I am running the SGE2000 as my l3 core switch with multiple inter-vlans.
have a customer requirement that needs to restrict eg. GUEST-VLAN10 to all other VLANS in the network. Only allowing access to the internet.
It seems on the switch i am able to bind ACL to per port interface. if this is possible on the SGE2000
DHCP Relay on a SGE2000 switch.I have configured two VLANs on the switch, VLAN2 (192.168.10.x/24) and VLAN3 (192.168.9.x/24). I have the switch in Layer 3 mode. I have configured the DHCP relay server of 192.168.10.4 and the DHCP Interfaces as VLAN3. All of the IP Static Routes were generated by the switch.
If I put a client computer on a port that is Untagged VLAN 3 and try to get a DHCP address from the server on an Untagged VLAN 2 port I never get a response back.I have done some packet captures and here is what I have found:
I see the DHCP broadcast on the client computerI see the DHCP Request on the DHCP server coming from the IP assiged to the switch on VLAN 3 (192.168.9.254)I see the DHCP server respond with a DHCP OfferThe DHCP offer never gets to the client computer I can't seem to get a DHCP address to any system not on the same VLAN as the DHCP server. Option 82 is disable and I did try enabling it, which made no difference.
I currently am using the SGE2000 switches for our datacentre and they have run great. We are looking at replacing them as part of our normal equipment refresh and have questions about what is the best switch for us. We are looking at upgrading to at least 48 port switches which isn't a huge issue.The main purposes of the switches will be for iSCSI traffic between Starwind SANs and Vsphere 5.1 hosts. We had some latency issues with one of the SGE2000s but otherwise they've been great.
We also will use these switches to handle our feeds from our ISP and our normal interserver communications. We have had DDoS attacks in the past of 40k packets per second and 600mbps and the SGE2000 never even flinched. We don't need it for any layer3 routing (which we use virtualized PFsense for). Looking at the Miercom report the SG200 series looks like it would be fine for us but I'm just worried around the part which mentions it becoame unresponsive in a DoS attack and also whther it may be slower for iSCSI. Both series seem to support flow control and jumbo frames.
We have a standalone Cisco SGE 2000.
We lost connectivity to the web user interface - it no longer responds on the configured IP address.From the manual we see that by default the switch get its IP address via DHCP - but we find no record of any ip address assigned to this switch.Is there a IP address that this unit defaults to when DHCP is not available? Also - what is the best way to connect to the console using Windows 7?
I have a Campus LAN setup which is layed out using Cisco SRW2024 and SGE2000 SB switches. On the LAN we are running various services. These are CCTV, VOIP(SIP), Public Address(multicasting) and Internet hotspots to various locations. I have attached a layout of the setup. A unique VLAN is setup for each of these services.The problem we have is that the PA audio is breaking up at intervals making the output distorted this is also happening for the SIP phones within the facility. Using the user guide we have tried to setup QoS on the system but we seem not to improve the services.
View 2 Replies View RelatedI'm having trouble getting a stack of three sge2000 switches to connect together and NOT reboot.Two of the switches are older Linksys sge2000s and they stack well together, but as soon as i connect the new Cisco sge2000, it will make them both reboot sequentially, even though it detects that it needs to be #3 in the stack.SW 1 port 24 is connected to SW 2 port 12 and they function correctly (both of the linksys switches). The documentation states they should be connected in a ring topology so I first tried completing the loop with SW3 (the newer cisco sge2000). When that had the aforementioned troubles I just connected SW2 port 24 to SW3 port 12. Still forcing the switches to reboot.I SUSPECT it may be a firmware/software issue, but I wanted to check if they'ed even work together.
View 2 Replies View RelatedCan MGBSX1 transceivers use on SGE2000? what type of transceivers can be use on SGE2000.
View 1 Replies View RelatedWhat is the difference between a SGE2000 and a SG500-28?
View 3 Replies View RelatedI have recently purchased a a Cisco SGE2000 switch and when connected to it via console cable, I was introduced to "Switch main menu" which was kind of a GUI interface. I found a way of accessing what is called a lightweight CLI (lcli).After having a few searches on google it turns out that this switch doesn't have a proper CLI. Is this possible at all? I thought that all managed switches have CLI?
View 2 Replies View RelatedI am using a network switch to share my broadband between four PCs.Among these PCs, one is for students. Is it possible that I can do the following 2 things from modem whose page can be accessed through 192.168.1.1;
1. Restrict some website like Facebook, Youtube etc
2. Limit download speed of that PC to 100KB/s
Searched through conference and still have no resolution.Switch: Cisco SGE 2000..Layer3 mode enabled through console. [code]
View 3 Replies View RelatedI'm trying to get a network of SGE2000 switches mapped into Cisco network assistant.It always comes back with the device type unknown and status unsupported device.Is there a way to fix this ? I'm using Cisco network assistant ver.5.7(6)
View 4 Replies View RelatedWhere I could find an SGE2000 visio stencil? It isnt listed in the Cisco Visio Stencil page?
View 1 Replies View Relatedconfigure a secondary ip address (over the same address range) in a vlan interface on the SGE2000?For example, I want Interface Vlan 10 on mw switch has 172.16.10.1/24 and 172.16.10.2/24. Is that possible? If I try I get an error message with a duplicate IP address error. On Catalyst switches it can be done, but on Small Business?
View 1 Replies View RelatedDoes the SGE2000 supports NetFlow? I've checked the Cisco docs and also called Cisco support to which no one has been able to answer me.
Anyhow, just in case it doesn't support NetFlow, how to be able to set up something that would be able to check the bandwidth usage on each port?
I've got a problem where I think the SGE2000 switch is failing when I pump around 190~200Mbps through x2 of the ports (Server A on port 1=130Mbps and Server B on port 2=60Mbps) of Multicast traffic (UDP). I can measure the output from the Streaming servers that provide the multicast content, thats how I know the input to the switch and I know that there are no packets lost or any errors departing from the servers, yet when I increase server B to say 80Mbps, I get break up and all sorts of problems on the client end STBs and it is happening on the multicast content provided by Server A too which is a different source, so I'm 99.9% sure its a SGE2000 switch problem which is why I'd like to monitor it somehow.
I´ve got a strange problem with the connectivity within a ring topology.There are five switches from the SGE2000 series and one SG200-50.The SG200-50 is the root bridge and RSTP is configured.From the root bridge switch (Switch 5) I can ping Switch 0.But I cannot ping Switch 0 from PC0.
On the other hand I am able to ping all other Switches (1-5) from PC0.In addition to that I can establish a RDP connection from PC0 to Server0.This tells me that there is no general problem with the connection from PC0 to the Switch0.
Right now when I want to configure Switch0 the only way is to connect to Server0 first.But we have to move Server0 and this is why I want to manage Switch0 from PC0 like any other Switch on that network.
We have a couple of cisco SGE switches connected to a single DELL, between the cisco switches we have a trunk interface. I'm not sure which setting should be configured on the switches to get it working because a loop is occuring.
View 1 Replies View RelatedI have a Linksys SGE2000 Switch and I've been trying to get Vlan's to work.How I'm trying to setup is like this
Port 1 - Vlan22 - Plugged into trusted port in firewall
Port 3 - Vlan25 - Plugged into DMZ in firewall
Port 15 - is plugged into a VMWare host. The network is setup as production is Vlan 22, DMZ is Vlan 25.
Port 16 - Internal server so is Vlan 22
Both Vlans have a different IP subnet.I think I have port 3 configured ok as it's only one Vlan. I'm trying to get Port 15 configured properly and it won't work.Servers on VMWare hosts are Windows Server O/S.
I just want the switch to be quiet so that I can perform some network testing with only the connected hosts showing up in my traffic analysis program. But every 30 seconds or so the switch sends out an LLDP packet. This switch is only used in the lab for running tests so I know I don't need the LLDP feature running.
This article explains how to disable LLDP globally on a Catalyst switch, but I can't find any option to disable LLDP in the SGE2000's configuration menus.
We have been set the task of securing a small managed office system which is currently set up with a standard switch allowing each of the offices (containing different companies) to see each other, and in some cases, access each others documents across the network.
Obviously this is a far from adequate set up and our aim is to isolate each office using VLAN's but share a common internet connection provided by the managed offices. We have two Cisco SGE2000-G5 layer 3 switches but we are new to Cisco equipment and VLAN's so we are not quite sure on how to implement this. DHCP would need to be provided by a Router, there is no Server. We are open to suggestions on the Router as we have yet to purchase one.
We've been trying to monitor the used bandwidth of our SGE2000 and SGE2010 switches with Nagios.We've been experimenting with the various OIDs and we've found the OIDs linked to the different switchports.
Though when we use SNMPWalk (to find the OIDs connected to the port) the names of the ports are all the same.
[code]....
Is there a way to change the names of these interface to unique names?We've already given unique names in the description field through the switch's GUI, but it doesn't make any difference for Nagios.
I am trying to update the SGE2000v1.0 with 24ports to 3.0.1.0: url...I got the error "illegal software format" using tftp.
View 2 Replies View RelatedI was handed two SGE2000 24-port 10/100/1000 switches. The default IP address does not work on either of them. Short of doing a hardware reset, is there an IP discovery utility that I can run.how I can find the IP?
View 5 Replies View RelatedThe switch sge2000-g5 a small business switch, has a redundant power supply port built in the switch. It is a port that handles a 12v power supply. My problem is to find the exact device to supply the power to this port so I can have, obviously, a redundant power in my switch. This switch is actually out of production.
View 1 Replies View RelatedIm planning for a network upgrade.77.110.87.112/28 - is assigned to selected users and configured manually.(note: they are public IP which our ISP assigned)192.168.1.0/24 - is assigned to users that are not allowed to use internet services and configured manually. I have CISCO 1841 Router connected to the internet and CISCO SGE2000-G5 24ports layer 3 switch that is connected to cisco 1841 router.i want to create vlan in layer 3 switch. [code] i want all vlans would still ping to each other and file/printer sharing is available.kindly check if my network upgrade plan is correct, how am i going to configure those vlan in my layer 3 switch and to connect to the internet.
View 12 Replies View RelatedThere are 10, 50 and unlimited users profiles for the ASA 5505, reason for that restriction? Does that mean for example that only 10 users can go through a 10-user 5505?
View 6 Replies View RelatedWe are using ASA 5510 Version 7.2(4) at our organisation. The requirement is we need to give an access to a user with limited access so that he can run only specific commands on configuration mode. We don't have Cisco TACACS server instead of that we are using a microsoft radius server.
View 6 Replies View RelatedRouter 2811 got 3 Interfaces. One Interface connected to INTERNETProvider, Second Interface connected to Sales_Dept, Third Interface connected to Business_Dept. Internet Bandwidth in Total is 8MB. I need assistance to allocate 6MB total bandwidth to Sales_Dept and 2MB total to Business_Dept Sales_dept has 48port switch 2960, Business_Dept 24 port switch 2960. Gateway for users is the 2811 Router and both are on different subnets
View 3 Replies View RelatedI am a restaurant owner and have a wireless network set-up via DLink DSL 2730U router. Now some times I get customers who demand to use the network and they use it for free which I find irritating. I have found one solution of 'Guests/Virtual Point' but I need to limit the time (say 15 minutes) for which they can use the network.
View 1 Replies View RelatedI've my ACS linked with AD to give administration access to few network devices and I've created an access policy to link my AD groups with those network devices and command sets.
Unfortunately I found I can use any user from my AD to login to my devices. Only LOGIN, the authorization definition is restricting the command set for those users.
How can I restrict the LOGIN to an specific AD group?
I have a problem with a test network configuration i'm trying to set up. I have an SGE2000 G5 switch for LAN traffic, and i have "reserved" 3 ports with a VLAN to obtain two separate internet lines with two different public IPs from my ISP internet cable. Now what i've tried to do is connecting the ISP cable to the port1 of the VLAN, and i've connected the other 2 ports to my routers. The problem is that when doing this, port1 switches to half-duplex mode and the result is a huge performance degradation (0.28Mb DL instead of 16Mb approx.).
View 1 Replies View RelatedI get that to avoid fragmenting the packets we need to reduce the MTU to 1492, fine, but should the MTU restriction be applied at the virtual-template (server)/dialer (client) or on the physical ethernet interfaces?If I apply it to one or the other, which takes precedence? Should I just apply it to both the virtual/dialer interfaces and the ethernet interfaces?
View 6 Replies View RelatedI am trying to create a user restriction to allow one user to access only two networks (10.192.3.0 and 10.192.5.0) I have range of networks but I want to permit only two networks for limited user and full access for the admins. I know this was possible with ACS 3.3 but I am not too sure if this is also applicable with ACS 5.2.
View 1 Replies View Related
