Cisco Switches :: SGE2010 Switches / VLANs And A Blocked Port In Spanning-tree?
Aug 20, 2012
I have 2 switch groups.
2 SGE2010's with VLAN's defined as 10,20 and 30
Vlan 10 is the management VLAN, and it uplinks to our border router.Vlan 20 is the workstation VLAN, and all workstations point to the switch as their default GW? Vlan 30 is the ip phone VLAN, and all phones use this as their gateway.
I would like to put a LAG between said switches, we have some servers on the ip phone switch that need to be accessed by the workstation clients, and the single 100mb link through the router is probably not going to be enough.As I understand it, because the switches have different networks on them, a simple lag will not work. I did create a lag, and assign ip addresses to each side, however in that mode, it doesn't appear I can block vlan 10 from transiting the LAG, and with out that block I will end up with a logical loop, and spanning-tree will block one of the uplinks, or the LAG itself.
We are upgrading out internal office network. I have setup 4 switches and 1 router using the following config.
-2 SGE2010p's are stacked together forming vlan 30 (to be used for phones)
-2 SGE2010's stacked for workstation's under vlan 20
Both switches are apart of vlan 1 (the default)Ports 1 on each stack are connected to a Cisco 890 (port fe2 and fe3) in trunk mode. Ports 2 and 3 are in an LAG group and connected to the neighboring stack (I have attached a diagram), and are also in trunk mode).At this point one port (port 1 on either stack) goes into blocking mode, and I get why ,it's a physical loop.I need more than a 100mb link between switches (which is what pulling the LAG between switches gets me), but I don't want to route phone traffic through my workstation switches to get out of the LAN.Is it possible using these switches and router to have a LAG between stacks and a link to the router for traffic to 0.0.0.0 ?
Is there really any reason why you wouldn't use spanning-tree portfast on a trunk port other than a trunk between two switches? We have it enabled on all ports except for the fiber trunk between two non-stacked switches and the trunk ports connected to our Astaro firewall.I'd like to enable it on the ports to the firewall unless that would cause issues.
I've got a bit of a query regarding how spanning tree works on L3 switches?So say we have a few 3550's connected together and spanning tree has converged and everything is looking ok. We then introduce routing into the network, does STP still operate in the same way or is this layer 2 feature now redundant because routing has taken over?I just couldn't figure out if STP still operates at layer 2 to prevent loops and routing sits on top to route the traffic?
I have a question in regards to configuration I'm planning to implement. I currently have 2 x 3750 running in a stack. I would like to add 1 x 870 router connected to both switches.It's important for me that 870 is always available (it will only be used as a backdoor for our management network through WAN) but I don't want it to participate in any switching (including switching for management network unless it's going through this backdoor WAN). Do I need to configure spanning tree on all switches or stack is automaticly working as a 1 logical unit?As router is only using 100MB/s connection, how I can prevent this router from switching packets with other switches?
I have problems too when I connect 3com and Cisco.
I have 2 5500g 3com switches connected with 2 links. If LACP is disable, this causes serious problems and STP not works.
Logically , the link, is a port trunk with all the vlans permitted. One switch has STP enable and the other RSTP. Why this not works fine? I need to configure MSTP maybe? PVSTP is not allowed on this switches.
I've been taught/under the impression that vlans and stp stay in the access layer to prevent bridging loops and broadcast storms from taking down the whole network. Well I was reading about backbonefast and how it "Enables fast convergence in the networkbackbone or core layer switches after a spanning-tree topology change occurs." Now I thought that from the distribution layer up we use a routing protocol.
Id like to set up our AP to push our different vlans depending on which ESSID you connect to.
A few things I am unclear on. The switch port on the SGE needs to be in trunk mode I assume.
Do I marry the Management Vlan ID on the AP to the PVID on the SGE port ? Or is the PVID the untagged vlan ID ?
I set the switches port to trunk mode, it's PVID to 10 and set the management vlan ID on the AP to 10 and I get TTL Exceeded in Route when I try to ping.
I have been told there is a limit (8) on the number of source ports that can be mirrored to a given destination port. I can find no specifications or other documentation to corroborate this claim. Any factual data to confirm or refute this claim?
Ages ago I was shadowing someone making a change on the network. I cannot remember which spanning tree version was running and cannot remember the config of any port either. What I do remember is that every switch port on the 2960 switch went orange and an outage occured, where the ports went into listening / learning mode. I assume that the STP was just the default ieee 802.1D.
I have a pair of 3750-x switches stacked together. Using spanning tree with our upstream provider I have an active line in port GigE 1/0/25 and a blocked redundant line in GigE 2/0/25. I have setup a port based acl as below on 1/0/25 which is a port on the current master switch. Do I need to manually set this on 2/025 as well? Just wondering what would happen if the line to the master switch was to disappear or if the master disappeared completely whether the acl would automatically be applied to 2/0/25.
Why is it when I set the port priority for example to 8192 and I then do a show spanning-tree vlan 1 it shows as 8193, does it add the vlan number? so if it was vlan 10 it would be 8202?
I looking to buy SGE 2010 swith, but I have some question:
1. Can I use 4 SFP ports and stack of two switches at the same time. 2. Is it possible to use for stacking ports other than 24, 48? 3. What is maximum possible number of ports to use for stacking (can I get more than 1Gb thruput).
trunk port connecting but not allowing access to tree; i connected 4506 port to 3550 port; and i set both to switchport mode dynamic desirable; the 4506 port was set with switchport mode access and switchport mode access vlan ?; i used the command default switchport access vlan to remove the vlan; the ports are up but as I stated I cannot connect ot our workgroup tree
I volunteer at a school who just purchased two 48 port SGE2010 managed switches. I am not a big fan of the web gui and was hoping to see the standard Cisco command prompt instead of the menu-type interface.
Is there a way to view the MAC table showing which MAC address is plugged into which port on the switch? I have been fighting with the menu and the gui for a while now and do not see this anywhere.
I currently have two SGE2010's with a 4-port LAG configured between them. I'm looking to add another two SGE2010's and I want to add redundancy at the same time. The switches are currently in standalone mode. I don't have fiber connectors and was planning on just using copper for the uplinks.
My questions are:
- Is it possible to use stack mode in conjunction with 4-port LAG groups to create redundant 4-port links between all of the switches? The documentation says that ports 24&48 are reserved for stacking - does that mean I can't specify a LAG instead?
- If 4-port LAGs aren't possible, does that mean that these switches max out at 1Gpbs uplinks if you use stack mode?
I am trying to create a server in a game called Minecraft. I have forwarded port 25565 (which I put in the server settings for incoming connections and I checked that 10 times so that is ok) on my thomson TG787. I've opened the same port on my firewall in windows 7. I've disabled my firewall completely. But it's still blocked. It's simply doesn't work..I'm 100% I fixed it on the router.
I am trying to create a server in a game called Minecraft. I have forwarded port 25565 (which I put in the server settings for incoming connections and I checked that 10 times so that is ok) on my netgear wnd3700. I've opened the same port on my firewall in windows 7. I've disabled my firewall completely. Everything should be cool, but still, checking with canyouseeme.org and asking friends to join. It is still blocked. It simply doesn't work.. I checked my router for any firewall but couldnt see any.. So yeah I'm 100% I fixed it on the router, unless someone is gonna tell me that there is still an option in the router that might fix it.. but I think I did something wrong in the firewall..Although I have been trying to get this to work all day.. I'd rather get some advice on the firewall or other options in my router. Btw, I am using AVG free edition, and I am pretty sure there is no firewall in that version, but there might be something I have to disable in order for this to work ?
2960 switch stack (flex) Spanning tree re-calculate from stack port one?I need to identify with port in the stack is causing the re-calc I have four 48 port switches and show spanning detail only indicates stack port 1.
i have been trying to forward port 25565 for a server on a game called minecraft. I have a bt homehub 2 and i have followed everything on portforward.com and on several videos and still no luck. I have B.T net protect plus so I don't know if the firewall is blocking the port
I am facing problem in configuration with SF-200-24P Switch . I am failed to configure two vlans on same access port i.e. data vlan and voice vlan. there is an option of auto voice vlan with vlan 1 and i changed to our voice vlan i.e. vlan 101 but didnt work. I tried many options. when i assign single vlan on each
access port it works . I have to configure like to work both data vlan and voice vlan with one access port. I worked on enterprise cisco switches its simple but on small business switch first time i am working.
I was looking for configuring QOS for two VLANS i have created. these will be for voice traffic vlan 22 and video traffic vlan23. i also have three other vlans for pc's, wireless devices and our cnc machines. we have 5 switches that are all SG30028P's with a single switch doing the intervlan routing (operating at layer 3). all of the switches are trunked back to the main switch and ive been through the guide written on how to do this on a single switch which i dont think is layer 3.
I'm going to have several SG300-28P switches to setup. I'll need to create multiple vlans for data, voice, and wireless traffic. I have the following questions in setting up this configuration:
1) For managing the switches via IP, will LAN1 be the default management network? Should I create a seperate VLAN for managing the switches?
2) For uplinking the switches together, I plan to trunk a port to connect the switches together. What's the configuration on the trunk port to forward all vlans from one switch to another?
3) On some ports, I want to configure a trunk for two vlans (Data and Voice) where the phone has a pass through for PC. The phone supports tagging for the PC and the VoIP traffic. For example on port 10, would VLAN 100 and 300 be set to tagged?
I am trying to set up three vlans across two switches. The switches are Cisco SG200 and SG 300 series. There are 20 devices connected to the two switches including a router for Internet. Among these devices are five wireless access points all hardwired to the LAN. If I understand correctly the first thing I have to do is aggregate the two switches. I ran two cat5 cables to ports 1 and 2 of each switch. As I understand it all I need to do is to create SAG with the two ports on each switch. I think I need to use tagging but I don't really understand how to do this. Once I get the trunking set up correctly I want to create one vlan to which all devices will belong for Internet access. The other two would be for data and VoIP. Do I create vlans with the same name on both switches? When I assign the devices (by port) do I need to enable tagging? Which type of port setting should I use? I am assuming that by including the acess points in the vlans will mean that any wireless device connected to them will have acess to the Internet and the devices in the same vlan.
I am working on two SGE 2010 stacked and in routing mode. Everything work fine but before finishing the job, I wanted to lockdown all the network device so they would not be accessible from some subnets. Problem is, I cannot bind my ACLs to any interface. I get "Cannot apply because lack of HW resources." I am running firmware 3.0.0.18, and 3.0.1 release notes don't address that issue. TCAM utilization is at 3% Routing resources shows host: 200, routes:60, ip interfaces: 50 I have tried from the cli and get the same message.
Can I create lag betwen stack unit to increase speed between units ?? stack connection is only 1Gbit on ports 24/48 if posible lag link must be in trunk mode ?
Is there any issues with accessing the browser based GUI using Windows 7 64bit on a SGE2010 switch? I took the switch home and tried on my XP 32bit machine and works fine, but no luck on any windows 7 64bit pc's. I have tried 3 different new pc's on this new switch and no luck at all.
We have a single SGE2010 in layer 3 mode switch with a Server 2008 DHCP server.
We will be implimenting a Voip netowork where the PC's connect to the voip phone. I would like to create another vlan - 10. I have created the vlan and assigned the IP on the swtich.
Routing seems to be working. I can ping both IP addresses of the switch on either vlan.
I cannot get DHCP working. In the SGE switch I have enabled DHCP Relay, enabled option 82, set my DHCP Interface as VLan1, and specified the DHCP servers IP address. On the ports I have set the port where the DHCP server connects to as a trunk port with Vlan 1 untagged and vlan 10 tagged. I have set the ports where the phones connect as a trunk port with vlan1 untagged and vlan 10 tagged.
We've have a 2 SGE2010-48 port, stacked. 4 LAGS are denifed, two on primary, whitch are working, two on slave unit are NOT working. Devices connected to LAGS are de the same and same configuration (Cisco ASA 5510).
I want to know how am i do to change the Vlan1`s IP address because the actual ip will be used in another vlan. Actually i haver 10 vlans in L3 mode (routing) implemented in it.
