Cisco Switching/Routing :: 2960 / 2621 - IP From Wrong VLAN Being Handed Out
Dec 29, 2011
Setup is like this: Poly com IP phones -> Cisco 2960 switches -> Cisco 2621XM router running 12.28(r). A Windows 2003 server running on HP Proliant DL380 G4 with the correct DHCP scope is configured for the IP phones, also sitting on a Cisco 2960 switch.
A typical port config on the 2960 is:
interface FastEthernet0/1
switchport mode access
switchport voice vlan 60
mls qos trust cos
auto qos voip trust
spanning-tree portfast
spanning-tree bpduguard enable
Relevant section of the config on the 2621XM router:
interface FastEthernet0/0
no ip address
no ip redirects
no ip proxy-arp
ip pim sparse-dense-mode
[Code] .......
This used to work on a Windows 2000 server which sat on different piece of hardware, but stopped immediately after the migration to Windows 2003 server was done. There was no change on the router or switches prior to or after the server migration. I see DHCP server log on the 2003 server giving DHCP NACK because the phones are apparently asking for IP's in the data VLAN.
View 14 Replies
ADVERTISEMENT
Oct 25, 2011
I need to setup a vlan between the 6509 and 2621 router. This needs to be a VLAN (200) the runs between the devices that uses DOT1Q trunking. The end result is all the networks (vlans) on the 6509 can talk to the LAN on the 2600 (10.133.22.0 / 23) and visa versa.
Device 1
6509 with CatOS / IOS
Config I did on the MSFC:
Interface Vlan 200
ip address 10.10.10.1 255.255.255.248
[code]....
View 13 Replies
View Related
Oct 20, 2012
it seems that i made a mistake when typing the BAUD rate of a 2960-Switch in rommon.I can't start the switch now, because there is no image on it (because I deleted it before) and the baud-rate has wrong settings. When connecting via console cable i can't see anything (except some strange hieroglyphics) when starting. I tried all the speeds in teraterm... without success.what can i do, to recover the switch back?
View 8 Replies
View Related
Feb 12, 2013
- Incoming frames on three of a blade's four switchports are being put into VLAN 1 even though the ports are either in other access VLANs, or are configured as trunks with different VLAN IDs being tagged by the server. - When the ports go down the access VLAN is removed from the port.
Switch stack: 4x WS-CBS3120X-S, 12.2(58)SE1
HP blade: HP BL460c Gen8
This combination has been used successfully elsewhere.
Switchport configuration:
!
interface GigabitEthernet1/0/13 -------> THIS PORT IS OK
switchport mode trunk
[Code].....
View 1 Replies
View Related
Mar 5, 2012
I have a Cisco 2960 48-port switch. I enter "sh vlan" and it lists all the VLAN's. One of the VLAN's listed is "10" with the name "EPIC". What is the quickest way to find out what ports, if any, are assigned to this VLAN?
View 2 Replies
View Related
Feb 19, 2013
In our network environment, we have a 2960 switch sitting behind our router. Off of this we have a lot of external connections, like our external DNS, firewall, and VPN concentrators. I've configured a VLAN other than the default, moved everything into it and then shut VLAN 1. In this hardening guide it says that your native VLAN should be something other than the user VLAN, but if I am not using any trunk links, wouldn't I not really have a native VLAN? I attempted to make the link to our firewall a trunk link and then set the native VLAN to something else.
View 5 Replies
View Related
Feb 25, 2013
New to Cisco and want to know if I can segment a port. I have two v lans. I have one internet connection at the opposite end of the building. Can the port the internet is connected to serve both V lans?
View 6 Replies
View Related
Feb 11, 2013
I have 2 hosts, 1 plugged in fa 0/21 in VLAN 101 and another in fa 0/22 in VLAN 101 on our L2 Cisco 2960. If I try and transfer files from either host the gig 0/1 trunk port on the 2960 leading tot he 3750 fa 0/1 port hits 100mb (using a real time bandwidth monitor tool), but why? This VLAN is on the same switch, why does it go one way up the trunk to the L3 3750 switch? The L3 3750 is the VTP server and the 2960 is a client. I would of thought the traffic stays local. The 2 hosts don't even have a gateway set.To sum up the typology the 2960 and 3750 are trunked using a single cable. The 3750 hangs of a ASA firewall using SVIs.Here is whatthe traffic looks like when copying a file between hosts (2gb file).
3750 L3 Switch (VTP Server)
interface FastEthernet1/0/4
description Trunk to Cisco 2960 Gig 0/1
switchport trunk encapsulation dot1q
switchport mode trunk
switchport nonegotiate
[code]....
View 6 Replies
View Related
Mar 13, 2013
I have 2960 cisco switch. I want to configure private vlan. But it is not getting configured in cisco 2960. Is there any other way to configure that in switch.
View 1 Replies
View Related
Aug 6, 2012
I have two questions for a Cisco 2960 (WS-C2960-24TC-L)
1. I am working to setup a few Cisco 2960 switches for HP iLO access to our servers. We are going to segregate the iLO network (VLAN 40) from the data network (VLAN 10) by using a different VLAN. All of the HP servers will be configured with static addresses. My question is, how do I set all the ports to VLAN 40 so that untagged devices will automatically go onto VLAN 40? I don't want to have to configure the VLAN on each iLO port on the server. I tried to set the port to: "switchport trunk native vlan 40", but that didn't work.
2. Also, how do you access the web GUI for these switches? I get a login box, but putting in the enable password doesn't work. I have the following commands in the config: [code]
View 9 Replies
View Related
Jun 6, 2013
we have inserted into a network with VTP a Cisco Switch 2960-S, not knowing that had installed IOS LAN lite.Now I discovered that it can handle up to 64 vlan. In the network there are currently configured 62 VLAN: what happens when we exceeded the max number (64) of VLAN for that switch?
View 6 Replies
View Related
Mar 11, 2013
Using Cisco 2960 series switches (Have 8 . 2 stacks of 4) to replace 6 old switches. 4 old switches had IP ranges of 192.168.6.*** and all new switches have 10.1.*.* addresses. Core switch has 10.1. as well as 192.168 ip addresses but i need to configure one vlan (5?) to route to 192.168 address. PC's on 10. address taking a long time to access 192 range.
View 2 Replies
View Related
Feb 6, 2012
I have a 2960-S running the lastest software for testing on my bench:
[code]
Switch Ports Model SW Version SW Image
------ ----- ----- ---------- ----------
* 1 24 WS-C2960-24-S 15.0(1)SE2 C2960-LANLITEK9-M
[/code]
I have set up VLAN 2 on 192.168.2.0/24 with the switch as the DHCP server. The switch is connected to an RV082 router which is at 192.168.1.65/27. Once I figure out what I doing I'll eventually shift that to 192.168.1.0/24 or something similar. So I have my switch acting as the DHCP server for VLAN 2 but I can't figure out how to get it to access the internet.
I found this example to set up the DHCP server:
[code]
###################################
this works to get vlan 2 to serve ips
conf t
[Code].....
The RV082 doesn't support trunks AFIK and I'm pretty much a newb at this stuff. TIA. I guess I should get a real router and I most likely will but I'd like to get this working if possible before taking the next plunge.
View 7 Replies
View Related
Aug 6, 2012
When did this wonderful feature get introduced? Is it going to moved down to the 3560s/2960s type switches?
View 0 Replies
View Related
Nov 14, 2011
I have a 2960 that I need to limit the uplink port to 50Mbps for 3 vlans and 350Mbps for another vlan. Would the following config achieve that or is this even possible for the 2960?
class-map match-any VLAN50-51-52
match vlan 50-52
class-map match-any VLAN53
[Code].....
View 1 Replies
View Related
Jul 5, 2012
I have a 2960 switch connected to another. The I need to verify that vlan0010 on one switch is forwarding tagged traffic between the other switch it is hooked up to through the Gi0/1 port. How do I verify this? I have a server that's multihomed (Broadcom) on the other side an it is supposed to be on this vlan with one of it's network interfaces. We had a pwer outage and now it cannot communicate on this vlan. However, everything else on the vlan can reach all the other nodes accept this server in the front of my building. All the devices in the same room are linked to the same switch which has one port (fa0/17) on vlan0010 and can ping eachother just fine. The server is hooked to port 24 on my server room switch and Gigabit port one goes to a fiber converter all the way to the back. It then gets converted from fiber to cat5e again and links into the switch (2960) in the backroom.
View 5 Replies
View Related
May 21, 2012
We're going to be switching some of our gear from Foundry to Cisco, and were looking at the WS-C2960S-48TS-L. We currently have 3 different VLAN's, and I wanted to have 1 uplink back to our firewall (ASA 5550) and then let the firewall do the routing between the subnets. I realize that 1 link will carry the traffic twice then, but is that possibly with those switches to have all three vlans assigned to one port and then just let the firewall do the routing between the vlans or would I need to have 3 uplink ports back to the 5550?
View 1 Replies
View Related
May 19, 2013
I am unable to connect a Wifi Modem wiith 2960 Switch having VLAN 1,Attached is the network diagram,what configurations i have to modified it,I need to Connect A Wifi Modem on VLAN 1 ,Connectivity is working fine between VLAN 10 and VLAN 1.What should be the next step to Connect Wifi Modem to VLAN 1 so that Users on VLAN 10 should connect to Internet.
View 14 Replies
View Related
Sep 4, 2012
I have a problem, here are the situation
- 1 Catalyst 3750
- 1 Catalyst 2960
- 4 Finger Print
- 1 HUB
Configuration
- Catalyst 3750
Interface VLAN182
IP Address 10.62.182.254 255.255.255.0
Interface G0/2
Description Finger Print Server
Switchport mode access
[code]....
Here are the problem,If i connect Finger Print Device to port catalyst 2960, some device not sending data to server, but if i connect all Finger Print to HUB and from HUB connect to Catalyst 2960 at port F0/5, All Device(Finger Print) can send data to server...Is there any special configuration in catalyst so all device can direct connect to port catalyst 2960 without HUB?
View 3 Replies
View Related
Nov 13, 2011
I am trying to setup a network using Cisco 2960 switches with vlans configured. One vlan will handle video coming from four cameras that are connected to another 2960.
We have four cameras feeeding one port each on a 2960, that 2960 in turn feeds one port on the main 2960 which is the video vlan for that site. From the site it goes back to a Cisco 3750 to be sent over to a Sonicwall firewall. If we connect to the 2960 that the camera are connected to we can see the video, but not on the main site 2960.
View 5 Replies
View Related
Jul 5, 2012
I've recently purchased a Cisco catalyst 2960S-24TS-L & setup 3 V LANS 10 (no current IP),20 (192.168.2.1) and 30 (192.168.3.1) to reflect the router V LAN configuration & ip information. When connecting my PC to the switch to test connectivity on (2.1 & 3.1) I'm unable to connect to the the net but can successfully ping GW (int FE0.20 & FE0.30) 192.168.2.1 & 3.1.
The router is an Cisco 1801 & it seems this is where the configuration issue is but I'm unable to figure out how to complete the setup. It has been quite awhile since I've configured a Cisco router.
Ive never had this router connected to a switch so all router switch ports are in the default VLAN1 (192.168.1.2), with FE0 disabled. In trying to get the switch to communicate with the router I made the following router config modifications.
FE0 enabled with subinterfaces configured
FE0.10-currently no ip
FE0.20-192.168.2.1/27
FE0.30-192.168.3.1/27
I have two issues I want to resolve:
1) I do not know what additional steps are required to allow 2.1.& 3.1 V LANs to access the net.
2) I want to disable VLAN1 if possible & use the network IP for VLAN10 (192.168.1.0). I'm unsure how to do this as any change on VLAN1 immediately breaks router access and the router reconfiguration becomes more complicated with changes to the FW ACL etc.
View 2 Replies
View Related
Jan 28, 2013
I am going to creat VLANs very 1st time therefore for test purpose I have following simple scnerio.I have created 2 VLANs , VLAN2 and VLAN3 on Cisco Catalyst 2960 series switch. Ports 1-12 is assigned to VLAN2 and Ports 13-24 are assiged to VLAN3. Now I have configured DHCP on Microsoft Server 2003 defining 2 scopes with following configurations.
Scope 1 for VLAN 2--- Range is 172.16.0.17 to 172.16.0.30 with subnet mask=255.255.255.240 . Server IP address 172.16.0.17
( Note: Address 172.16.0.17 is excluded from dhcp server Scope 1 and give to the MS server itself)
Scope 2 for VLAN 3----Range is 172.16.0.33 to 172.16.0.46 with subnet mask=255.255.255.240 .
Now in Cisco 2960 series switches, under Vlan 2 and Vlan 3, I have following configurations...
interface Vlan2
ip address 172.16.0.30 255.255.255.240
ip helper-address 172.16.0.17
interface Vlan3
ip address 172.16.0.46 255.255.255.240
ip helper-address 172.16.0.17
Now the problem is when i connect a client computer to any port from 1-12, It gets correct IP address from Scope 1 but when I connect a computer to any port from 13-24, it does not get the ip address.
Further I want to do inter VLAN comunication as well for that purpose i Have an ISR 2900 series router. What further configuration i will have to do on router for inter vlan communication.
View 3 Replies
View Related
Apr 12, 2012
provide a sample Voice Vlan configuration for the Cisco 2960 POE switch to work with the Non-Cisco IP Phones?
Will these commands work? Vlan 2 is the new voice vlan, Vlan 1 is the data vlan.
mls qos
interface fastethernet 0/1mls qos trust cos switchport nonegotiateswitchport mode trunkswitchport trunk encapsulation dot1qswitchport voice vlan 2priority−queue outspanning-tree portfastspanning−tree bpduguard enable
vlan 2name voice
View 2 Replies
View Related
Jun 13, 2011
I purchased a Cisco 2621 with IOS Version 12.3(26) on it. When I went through the commands, I couldn't find any VLAN or VTP available. I need to make sure I can see this on the device in order for me be able configure VLAN on my network and get ready for my CCNA exam.
Below is the version on the device and I also attached the available commands:
Version: IOS (tm) C2600 Software (C2600-I-M), Version 12.3(26), RELEASE SOFTWARE (fc2)
View 4 Replies
View Related
Sep 11, 2012
recently i just connected a non cisco ip phone(from panasonic) to Cisco 2960 POE switch at site A. The PABX system is located at site B,Site A and site B are connected using MetroE Point to point.I would like to apply QoS for voice vlan. I want to assign 2MB to the point to point connection for voice vlan.
View 3 Replies
View Related
Jul 24, 2012
I have a 2621 that I am configuring on the internet. My ISP gives me a static DHCP assigned address and then two more static addresses that are not part of the same block. (e.g. 1.2.3.4 is static via dhcp and then they give me 5.6.7.8/30).
I have fa0/0 getting 1.2.3.4 ia dhcp. I have 5.6.7.8 on a loopback interface for PAT/NAT as I have the main one on fa0/0 doing vpn to a remote ASA. The problem is that I have yet another device that needs a public IP, mainly 5.6.7.9... I want to hook that device up to fa0/2 (this box has three fa interfaces). How do I setup fa0/2 if I want to give the device on it a real live public IP address? I have done this before, but it must have been 10 years back on an even older CISCO and I can not remember how I did it.
View 2 Replies
View Related
Dec 3, 2011
I've got a 2621 configured as my main gateway to the internet - right now it's obtaining a DHCP ip from a the ISP's proprietary router set to bridged mode.
As of now, I'm unable to ping the internal interface of the router. I can ping external IP's only, even though I have DNS servers listed, i am unable to resolve host names. I'm running a few servers to which people are able to connect to my web server, among other services. I even have a crypto map setup to another 2621 across the country and can ping all internal ips on the other end... I JUST CANNOT PING THE INTERNAL INTERFACE of the router!!
I've noticed that when I ping the router during it's boot process (using linux un-interupted) I get a response in a very short window, then dies again. I'll post my config below:
[code]....
View 9 Replies
View Related
Jan 27, 2013
I have a lab setup to take my CCNA and CCNP and I'm having issues trying to get WAN connectivity back to a switch at the end of my network. My lab environment consists of 1 - 2950 switch, 1 - 2620 and 1 - 2621XM. I have 1 Ethernet connection from each router to the switch and 1 serial connection from the 2620 to the 2621XM. I have the serial interfaces in a shutdown state right now so there is no loop since I do not have Spanning tree setup on the ports on the switch yet.
Right now using the fast ethernet ports on the routers and I have no issues its when I shut down those Ethernet ports and try using the serial interfaces when I start having issues. So my network layout is Ethernet from switch port f0/4 to port f0/0 on 2620 and serial from s0/1 on the 2620 to s0/2 on the 2621XM. My 2621XM f0/1 is whats connected to the WAN and I have no issues getting to the WAN from my 2621Xm or my 2620 but when I try pinging any website or even my WAN default gateway from my switch I get nothing!
Ive also noticed that when I do a IP NAT translation (after accessing the WAN from my 2620) on my 2621XM the source IP is of my serial connection not the ip of my 2620 router? I have my default gateway on the 2620 as the the IP of my serial interface on the 2621XM and vice versa because my LAN network is 172.16.1.0 and my WAN is 172.16.9.0. I have a /31 setup between my serial connections 172.16.11.0 (s0/1) is on the 2620 and 172.16.11.1(s0/2) is on the 2621XM. I used the SDM (ver 2.5) to setup NAT to have f0/1 with Nat outside and s0/2 as Nat inside. Encapsulation is HDLC between the serial links. Ive attached the running configs of the switch and routers.
View 2 Replies
View Related
Oct 24, 2012
we use LMS 4.2.2 to manage our Cisco devices. At the moment all devices are managed with snmpv2. I´ve picked one Catalyst 2960-24TT-L Version 12.2(25)SEE3 and configured snmpv3
Here´s the output of show snmp user:
User name: ciscoworks
Engine ID: 8000000903000022BD29EF40
storage-type: nonvolatile active
Authentication Protocol: MD5
Privacy Protocol: DES
Group-name: LMS
Now, in LMS under Admin->Network->Device Credentials Settings-> i created a new credential set "snmpv3" with the correct user/password and following settings: AuthPriv (enabled) Auth Algorithm MD5 Privacy Algorithm DES (because the 2960 12.2(25)SEE3 doesn´t support any other alorithm).
I´ve edited the credentials and assigned the new set to that device. Now to test the snmpv3 credentials i´ve started an Device credential verification job an chose snmpv3 only. But every time the job failes with the error
Wrong Privacy Algorithm.
View 1 Replies
View Related
Feb 7, 2012
I have an existing stack of 4 x 2960-S switches connected by stack cables.I would like to add another 2960-S switch to the stack but am unable to as the 2960-S will only allow 4 x 2960-S switches per stack.how I would add the 5th 2960-S switch to the existing stack of 4 x 2960-S switches.
View 12 Replies
View Related
Feb 11, 2013
I have a 24 port 2960-S that is not communicating with a 2960-LST that it is directly connected to over fiber. The link is up on the LST but will not come up on the -S. What command should I use to bring up this link? I have tried no shut from the (Config-if)# prompt.
View 3 Replies
View Related
Jul 26, 2010
I am a complete novice at networking, but I was tasked to have an ASA 5520 do inter VLAN routing (since my shop doesn't have a layer 3 router).As a basic setup, I am trying to have three workstations on three different VLANs communicate with each other. The attached screenshot shows the topology. I am unable to ping from a PC to the ASA...therefore I can't ping to other VLANs.
ROUTER CONFIG:
ciscoasa#ciscoasa# show run: Saved:ASA Version 8.3(1)!hostname ciscoasadomain-name nullenable password ###### encryptedpasswd ###### encryptednamesdns-guard!interface GigabitEthernet0/0no nameifno security-levelno ip address!interface GigabitEthernet0/1no nameifsecurity-level 100ip address 10.10.1.1 255.255.255.0!interface GigabitEthernet0/1.10vlan 10nameif vlan10security-level 100ip address 10.10.10.1 255.255.255.0!interface GigabitEthernet0/1.20vlan 20nameif vlan20security-level 100ip address 10.10.20.1 255.255.255.0!interface GigabitEthernet0/1.30vlan 30nameif vlan30security-level 100ip address 10.10.30.1 255.255.255.0!interface GigabitEthernet0/2shutdownno nameifno security-levelno ip address!interface
[code]....
View 30 Replies
View Related
Feb 27, 2012
I currently have a wired router (Cisco RV042), a wireless router (Cisco WRT110), and a switch for my network. I have the RV042 on a 192.168.5.1 subnet, and that is where my server and other local resources are. I wanted to add wireless for guests, but do not want the guests to have access to local resources, so I plugged the wireless router into RV042 and configured it for a 192.168.1.1 subnet. I can get internet access, but when I connect with a laptop to the wireless router, I end up being assigned an IP in the 5.1 subnet. I set up the VLAN setting in the RV042 for the correct port, but for some reason I am still being assigned the wrong IP, and I can hit local resources on the wireless.
View 1 Replies
View Related
