Cisco Switching/Routing :: 2900 XL VLAN Drops / Relearning Addresses?
Dec 16, 2011
Had an odd issue that started up last few days.. Have a port on a cisco 2912 XL that keeps dropping (drops all packets) on a certain VLAN, but still passes others. Spanning-tree for that vlan says all ports are in forwarding status. VTP says that VLAN is still active.
This network is a little strange... 2924XL -> MotoPTP -> 2912XL -> Moto Canopy Array -> Some sites with cisco, some without all feed through canopy controller switch to single port (fa0/8) on 2912.
Getting a few of these on terminal monitoring, %RTD-1-ADDR_FLAP: FastEthernet0/8 relearning 5 addrs per min... Sometimes this is fa0/8, fa0/10, or fa0/1.
I'm thinking the switch has just gone nuts, cause fa0/1 is direct connected to a router used for VLAN1. fa0/8 is connected to a dumb switch on a canopy CMM as a trunk which i enabled bpdufilter on because of some spanning tree issues on VLAN1. fa0/10 is connected to canopy PTP back to the 2924 as a trunk. VLAN69s router is off the 2924. So there aren't really any possible alternate packet paths to this switch from another switch.
I also setup SPAN and captured all packets from fa0/8 and fa0/10 (seperately) and never seen packet storms of any kind on either VLAN1 or VLAN69.Further testing with debug, nothing on spanning tree, nothing on vtp, but on ethernet-controller addr I got some interesting results showing one mac moving from fa0/1 to fa0/8 and back to fa0/1 but it never moves, its the routers mac that is connected directly to fa0/1. Same with some macs on the other side of the PTP link saying they are bouncing from fa0/10 to fa0/8 and back to fa0/10 which isn't possible
View 5 Replies
ADVERTISEMENT
Jan 17, 2012
I have a 2900 router at branch office. This router has a 4 port switch card and two gigabyte ports. The gigabyte port is use for wan connection and the 4 port switch card is use for lan connection. I have two separate networks on my lan side. (network 1 and network 2)
I have assigned port 0,1 of the switch card to vlan1 for network 1 Ports 2,3 of the switch card is assigned vlan 20 for network 2
My problem is I would like to applied a bandwidth restriction for all data coming out from vlan20 capping same to 384 kb.
Note I do not want use QOS because this will only kickin when saturation occurs,
View 8 Replies
View Related
Feb 3, 2013
The field engineer has a stand alone 24 port 2900 series switch that he has different equipment connected to and are segmented using VLANs. So for example, he's got ports 1-4 assigned to VLAN 10, 5-12 assigned to VLAN 20, 13-19 assigned to VLAN 30 and 20-24 assigned to VLAN 40. He would like all the gear on VLAN 30 to have the ablity to talk to all of the other VLANS, but VLAN 40 should not be allowed to talk with any other VLAN. Trunking would do no good here since the switch isn't connected to anything and you can only assign one VLAN per port.
Is there a way to do this within the stand alone switch? The only possible way I could think of would be to ensure that each VLAN has an assigned IP number (subnet) and doing this through access lists.
View 2 Replies
View Related
Sep 13, 2012
I understand the vlans on the catalyst side of the house on 2900 to 6500 Catalyst switches.
This 7010 running nx-os 5.1(3) I did not setup, but have to manage it. Hasn't really been a proble till now.
My nexus 7010 has a Layer 2 only vlan 11. It is "Active" but the interface is "shutdown". Yet, it is passing traffic across the directly connected ports on the nexus 7010 and to other switches in my network. Vlan 11 is being set out via VTP to all my switches and things are running fine.
I need to create another L2 only Vlan. I can't seem to find any docs that indicate that a Layer2 vlan Interface on nx-os should be in "shutdown" mode as part of the setup. I do see in the docs where it has to be set "Active" as part of the process.
Is this the correct way to seutp a L2 only vlan on nex-os? Leave the interface in "shutdown" but make it "Active"?
Mystery Vlan 4 and 6
The mystery deepens. I have other L2 vlans ,Vlan4&6 that are NOT defined as "Interface Vlan4" in the nexus config, yet it is applied to GigE ports on the nexus and these Vlans 4/6is also being sent out VTP to all switches. Even weirder is that these vlans have names associated with the numbers. These are valid Vlans that were configured on the old 6509 before the Nexus was installed.
I have checked all switches, NONE are running in Server mode for VTP, all are in CLIENT. The nexus 7010 is the only device running in VTP Server mode.
View 2 Replies
View Related
Feb 12, 2013
- Incoming frames on three of a blade's four switchports are being put into VLAN 1 even though the ports are either in other access VLANs, or are configured as trunks with different VLAN IDs being tagged by the server. - When the ports go down the access VLAN is removed from the port.
Switch stack: 4x WS-CBS3120X-S, 12.2(58)SE1
HP blade: HP BL460c Gen8
This combination has been used successfully elsewhere.
Switchport configuration:
!
interface GigabitEthernet1/0/13 -------> THIS PORT IS OK
switchport mode trunk
[Code].....
View 1 Replies
View Related
Sep 8, 2012
I can see drops on one of our busy L3 vlan in the input queue and are going up very frequently.System image file is "sup-bootflash:s72033-psv-mz.122-18.SXD3.binHardware = 6509
View 1 Replies
View Related
Nov 13, 2012
I have a 3750 as a core and have a series of HP Procurve switches that are daisy chained using one port. I have two vlans on the port now (6 &9) and everything works fine, all switches communicate and end devices on the switches are also talking. There is a requirement to add a device towards the end of the chain which requires it to connect using Vlan1. Once I add Vlan1 to the port onthe 3750 I lose connectivity to all the HP switches.
View 4 Replies
View Related
Apr 11, 2013
I've problem with IP SLA probes between two different routers.2900 (c2900-universalk9_npe-mz.SPA.151-4.M4.bin) here is set "ip sla responder" only and 2800 (c2800nm-advipservicesk9-mz.124-24.T2.bin) here is set two type of tests "udp-jitter" and "icmp-jitter" - temporary, used to check for availability of 2900 router.As a result, I've what udp-jitter doesn't work at the same time icmp-jitter test is OK.Here are the settings of IP SLA tests
ip sla 281
icmp-jitter 172.25.28.1 source-ip 192.168.28.6 num-packets 100
tos 128
frequency 120
ip sla schedule 281 life forever start-time after 00:05:45
[code]...
View 3 Replies
View Related
Nov 20, 2012
I have bought DRAM MEM-2900-2Gb for 2921, and received the following error...
Validation failed for DIMM0
*****System halted*****
%SPD info: DIMM0: Invalid DIMM type (only UDIMMs are supported)
View 5 Replies
View Related
Oct 15, 2012
Cisco C2960S IOS:12.2(55)SE5
Cisco C3560X IOS: 12.2(55)SE3
The 3560 switch is serving as an access and distribution layer switch. End devices are connected to it and it also implements IP routing via SVI and L3 ports.Auto qos voice cisco-phone has been implemented on applicable access layer ports. SRND4 is being used.
2960:
mls qos map policed-dscp 0 10 18 24 46 to 8
mls qos map cos-dscp 0 8 16 24 32 46 48 56
mls qos srr-queue output cos-map queue 1 threshold 3 4 5
mls qos srr-queue output cos-map queue 2 threshold 1 2
mls qos srr-queue output cos-map queue 2 threshold 2 3
mls qos srr-queue output cos-map queue 2 threshold 3 6 7
[code].....
Question 1:Why is the auto qos generated policed-dscp map different on these two switches?The Cisco Smart Business Architecture LAN configuration files guide [URL] does not specifically use the 3560 in their examples, they use the 3750 but it's my assumption that the same techniques, configs apply with regard to my specific feature questions. When using a 3750 in the Access layer, the guide shows (page 15) the same auto qos generated policed-dscp map configuration that is on my 2960. The SBA LAN config guide shows that when using a 3750 as a Distribution layer switch (page 26), the policed-dscp map configuration is the same that I see on my 3560.In the configuration guide for the 3750 distro switch, there is no auto qos applied as there are no access ports, so the mls qos commands are manually input. Since my 3560 does have access ports, auto qos generated the mls qos commands, and the results are the same be it following the guide and manually entering (per distro switch guidelines) or using auto qos. This leads to question 2...
Question 2:Why is the mls qos map policed-dscp configuration different depending on use as an access vs. distribution switch?
Question 3: On the 3560, access ports that have "auto qos voice cisco-phone" applied are put into queue-set 2 (output). Queue-set 2 (output) uses default values (not configured). Is this correct and desirable? If so, why? The 2960 has all ports in queue-set 1, regardless of being an access device port or a trunk port connected to the 3560 (as per the SBA LAN config guide EgressQOS macro commands). The 3560 trunk ports are all also configured to use queue-set 1 (output), again as per the SBA LAN config guide EgressQOS marco commands.
View 1 Replies
View Related
Feb 21, 2013
I have a few old 2600 routers (2621, different IOS's) which I'm now replacing for new one's from the 2900 series (2901, Version 15.1(4)M4).In my configuration I have two IP addresses in my LAN interface and I have HSRP configured within the secondary IP subnet range. It would be something like this:
interface GigabitEthernet0/1
ip address 172.x.x.x x.x.x.x secondary
ip address 10.z.z.z z.z.z.z
[Code].....
Now, in the new 2900 routers, my interface configuration hasn't changed however I can see that the hello packets are now sent with the source within the respective HSRP IP subnet so I had to edit my acl for that:
permit udp 172.x.x.x x.x.x.x host 224.0.0.2 eq 1985
Is there a way I can force the HSRP to work as it previously did in the old IOS's?
View 3 Replies
View Related
Mar 18, 2013
how to change the Baud Rate on Cisco 2900 SW utilizing ROMON ?
View 8 Replies
View Related
Oct 11, 2012
I know we can use copy & Paste, my questions are:
1. Before that, do I need to wipe out the existing confi on the brand new switch?
2. About using TFTP, how does this new switch connects to the TFTP? Does it mean I have to assign a real IP and put it on our network?
View 3 Replies
View Related
May 15, 2013
we ordered a data e-delivery PAK L-SL-29-DATA-K9= (FOR A 2900 SERIES ROUTER) but after we received the PAK we discovered that the client actually has a 1900 router. Any easiest way of rectifying this mistake so that we can use the PAK on a 1900 series router?
View 1 Replies
View Related
Feb 24, 2013
Trying to apply this config to a 2900 router and getting this error message. [code] This works ok in in a 2800 router using 12.4(25d) spservices IOS
Not working on 2911 using 15.2(3)T2 ipbase image.
View 3 Replies
View Related
Apr 1, 2013
How to configure a module NM-16ESW because with the command "show diag" and "show int" can not query it.
Note: the default IOS is installed, you will need to upgrade to a specific '.
View 1 Replies
View Related
Jan 18, 2012
I have asked to test an VPN phone for home Users. I have a BT adsl broadband at home which is going into a cisco 2900 switch. Port One is connect to the computer port 3 is connected to the Avaya VPN phone this work's. The quality is not very good, so the question is could I have qos on Port 3 which is connected to the phone?
View 4 Replies
View Related
Mar 27, 2012
I have came across this topic, and I am wondering if this images can be uploaded to any 2900 series switches or not, and if this will work as access port for more than vlans. URL...
View 2 Replies
View Related
Dec 18, 2012
i have 2921 router with base license . i want to upgrade to it to security k9 feature or want to enable it. i have license file with product activation key. how should i do it. if any body have screen shot file
View 1 Replies
View Related
Jun 30, 2012
I just purchased a used Catalyst 2900 XL switch and have not been succesful in connecting to the console via minicom 2.5 running on Ubuntu 12.04 or 11.10, I don’t even get junk charecters in the terminal or echo on input. The switch passes POST according to the LEDs on the front and the network ports are fucntional for switching purpouses.
I’m using a Prolific PL2303 USB-Serial adapter, which works with minicom to console into another device. I’ve tried every baud rate available and tried combonations of hardware flow control, software flow control, and niether.I’ve tested the pinout of the console cable and all pins map correctly according to Cisco spec.I’ve also tried Cutecom, putty, and screen. I have not tried HyperTerminal because I do not use windows.Is it possible that the previous owner disabled console access? Do I need to reboot the switch each time I test a different baud rate?
View 4 Replies
View Related
Apr 22, 2013
I recently copied a configuration from a router 2800 to a 2900. After a power outage no one can connect outside of the network through the new router. Before the outage all was fine. I put back the old router and all is fine which eliminates any cable or switch error. I have the router totally disconnect. I notice the configuration is in place. My question is there any diagnostics that I can run to see if there is any hardware failure. It seems to boot up fine.
View 1 Replies
View Related
Jul 27, 2012
I am having a problem reaching a soho linksys e1000 router through a second hop cisco 2900 router.Here is a brief topology of the network: I am using OSPF area 100 for all networks except for
192.168.2.0 on R1 to E1000 which is RIPv2
R1 directly connects to R2 with a point-to-point serial on network 192.168.12.0 /30 with ip 192.168.1.13
R1 directly connects to a a switchport using network 192.168.2.0 /24 with ip 192.168.1.75
R3 directly connects to a switchport using network 192.168.1.128.0 /25 with ip 192.168.1.129
R3 directly connects to a different cisco router using ethernet on network 192.168.1.0 with ip 192.168.1.1
E1000 directly connects to a switchport using network 192.168.2.0 /24 with ip 192.168.2.1
The switch has a vlan ip on 192.168.1.128 /25?I can ping from R1 to E1000?I can ping from R3 to R1 192.168.2.75? I can't ping from R3 to E1000 192.168.2.1?show ip route on R2 indicates that network 192.168.2.0 is reachable via the serial connection on 192.168.1.12?I have redistributed rip to ospf area 100 and OSPF to RIP on R1?I am wondering why R1 can reach E1000 on network 192.168.2.0, and why R3 can reach R1s 192.168.2.0 newtork, but R3 can't reach the E1000.There is an R2 router than can reach R1 and also cannot reach E1000, but I assume it's for the same reasons R3 can't, so I've omitted the remainder of that topology for this question.
View 4 Replies
View Related
Apr 4, 2013
I have a small network that i want to setup, i have 1 2900 router and i'd like to create subinterfaces for the internal. but more importantly i'd like to have the dsl modems connected to the router with traffic from one subinterface going through one modem and traffic from the other going through the other.
View 1 Replies
View Related
Jun 12, 2012
We need to implement VLANs on my company's network. I have 3750 L3 swtich, ive setup 3 vlans for testing. ive setup SVI everything.now how do I connect it to 3com that will also use VLANs. should I set trunk port of cisco and 3com? or no need?
View 2 Replies
View Related
Jun 15, 2012
We have multiple cisco cat 2900 switches. all switches don't have cascade cable port in back panel. i want some sort of solution to manage those switch remotely.
View 9 Replies
View Related
Jan 10, 2012
Between our hosting and a customer we have an extended vlan, traveling on a fiber, between two cisco 3560 switches.The thing is, that we want to create one or more vlans inside that extended vlan, in some way if possible?
View 3 Replies
View Related
Jan 10, 2013
I have two networks at two sites with a dot1q trunk between the two L3 switches at both sites (no routers involved)
SITE A - Cisco 3750 L3 - VLAN ID 50
10.10.50.0/24
SITE B - Cisco 3750 L3 - VLAN ID 50
10.20.50.0/24
I would like to extend the SITE A VLAN to SITE B so that I can move hosts from SITE A to SITE B without needing to change their IP address but the vlan ID is already in use. Obviously the easy solution is to change the VLAN ID for one or other of the sites but both sites contain hosts that run 24/7. Is there a way to join two VLANs with different IDs together.So for example I create a new VLAN 60 at SITE B and associate it with VLAN 50 at SITE A.
View 4 Replies
View Related
Mar 31, 2013
i need to solves this little problem on 2960S lan BASE but i dont know if it is possible.
Uplink port config for gi 1/0/28 is:
switchport mode trunk
switchport trunk alloved vlan 10,11
but on interface gi 1/0/1 i want to have data from vlan 10 tagged as VLAN 20.
At this time i have solved this issue very primitively
I have set up gi 1/0/2 as int mode acces, acces vlan 20 and i have connected gi 1/0/2 with gi 1/0/3 with eth cable. int gi 1/0/3 is switchpor mode acces, switchport acces vlan 10
View 4 Replies
View Related
Sep 16, 2012
I have a 3750G switch in my production network that only has VLAN 1 on it. All ports are in a default state and VLAN 1 is disabled. The switch is passing traffic but shouldn't having the default VLAN shut down cause the ports not to pass traffic? If I start to create VLANs will that cause the switch to stop passing traffic?
View 4 Replies
View Related
Jun 13, 2011
I am trying to setup a L2tpv3 VLAN-to-VLAN tunnel.My setup has two Cisco 890 router with Cisco IOS Software version 15.0(1) M4. These routers are connected directly on FastEthernet port 8.
One linux machine is connected on FastEthernet port 0 on each router. The two linux machines are on same vlan. I am trying to establish a vlan-to-vlan tunnel between the routers and send traffic between the linux machines.
I followed the case study 11.4 from [URL] and configured the l2tp-class and pseudowire-class. However, the vlan interface configuration is different on 890 router.
I configured a vlan interface as follows.
(config)#vlan 200
(config)# interface FastEthernet 0
#shutdown
#switchport access vlan 200
(config)# interface vlan 200
I don't see the 'xconnect' command in this context. What's wrong with my configuration?
View 3 Replies
View Related
Nov 20, 2012
We have a low bandwith (15-20 Mbit/s) to the ASA from our Client vlan. If i connect the Client to the same vlan as the ASA is, the bandwith (90 Mbit/s) is good.
Here are the Layer 3 Design:
Client -> vlan 2 - Switch - vlan 7 -> vlan 1 - ASA 5505 -> ISP
The Layer 2 Design:
Client -> Gig2/0/13 - Switch - Gig4/0/43 -> Eth0/1 ASA5505 -> ISP
IP Address:
Client: 172.16.2.10Vlan2: 172.16.2.1Vlan7: 172.16.7.1ASA: 172.16.7.2
I assuming the switch has a problem with routing ?It is a stacked Switch with following members:
switch 1 provision ws-c3750g-12sswitch 2 provision ws-c3750g-24tsswitch 3 provision ws-c3750g-24tsswitch 4 provision ws-c3750x-48
And we have following error message in the log from the switch:
%PLATFORM_UCAST-4-PREFIX:
One or more specific prefixes could not be programmed into TCAM and are being covered by a less specific prefix, and the packets may be software forwarded I first get the idea that the switch is overloaded with router traffic. Thats why i assuming i have to check the sdm templates, but i'm not sure if this resolves the issue.
Here are the relevant config:
ASA Interface on the Switch:
interface GigabitEthernet4/0/43description ASA-inside LANswitchport access vlan 7switchport mode accessspanning-tree portfast
Client Interface on the Switch:
interface GigabitEthernet3/0/1switchport access vlan 2switchport mode accessswitchport port-securityswitchport port-security aging time 2switchport port-security violation restrictswitchport port-security aging type inactivitymacro description cisco-desktopspanning-tree portfastspanning-tree bpduguard enable
[code]...
View 2 Replies
View Related
Aug 25, 2011
If there is a router ISRG2 2900 with SEC license and without HSEC license, there is a limit in count of cumulative encrypted VPN tunnels of 225. Which commands can show us a number of current tunnels on the router, so we can see if we are near this limit of 225?
View 4 Replies
View Related
Jan 10, 2013
We have a 3750 running IOS ver 12.2 (44) SE, it has performed great and we have never had a problem with it. However we have noticed that when we had an outage some of our Wireless APs didn't come up as they get DHCP from the 3750. The DHCP scope said IP was depleted although there were IPs to give. We had to delete and recreate the DHCP Pool. However two days later we got the same problem and then had to do the same thing over again.
View 8 Replies
View Related
