Cisco Switches :: Setting Up IGMP Snooping On SG 300-10
Oct 3, 2011
i want to setup IGMP Snooping on the Managed Switch SG 300-10. I do it over the webinterface. Enable Bride Multicast Filtering, Forwarding Method IP Group Address and enable IGMP Snooping v3. In the local Network i stream up to 4 Multicast streams 239.1.1.1-239.1.1.4. The client vor the Multicast are IP setupboxes. If i connect PRTG Network Monitor over SNMP to see the Traffic on the ports i see that all Multicast streams are at every port. What is the false i do? I thought only the multicast stream that is shoosen at the client are forwarding and not all multicast streams. The IP STBs have only a 100Mbit network adapter and i have to muticast over 10 Streams (10Mbit per stream) over the local VLAN. So i think IGMP Snooping is the solution for me. Or need i also a Multicast router?
I have some problems with IGMP snooping feature on the SG300 switch. I want to filter multicast dinamycally with IGMP snooping. To configure our switch I use the web page: - In Multicast I first enable: Bridge Multicast Filtering Status Thzn I enable IGMP snooping ,Then I enable IGMP Snooping on my VLAN During my tests I stream a video (UDP multicast). This stream is present on all the ports of my VLAN with IGMP snooping normally configured. Also, I can't see any entry in the IGMP/MLD IP Multicast Group Table where I should normally see my multicast address.
I have to deploy a full IP-TV solution and the IGMP snooping must be supported on the switch.
I know the the ESW 520 support this protocol but the full IP-TV solution will manage uo to 200 set up boxes, does this switch support all this traffic?
I also have another question, what exactly mean "Combo SFP slots include one 10/100/1000BASE-T Ethernet port and 1 SFP-based Gigabit Ethernet slot for fiber, 1 port active at a time." ? Is when I use 1 port with LX sfp transcever the 3 other uplink ports will be inactive and I can't add another or trunk it with another switch?
I have a network which is based upon a 4507 Core/Dist switch, with 1G fibre to a bunch of radially connected 2960 Access switches. It all works fine and as expected for data and telephony.I have been tasked with setting up one of the VLANs to support multicast, so a bunch of video streams will be injected at the 4507, and will be delivered to client PCs connected to the 2960 switches.The 4507 is running with SVIs to some VLANs, but the VLAN that will have the Multicast on it is isolated, with no SVI.I could change this if required,I need to run IGMP snooping, and probably deploy CGMP to take advantage of the Cisco-proprietary functionaity.
I have a pure L2 switching network and 2 hosts on the same vlan that want to communicate a protocol between each other using multicast packets.
I wanted to configure ip snooping only on this vlan and create a multicast group limited to only these 2 host ir order to make sure that the multicast traffic is only between both of them.
Since both are sender and receiver I´m not quite sure on how to configure this. In theory I also need to set an IP Multicast Address on the switch to where the hosts will send their multicast packets.
R1 is configured as host (no ip routing) with ip igmp join 239.10.10.10 on fa0/0 and R2 with ip pim sparse-mode on f0/0. SW1 is a Catalyst 3560 running IOS 12.2(25)SEE4 working at Layer 2 only in this topology (VLAN 1).
I configured SW1 for igmp snooping:
ip igmp snooping ip igmp snooping vlan 1
Basically, I can see 'snooped' muticast group (via IGMP reports sent by R1)
SW1#sh ip igmp snooping group Vlan Group Type Version Port List ---------------------------------------------------------------- 1 224.0.1.40 igmp v2 Fa0/2 1 239.10.10.10 igmp v2 Fa0/1, Fa0/2 SW1# SW1# SW1#
Our switch model is "Cisco Catalyst Blade Switch 3020 for HP"We are building HA (High Availability) Databases infrastructure.Currently, there are two nodes(hosts- servers) and two above switch for HA.Oracle said we need to turn off the IGMP Snooping in order to use the multicasting for their interconnect communication.So my question is: Is there any way to use Multicasting without turning off IGMP Snooping on Switch side?If 'yes', how can we configure the switch for Multicasting ?Oracle uses 230.0.1.0 & 224.0.0.251 IPs with 42000 range port for Multicasting communication.
IGMP Snooping configuration for Multicasting on Cisco Catalyst 3020 Our switch model is "Cisco Catalyst Blade Switch 3020 for HP" We are building HA (High Availability) Databases infrastructure.Currently, there are two nodes(hosts- servers) and two above switch for HA.Oracle said we need to turn off the IGMP Snooping in order to use the multicasting for their interconnect communication. Is there any way to use Multicasting without turning off IGMP Snooping on Switch side?, If 'yes', how can we configure the switch for Multicasting ?
IGMP Snooping configuration for Multicasting on Cisco Catalyst 3020
Our switch model is "Cisco Catalyst Blade Switch 3020 for HP" We are building HA (High Availability) Databases infrastructure. Currently, there are two nodes(hosts- servers) and two above switch for HA.
Oracle said we need to turn off the IGMP Snooping in order to use the multicasting for their interconnect communication. So my question is:
Q1> Is there any way to use Multicasting without turning off IGMP Snooping on Switch side?
Q2> If 'yes', how can we configure the switch for Multicasting ?
Oracle uses 230.0.1.0 & 224.0.0.251 IPs with 42000 range port for Multicasting communication.
I've got a pair of Nexus 7010's running vPC. I am having a Multicast issue with a cluster of Linux servers that need to talk Multicast for cluster/high-availability operation. All the servers need to talk to a single multicast address and I am having trouble getting them to communicate. I believe I need to enable IP IGMP Snooping Querier on the N7K's and it needs to be enabled on the VLAN where the servers reside. How to enable IP IGMP Snooping Querier on a VLAN ?
We have a 3750 acting as the core. By default IGMP snooping is enabled on cisco 3750 from the documents.but, when we see the ip mroute table on the switch, it doesnt show any output.
Our switch model is "Cisco Catalyst Blade Switch 3020 for HP" We are building HA (High Availability) Databases infrastructure.Currently, there are two nodes(hosts- servers) and two above switch for HA.
Oracle said we need to turn off the IGMP Snooping in order to use the multicasting for their interconnect communication.So my question is:
Q1> Is there any way to use Multicasting without turning off IGMP Snooping on Switch side?
Q2> If 'yes', how can we configure the switch for Multicasting ?
Oracle uses 230.0.1.0 & 224.0.0.251 IPs with 42000 range port for Multicasting communication.
I've been looking into IGMP snooping and have read that a L2 switch will forward multicast traffic to all ports connected to an interested receiver AND all mrouter ports. In a L2 'V' topology this results in all multicast traffic routed onto a VLAN being forwarded to the 2nd distribution switch. My question is how should a 6500 Sup720 deal with this unwanted multicast traffic? Both a Local SPAN of the RP and a Netdr capture suggest that this traffic is punted to the RP and ultimately dropped. Is this expected behavior or should the traffic be dropped in H/W?
A brief background on the setup: I recently switched out my switch. It was a Cisco 3750 10/100 switch and I wanted to upgrade to Gig. The cost of a Gig+POE 3750 is too much to bite so I opted for the SG300. My router is a Cisco 891. Here is the setup:
Cisco 891: two SVI's: vlan1 and vlan 100 Vlan1 = 10.0.1.1/24
[Code].....
With the 891+3750, I was able to add "ip pim sparse-dense-mode" on all the SVI's and hosts could join any multicast group, irregardless of which vlan the host was a member of.
Now I've changed switches, and I dont get the same love. I have the PIM statement on both SVI's on the 891, but Im unsure of what I need to configure on the SG300. I have enabled "Bridge multicast filtering" + "IGMP snooping". What can I do to get similar functionality using the SG300 + 891? I assume this is my lack of understanding IGMP in general, but was able to get away with it using the PIM statements on the 891+3750 stack.
I have an issue with SRW2024P-K9-BR (SG300). Datasheet and configuration guide show me that is possible configure DHCP snooping in this switches, but web interface and console don't appear related menus/commands.
I'm using firmware version 1.1.2.0 and didn't found anything about this here.
I have a 2x Cisco 3750G switches (Stacked) that are part of an IP Video Surveillance System .All network is set to 1 VLAN (VLAN 1 default).The Cisco SWs ( Core ) are configured with IGMP Querier + Snooping .Connected to the Cisco SWs are 4 Fiber Rings(Loops) for redundancy . RSTP and IGMP Snooping are enabled on all the network SWs .Network Architecture Figure :
When all Fiber Rings (Loops ) are connected , the Cisco and Ring SWs spanning-tree tables show the blocked and forwarding ports properly .I am able to connect all my IP Cams + Encoders to the Ring SWs and connect my Servers + WorkStations to the Cisco SWs to record and view the multicast ip streams .All streams from Rings 1 ,3 and 4 are getting normally to the Servers + WorkStations through multicast ( IGMP Snooping are filled correctly on the Cisco and non-Cisco SWs ) . All multicast streams are joined normally except for Ring 2 .The Multicast streams passing through Ring 2 will operate normally for around 2 hours then after that the Fiber SWs begin to flood their multicast traffic causing the cams on the same switch to drop off the network .
I checked the Configuration of all the SWs on Ring 2 but all are are the same .
What is weird is that I have to set all the streams to unicast to stop the flooding just on Ring 2 (All other rings are not affected ) then after some time if I enabled a video multicast stream on one of the SWs of the Ring it will be streamed properly to the Servers + WorkStations ( All IGMP tables along the way will be filled properly ) then again after 2 hours or so , the flooding will start again suddenly and all IGMP table entries for the SW on Ring2 will be empty . No problem occurs on the other Rings which have more multicast streams .
I have a problem with DHCP. I have two 2960 connected with a port channel on ports 47 and 48 as trunk with native vlan 10. I only have this one vlan. In port 1 of sw 1, I have a C800 as DHCP server.
I have an AP autonomous with single ssid on vlan 10. When I connect the AP to sw1, I receive dhcp with no problems.When I connect the AP to sw 2, I’m not getting IP by DHCP.I have DHCP snooping working on vlan 10 on both devices.
The ports where I connect the AP are access ports on vlan 10 config as trusted.The trunk ports are also configured as trusted.The port 1 of ws 1 that goes to the C800 is also configured as trusted.
figure out why I’m not getting IP by DHCP when I connect the AP to the SW 2.The only I notice is that when I connect the AP to sw 2, I get on SW 1 the message of packet drop by option 82, but even after configuring ip dhcp snooping information option allow-untrusted on both switches, the problem persists.
I need to apply DHCP snooping on 4500 series switches working as L2 in my Network. We have external DHCL Server in another location connected with 6500 series switch.
Running EIGRP Configured Voice & Data Vlan both DHCP Server -------- 6509 switch<----------------------------------->6509 Switch -------- 4500 switch ----------------------------------------------------------Ip Phones. (ving Redundant) (ving Redundant)
I need to know whether the configuration which I mentioned in scenario is enough for apply DHCP snooping in my network.
I'm using two sg 300 switch (Fw 1.1.1.8) and I configured vlans for data and phone. Enabling voice lan, dynamic voice vlan, the option Enable Thelephon OUI is grayed.I think that this is related to LLDP and CDP setting's, but I'm not able to discovery how.How to enable thelephon OUI?
I am primarely enquiring whether the setup I have explained below is actually possible, and if so then how I can set this up. I know it isn't the easiest configuration and I need to set this up without purchasing any more equipment if at all possible.I have a Cisco SG 300-28 setup with three VLAN's. [code] Default Gateway is 192.168.10.1 (Netgear Router)I have a Wireless network setup (Netgear WMS and 2 WAP's) configured with the TWO VLAN's (1 and 3). These go into ports on the Cisco SG 300-28 which are tagged on both VLAN's. The Business wireless worked fine but the guest network didn't reout out to the internet.After some troubleshooting I realised the reason the guest wasn't working was because there was no route back from the internet to the router.
The router I have isn't really ideal, it is a Netgear DGN2200, but I managed to create a static route to 192.168.30.1 with a metric of 2, with 192,168,10.254 being the hop. Success, the connection worked, the only problem is that now my guest network can see my business network because the business network is using the static route on my router to route back over to the guest network (due to the limitations of this device I can't do anything about that)Guest network can connect to Business VLAN via switch. I am assuming this is because the router is on the Business VLAN and the default gateway is the router. As they are on the same network the Guest network can inevetably see the business server and network.The Business network can get back to the Guest network via the router using my static route I created. The static route is really basic and I can't create a firewall rule on the router to prevent the Business network speaking to guest network because it only has a LAN - WAN firewall and this connection is LAN - LAN.
What I need is...to somehow stop any traffic from the 192.168.30.0 network routing to anything on the 192.168.10.0 network, appart from the router on 192.168.10.1.Is this possible? I have this setup on a number of different site, the only difference is I have a CIsco Security Router on these with the VLAN's configured so I don't have this problem. Because I have a rather limited Netgear DGN2200 I am unable to setup the VLAN's correctly and as such I need to see if I can do this on the switch in any way.
I got the SG 300-20 small business L2/L3 switch. I've read through the 325 page pdf manual and I still can't figure out how to do what I need to do. Here is my setup using example ips.[code]
I want to be able to have any workstation I put on the workstations vlan to use 69.30.44.2.34 as a gw and from there route to 170.4.5.5 and from there to the outside. Basiclly, I want to be able to route ips from two different subnets on two different vlans. I've read through the docs and so far I have vlan1 setup and vlan 2 setup fine but I have no clue how to get the routing to cross vlans. The docs say the only way to have vlans talk to each other is by routing through the vlans ip interfaces but I have no clue how. There isn't a simple step 1,2,3 chapter that gets you to route between two vlans. What am I doing wrong? I put in some IP route entries but nothing seems to work.
We have a Cisco slm248gt-na smart switch in our office that I am trying to configure to support and optimize for VoIP. We have desktops hooked up off the phones in most cases. Are there any config guidelines to optimize the switch so it has proper QOS set and VoIP gets higher priority over data.
I had connected a computer and NTP to the SG500. i had successfullly sync the internet time on the computer. but when i type 'show clock' on the terminal. The switch did not manage to sync the ntp time.
Router (with Internet Connection) is plugged into port 24 of the 1810.My asterisk server is plugged into Port 1 of the 1810.The 2520 is plugged into Port 2 of the 1810, and all of the VoIP phones are plugged into the 2520.Rest of the office computers are plugged into the remaining ports on the 1810.
After setting up the subnet and assigning an ip to the 1810, everything else just worked out of the box. I would imagine that I should segment and prioritize the network so that the VOIP traffic is isolated and is higher priority from everything else.
I tried playing around a bit, but the phones lost connectivity, so I just defaulted everything back for now.
What would the suggestions be for setting up the VLANS properly to do this?I would also need one of the office PC's (say the one plugged into port 13 of the 1810) to be able to access the asterisk server.Also, would it be more optimal to have the asterisk server on the PoE switch or the main switch?
How to setup 3 SG300-52 (in L2 mode) as per this diagram:Port 1 on all switches should be able to talk to each other and access the blob at the right.The ports 25 on the other hand should only be able to talk among themselves in their own private vlan. They are to carry sensitive traffic. So I created 3 vlans, vlan 78 for ports gi1, gi51 and vlan 10 for port25,49,50 and a dummy vlan: 666 with the intent of segratating vlan 10 from vlan 78. My attempts so far have failed. ports gi49-50 are configured as trunk ports and gi1,gi51 as access ports as the following cli output (excerpts of the startup config):
Ports gi1 can talk to each other and access the blob but ports 25 refuse to talk to each other. But as soon as I remove the access links to the blob they can! Obviously, at that point port gi1 lose access.Is such a topology feasable or even advisable?
I have recently purchased 2 SG 300 switches, 1 x SG 300 52 & 1 x SG 300 10, and I am hoping getting the following set-up working.To assist I have drawn the following simple network diagram (below) which hopefully makes it a little clearer what I am trying to do:I have 2 companies occupying a single office with the requirement to share printers/devices etc... so basically I am looking to set-up 2 VLANS (say VLAN 10 & VLAN 20) with inter-vlan routing. To add a little complexity the main comms area is located in the basement of the building, this houses the 2 DSL routers and 2 Servers, one for each company. I am proposing putting the SG 300 10 port switch in here and then use the 3 uplinks I have been given to connect back to the SG 300 52 which is in a patch cabinent 2 floors up. I want to use 2 uplinks (in a LAG) for Company A and 1 uplink for Company B. FYI. DHCP is being served out by each respective router.
I just purchased a new SF-300 managed switch for the purpose of using it on the DMZ, so we can mirror the internet port and monitor traffic for my company. I have set it up from the web interface to miror port 1 to port 2 and that's pretty much it. I decided to test it before putting it in production, by hooking it up to one of my core network switches, connecting a laptop to it and trying to get online. It doesn't even connect to my DHCP server to get an IP address. If I put the laptop back on the same subnet as the switch management IP, I can still connect to the switches web interface. Isn't the basic functionality of a switch to pass traffic?
I should also mention that I'm not a network engineer, so there might just be something I'm missing with regard to a default setting that needs to be switched off?
