 1025 port. Ran speed tests, resuts were 15-20Mbs!It was only the Laptop and the Connection to the HQ net on the SG300-28P. Why is the performance of this unit soooooo poor when it needs to route?Other Switches have FW v220.127.116.11 or FW v18.104.22.168. They have Similar speed issues. All Configured for Layer 3.
does the SG300 switches can be used with Microsoft NLB in Multicast mode?I know on traditional Catalyst switches you can statically "map" IP's to mac's and then to multiple ports but this doesn't seem to work correctly on the SG switches - it gives an error about the mac not being not Unicast?
Any snmpset commands to add, modify and delete vlan table entries on SG300-10 switches? I checked url... however this information is apparently only valid for catalysts. The latest firmware is installed and the provided MIB files are used.