Cisco Switches :: SGE2010 Does Not Block Ports Even With STP Enabled

Jul 28, 2011

We are experiencing bridge storms and network slow downs and we believe we have traced the issue down to users plugging a cat 5/6 cable between 2 ports on the wall both wired back to a SGE2010 switch.
 
So we did a test - we plugged a single short cat 6 cable between 2 ports on a SGE2010, our access switch. Suprisingly, even with STP enabled, the switch DID NOT block one of the ports and in a few minutes the ENTIRE NETWORK was down, as CDP, STP, and ARP traffic became a multi-gigabit storm throughout the network.
 
Why on earth does this switch not block a port that is obviosly looped?
 
Every other cisco switch since I started on 1900XL's did this in 1999.

View 1 Replies


ADVERTISEMENT

Cisco Switches :: SGE2010 Can Use 4 SFP Ports And Stack Of Two Switches At Same Time

Feb 15, 2012

I looking to buy SGE 2010 swith, but I have some question:

1. Can I use 4 SFP ports and stack of two switches at the same time.
2. Is it possible to use for stacking  ports other than 24, 48?
3. What is maximum possible number of ports  to use for stacking (can I get more than 1Gb thruput).

View 0 Replies View Related

Cisco Switches :: SGE2010 Loses Untagged Ports

Mar 7, 2013

I have 5 VLAN's setup in the sge2010.  I have one port (uplink for the network) that I want everyone to see.  But have separate VLAN's for different departments as to keep them all separate.  Everytime i try and Untag that uplink port, i lose my untag in the original VLAN it was tagged in, and it changes to excluded.

View 13 Replies View Related

Cisco Switching/Routing :: SGE2010 Switches Stack Dropping Ports

Oct 12, 2012

Our environment consits of 4 cisco SGE2010 switches (stacked). I have implemented STP BPDUGUARD and Portfast on all client ports (suspected a loop). And our uplink to the Server DMZ recieves almost all of it's BPDU packets back(is that normal?) The issues lies where we have random ports dropping out - across all stacks for seconds at a time. We get errors/warning such as,Pinging between the DMZ network appears to be fine. Pinging from the client/switch network show packets being dropped quite frequently.All devices are on VLAN1 (I've have researched this and this could be the cause of the issue)

View 12 Replies View Related

Cisco Switches :: How To Block SG300 10 Ports

Sep 30, 2012

I just recently purchased an SG300 10 port switch. After reading through many of the threads here, I was finally able to get the different VLANs to route properly. However, I'm having a unique issue that I'm not sure if it's related to the switch or not. I currently have 2 VLANs configured on the switch.ports 1-4 are native vlan 1 (192.168.1.X) ports 5-7 are VLAN 10 192.168.10.X (Trunk Port with VLAN 1 tagged and VLAN 10 untagged)I have a Hyper-V server connected to both of these networks. The VMs are running on both VLANs on port 5. I have the following problem:When I have a domain controller VM on VLAN 10, I notice that many of the DC communications failed. I took a network trace and noticed that many of the RPC port ranges were failing. I am able to ping all of the hosts on VLAN1 and vice versa. My question is as follows:Does this switch have some type of security option that blocks high range ports? I can't seem to find the menu option indicating that this is the case. I have already set-up a NETBIOS UDP proxy, but this hasn't worked much. I still have problems connecting to machines on this VLAN range.

View 5 Replies View Related

Routers / Switches :: Block Multiple Ports On Only One Ip?

Oct 4, 2011

how can I block multiple ports on only 1 IP Address while not blocking those ports on other IP Addresses. I am using a Netgear WNR2000v1 which assigns the IP Addresses to each device.

View 1 Replies View Related

Cisco Switches :: SGE2010 Switches / VLANs And A Blocked Port In Spanning-tree?

Aug 20, 2012

I have 2 switch groups.
 
2 SGE2010's with VLAN's defined as 10,20 and 30
 
Vlan 10 is the management VLAN, and it uplinks to our border router.Vlan 20 is the workstation VLAN, and all workstations point to the switch as their default GW? Vlan 30 is the ip phone VLAN, and all phones use this as their gateway.
 
I would like to put a LAG between said switches, we have some servers on the ip phone switch that need to be accessed by the workstation clients, and the single 100mb link through the router is probably not going to be enough.As I understand it, because the switches have different networks on them, a simple lag will not work. I did create a lag, and assign ip addresses to each side, however in that mode, it doesn't appear I can block vlan 10 from transiting the LAG, and with out that block I will end up with a logical loop, and spanning-tree will block one of the uplinks, or the LAG itself.

View 10 Replies View Related

Cisco Switches :: SGE2010 Switches - Best Way To Implement Redundancy

Oct 31, 2012

I currently have two SGE2010's with a 4-port LAG configured between them.  I'm looking to add another two SGE2010's and I want to add redundancy at the same time.  The switches are currently in standalone mode.  I don't have fiber connectors and was planning on just using copper for the uplinks.
 
My questions are:
 
- Is it possible to use stack mode in conjunction with 4-port LAG groups to create redundant 4-port links between all of the switches?  The documentation says that ports 24&48 are reserved for stacking - does that mean I can't specify a LAG instead?
 
- If 4-port LAGs aren't possible, does that mean that these switches max out at 1Gpbs uplinks if you use stack mode?

View 4 Replies View Related

Cisco Firewall :: Block Gtalk On New 2911 Security Enabled Router?

May 8, 2010

I want to block gtalk on my new cisco 2911 security enabled router.

View 3 Replies View Related

Cisco Switches :: Cannot Bind ACL To Interface On SGE2010

Aug 30, 2011

I am working on two SGE 2010 stacked and in routing mode. Everything work fine but before finishing the job, I wanted to lockdown all the network device so they would not be accessible from some subnets. Problem is, I cannot bind my ACLs to any interface. I get "Cannot apply because lack of HW resources." I am running firmware 3.0.0.18, and 3.0.1 release notes don't address that issue. TCAM utilization is at 3% Routing resources shows host: 200, routes:60, ip interfaces: 50 I have tried from the cli and get the same message.

View 3 Replies View Related

Cisco Switches :: Lag Between Stack Unit On Sge2010?

Jun 28, 2012

Can I create lag betwen stack unit to increase speed between units ?? stack connection is only 1Gbit on ports 24/48 if posible lag link must be in trunk mode ?

View 4 Replies View Related

Cisco Switches :: SGE2010 Compatibility With Windows 7 Pro 64 Bit?

Aug 29, 2011

Is there any issues with accessing the browser based GUI using Windows 7  64bit on a SGE2010 switch? I took the switch home and tried on my XP 32bit machine and works fine, but no luck on any windows 7 64bit pc's. I have tried 3 different new pc's on this new switch and no luck at all.

View 2 Replies View Related

Cisco Switches :: SGE2010 - Cannot Get DHCP Working

May 28, 2013

We have a single SGE2010 in layer 3 mode switch with a Server 2008 DHCP server.
 
We will be implimenting a Voip netowork where the PC's connect to the voip phone. I would like to create another vlan - 10. I have created the vlan and assigned the IP on the swtich.
 
Routing seems to be working. I can ping both IP addresses of the switch on either vlan.
 
I cannot get DHCP working. In the SGE switch I have enabled DHCP Relay, enabled option 82, set my DHCP Interface as VLan1, and specified the DHCP servers IP address. On the ports I have set the port where the DHCP server connects to as a trunk port with Vlan 1 untagged and vlan 10 tagged. I have set the ports where the phones connect as a trunk port with vlan1 untagged and vlan 10 tagged.

View 1 Replies View Related

Cisco Switches :: SGE2010 Lag Won't Work On Stacked Unit?

Jul 1, 2011

We've have a 2 SGE2010-48 port, stacked. 4 LAGS are denifed, two on primary, whitch are working, two on slave unit are NOT working. Devices connected to LAGS are de the same and same configuration (Cisco ASA 5510).

View 3 Replies View Related

Cisco Switches :: SGE2010 - Change VLAN1 IP Address?

May 20, 2013

I want to know how am i do to change the Vlan1`s IP address because the actual ip will be used in another vlan. Actually i haver 10 vlans in L3 mode (routing) implemented in it.

View 5 Replies View Related

Cisco Switches :: SGE2010 How To Trigger Backups Via SNMP

May 15, 2011

I have been trying, so far unsucessfully, to trigger backups to a TFTP server of our SGE201 switches. I have testesd TFTP backups via the web interface, and that does work. I need SNMP as I  need a scriptable method to trgiger the backups on a regular schedule. I am running the SNMP query from a RedHat Linux server. So far I have the following query work out, but it is failing: [code] The error I am getting is generic, and the same query failed on multiple switches running Software Version 3.0.0.18. The switch is set with the community having full SNMP-admin access from the server's IP address.

View 3 Replies View Related

Cisco Switches :: SGE2010 Stacking Compatibility With SG500

May 29, 2013

I am currently running two SGE2010 in stack and planning to purchase new Sg500 .I have two questions :

1.  If these two different products can be managed as one stack.
2. Are the SFP (mini-GBIC) connections compatible and if so what accessories or parts do we need to enable them?

View 1 Replies View Related

Cisco Switches :: AP514N And SGE2010 Configuration For Vlans

Dec 10, 2012

Id like to set up our AP to push our different vlans depending on which ESSID you connect to.
 
A few things I am unclear on. The switch port on the SGE needs to be in trunk mode I assume.
 
Do I marry the Management Vlan ID on the AP to the PVID on the SGE port ? Or is the PVID the untagged vlan ID ?  
 
I set the switches port to trunk mode, it's PVID to 10 and set the management vlan ID on the AP to 10 and I get TTL Exceeded in Route when I try to ping.

View 1 Replies View Related

Cisco Switches :: SGE2010 Inter VLAN Routing

Oct 3, 2011

I've recently installed an SGE2010 switch, which I have set to 'Layer 3' mode.
 
I have created 2 VLANs using 192.168.10.x and 192.168.20.x (using .50 for the VLAN IP address in each case) - however, I need to be able to allow certain traffic between the VLANs.Alternatively, to get things started - I'm assuming I need to set up ACLs to allow access between VLANs - how would I configure the switch to allow all traffic from one VLAN to the other?

View 5 Replies View Related

Cisco Switches :: Port Mirroring Limit On SGE2010?

Oct 25, 2012

I have been told there is a limit (8) on the number of source ports that can be mirrored to a given destination port. I can find no specifications or other documentation to corroborate this claim. Any factual data to confirm or refute this claim?

View 7 Replies View Related

Cisco Switches :: SGE2010 / How To Implement Multiple VLANs

Jun 21, 2011

I have SGE2010 switches and I want to implement Multiple VLANs. Im a newbie and starting to study VLANS's.
 
I want to implement 5 VLAN's on my test lab network and here as follows:
 
192.168.1.x default
 192.168.2.x
 192.168.3.x
 192.168.20.x
 192.168.100.x
 
The .1 is exclusively for my test-lab servers.
 
The .2 is general test-lab Win-XP workstations.
 
The .3 is general test-lab Win7 worstations
 
The .20 is general test-lab production worstations
 
The .100 is for test-lab IP PHONES.

View 4 Replies View Related

Cisco Switches :: Updating Firmware SGE2010 Switch

Oct 20, 2012

what is the process of updating firmware on a SGE2010.
 
I would usually use TFTP - but, I can't see the TFTP command on these SGE2010's

View 1 Replies View Related

Cisco Switches :: SGE2010 Clients Need To Route Through ASA 5505 And 3750

May 17, 2011

I need to move the client machines off of the 3750 (and their DHCP dependency on it) to the SGE2010 and absolutely route their internet traffic out through the outside interface on the 5505. They must also be able to communicate back into the internal environment in order to communicate with the production servers.
 
The clients currently use .254 addressing through a dumb dell switch to the 3750 but I am trying to migrate them over slowly to the .253. I know that the 2010 will not do DHCP, so I am putting a DHCP server on that switch right now. The 5505 won't let me add an additional nameif statement onto one of the other eth0/x interfaces and I'm not sure if that has anything to do with it's capabilities to act as a DHCP server (it's not an option in the ASDM) or it's ability to serve as the internet gateway for the 2010 clients. (Side notes: The 5505 has a base license and is currently also connecting 1 site to site VPN. As is the 5520, so all of it's interfaces are used as well).
  
I statically assigned a moved client with a .253 address and plugged it into the 2010. I have tried giving the 2010 both a .4 address and a .253 address but neither will allow me to ping any of the addresses on the 5505. The 2010 shows automatic routes to the two subnets and I set it's default route to 253.1. The link between the 2010 and the 3750 works - clients receive a .254 address from the 3750 and can get out to the internet via the 5505 and reach the production servers as well.
 
Why won't the 2010 see the 5505 as a gateway and allow clients to get to the internet and also traverse the 3750 when they need access to the production network?
 
The reason why I dont' just connect the two swtiches and call it a day is because I also need the production servers to ALWAYS go out/receive web requests via  the 5520 outbound/outside interface. I'm having such a hard time wrapping my head around why i can't get my clients moved over to the new switch, I haven't even grasped how I'm going to do that yet.

View 4 Replies View Related

Cisco Switches :: Set Up SGE2010 Combined With Dell 6248 Switch?

Dec 14, 2011

I have currently a Dell powerconnect 6248 switch combined with a netgear UTM router. I have a basic understanding on how things should work but I don't have the knowledge to apply it as I'm new to setting up vlan and the person before me did the basic configuration like this:
  
defined 5 VLAN in the netgear router

defined the same 5 VLAN in the dell 6248

connected the dell switch to the netgear router via a trunk port.
 
Right now all the inter vlan traffic pass thru the netgear router as the dell switch as a trunk port connected to the netgear box who then give dhcp and set himself as the default inter vlan route. I would like to stop that since I would like the cisco switch to handle all the vlan routing for both switch and those switch to send their dhcp request to my win2k8 server.

I did set the sge2010 in layer 3 mode from the small business telnet interface. I then setup the same 5 vlan in the cisco switch.
 
If I understand this well I need to define an IP address for each vlan interface on the cisco switch for it to be able to route things, I have set them all as x.x.x.3 (x.x1.3 vlan 1, x.x.2.3 vlan2, etc) Then I need both swtich to forward all dhcp request to my dhcp box wich is in vlan 2. My DHCP server will have 5 range of IP address to hand out. my server are connected directly to the dell switch on vlan 2. I have set up a port in the dell switch in trunk mode and did the same thing in the cisco switch and connected them togheter to send all vlan packet. The current setup doesn't work so I need to finalize that setup so that everything works.

View 1 Replies View Related

Cisco Switches :: SGE2010 Stacking Versus Link Aggregation?

Aug 14, 2011

answer regarding stacking the SGE2010 switches versus link aggregation if greater than 1 Gb connectivity is required between individual switches? Currently have several switches in a stack configuration but would like to increase the bandwidth between some or all of the switches. Does stacking support a link aggregation configuration? If so what ports can be used and how should the link aggregation be configured in conjunction with the stacking?

View 2 Replies View Related

Cisco Switches :: SGE2010 - Firmware Upgrade And Configuration Not Saving?

Oct 7, 2012

Using the SGE 2010 for Microsoft NAP with 802.1x auth for switch access, which led to a few issues
 
What i have: An SGE 2010 48 port switch, firmware 3.0.0.17 Firmware upgrade: In order to ensure im not having problems due to old firmware, i tried to upgrade using ros_ls1_bp_ge_bx-3020.ros in order to move to 3.0.2, when uploading the file via TFTP, the upload completes and thats it, nothing happens.Restarting the device: As part of the upgrade process, i thought i might of had to reboot, so i rebooted, and found that all my settings were wiped clean, as if a factory reset had been performed.... and add further to pain, the backup of settings that i had taken do not seem to want to re-apply.NAP support: So i have tested my NPS (radius) server with NTRadping.exe and all is good, however i cannot get the SGE2010 to talk to it.... the authenticator state in the web interface is always listed as initialising.... im not sure if this is a simple incompatibility (hence the attempt at a firmware upgrade), a tag that needs to be set on the radius side or a switch misconfig.

1) how on earth do you upgrade the firmware?

2) why are none of my settings being saved when the device reboots ?

View 2 Replies View Related

Cisco Switches :: What Traffic Is Carried Over SGE2010 Stack Link

Nov 11, 2012

I have several SGE2010P switches connected in a stack. They are working fine as a stack.
 
Question is - what traffic, besides stack control, is carried over the stacking links?
 
All unused ports are VLAN 1U. Ports in use belong to VLANs 100, 101, and 105.Since I cannot configure or see the stacking ports, I am unclear if any non-default VLAN traffic passes over those links between switches?

View 1 Replies View Related

Cisco Switches :: QoS Setup On SGE2010 To Support VoIP Trunks Between PBXs

Aug 28, 2012

how to configure QoS on my SGE2010 to support my Toshiba CIX PBX VoIP trunks.  The infrastructure is straight forward: PBX(1)<==>SGE2010(1)<==>SGE2010(2)<==>SGE2010(3)<==>PBX(2) where PBX(1) and PBX(2) are connected through three SGE2010's that are trunked via fiber between buildings.  I don't have VoIP handsets and the PBX's are on their own VLAN.  Everything else has been a breeze in these switches but I have no experience with QoS

View 6 Replies View Related

Cisco Switches :: SGE2000 And SGE2010 - Change Names Of Interface To Unique?

Nov 7, 2012

We've been trying to monitor the used bandwidth of our SGE2000 and SGE2010 switches with Nagios.We've been experimenting with the various OIDs and we've found the OIDs linked to the different switchports.
 
Though when we use SNMPWalk (to find the OIDs connected to the port) the names of the ports are all the same.
 
[code]....
 
Is there a way to change the names of these interface to unique names?We've already given unique names in the description field through the switch's GUI, but it doesn't make any difference for Nagios.

View 1 Replies View Related

Cisco Routers :: RV042 Opens Ports 80 And 443 When HTTPS Enabled In Firewall?

Nov 15, 2011

I recently installed an RV042 v1.1 vpn router (older hardware revision but using the latest available firmware 1.3.12.19-tm) and set up VPN access with the QuickVPN client.  QuickVPN requires that the HTTPS setting be enabled under the Firewall options, so I did.  I then scanned our static IP with grc.com's ShieldsUP! to check for open or non-stealthed ports and discovered that ports 80 and 443 show as wide open, while port 113 is closed but not stealthed.  If I disable the HTTPS setting under Firewall, then ports 80 and 443 become stealthed.  Is there any way to use QuickVPN and keep these ports stealthed?

View 1 Replies View Related

Cisco Switches :: SGE2010 - How To View Table Showing Which MAC Address Is Plugged Into Which Port On Switch

Jul 31, 2011

I volunteer at a school who just purchased two 48 port SGE2010 managed switches.  I am not a big fan of the web gui and was hoping to see the standard Cisco command prompt instead of the menu-type interface.
 
Is there a way to view the MAC table showing which MAC address is plugged into which port on the switch?  I have been fighting with the menu and the gui for a while now and do not see this anywhere.

View 5 Replies View Related

Cisco Firewall :: 5505 - Block Everything Except A Few Ports

Apr 15, 2013

We have a client that is running a PC on a internet over satellite. To avoid any unessecery traffic over the satellite link (data traffic is quite expensive), we've suggested to use a 5505, as we had one handy already.
 
So basically what we wanted was to block everything outgoing and everything ingoing, except for example port 22 (ssh).
 
But I'm struggling a bit, since this is my first cisco router to be configured.
 
My interfaces are as follows.
Outside - DHCP
Inside (port 1) - 192.168.1.1
 
I'm only running ipv4.
 
in ASDM I made a static NAT rule for port 22, being forwarded to 192.168.1.5 (the computer)
 
in Access rules I made under outside (incomming rules) source=any destination=outside service=ssh action=permit
 
But when I try to add further rules to block everything else, it takes the SSH on port 22 with it. How should I do this the easiest way?
 
the hardware setup is pretty straight forward.
 
sat-terminal(with IP 192.168.0.1 running DHCP)   ->  5505 (outside IP=DHCP - inside IP=192.168.1.1)   ->    computer (IP=192.168.1.5)

View 24 Replies View Related

D-Link DIR-655 :: Unable To Successfully Block Ports

May 25, 2011

I have been trying to block access to Steam and Left 4 Dead 2 on a specific computer, using the correct listed ports and using the port forwarding section of the router (setting the access to deny) however they seem to still be able to access both steam and L4D2 on their computer.how I can still block the access?

View 1 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved