i have several cisco 3500XL switches with trunking. I created a VLAN lets say 20 which purpose is for wireless clients. I installed wireless controller with 4 APs and controllers sees all 4 APs. Controller is also DCHP server. When wireless client authenticates it's DCHP requests in not getting to DHCP server (controller). If i connect all equipment in non managed switch everything works.
View 10 RepliesI have several Cata 3500XL switches connected to one 1 HP L3 switch which is connected Sonicwall router. Vlan1 has subnet of 10.10.0.0/24 and Microsoft DCHP server lays inside VLAN1.
Now i want to add VLAN11 (192.168.10.0/24) as second data VLAN but DHCP requests should go to microsoft DCHP server.
This is what i did:
Configured VLAN11 IP on each cisco switch
IP default gateway with IP from other subnet (i guess this is bad since maybe it should be IP of VLAN11 on HP L3 switch?)
Trunk ports are configured to pass everything on cisco switches
On VLAN11 i configured IPhelper IP to be MS DHCP server on each Cisco switch
I haven't tested this yet but i have problem in process.I can't ping VLAN11 IPs between switches (i configured VLAN1 and VLAN11 with IP). When client plugs computer to a port that belongs to VLAN11 will i be sure that client will get IP from the 192.168 range or there is possiblity that he gets IP from the management VLAN range?
I have a POE switch running 12.0(5). I have port 24 connected as a trunk connected to the main switch. I need to add an ip address on vlan 21 which is where the network vlan is. I created it but I can not seem to enable it. I have issued the no shut command several times, but doing "sh ip int brief" it keeps showing up as administively down.
View 13 Replies View RelatedI am using an Old 3500XL and I simply created a
interface VLAN 100
Description ***********
ip address 10.0.1.100 255.255.255.248
no ip directed-broadcast
no ip route-cache
shutdown
no matter what I do i cannot get it to come up, the rest of the switch is default config, I know I am just forgetting something, But I don't know what?
Between our hosting and a customer we have an extended vlan, traveling on a fiber, between two cisco 3560 switches.The thing is, that we want to create one or more vlans inside that extended vlan, in some way if possible?
View 3 Replies View RelatedI want to know what is the best way to black traffic inside the same VLAN, this VLAN is a user VLAN, it means that I am talking about access layer.I wanted to use private vlan, but C2960S doesn't support this feature. Any other way to prevent any to any traffic in the user vlan, this vlan only have to speak at the Layer 3.
View 2 Replies View Relatedmy environment:
IE-3000-8TC industry-switch
ios: ies-ipservicesk9-mz.150-2.SE2
if i do
vlan 12
name NextVLAN
state active
in putty, everything is ok. but if i set this lines in a config-file and use them by config net or copy tftp: running-config, then this commands are completely ignored.how to setup VLAN so that this are funktional. i dont need a "interface vlan xx"! in addition manually configured vlan are shown in show vlan command but there are no entries inside a sh running-config output even i user show running-config all.
We have a number of 6509s which generally have dhcp relay agents configured on the SVIs. The dhcp servers are centralised. Recently we've had one or two faults with misconfigured or faulty devices (blade server chassis and also printers) generating high volumes of dhcp discover packets and causing high cpu on the relevant 6500. I would like to rate limit these discover packets, which are layer 2 broadcasts. Storm control can't discriminate between different types of broadcasts and on a gig link would need to be set down at about 1% to have much effect on the problem. I've looked at CoPP and also mls hardware rate-limiting but as I understand it, these two features don't control broadcast traffic. I also looked at dhcp snooping but if an interface receives a high level of dhcp discover broadcasts, e.g. over 100pps, I don't want it to go error-disabled (as this would knock down the whole edge switch), just to drop the excess packets.
View 2 Replies View RelatedI've gotten this out of our storage unit here at work: This was not in use, I've restarted it, I can't get into the flash dir,I've tried to restart the switch via the documents I've gotten on the site.I have the lastest iOS version .bin for this switch, but I can't get this to load: here below is what happens when I try.
View 5 Replies View RelatedCan I have two different routers (different subnets) on one cisco 3500XL switch and still be able to communicate between the two? If so how can I do it?
View 8 Replies View RelatedI'm configuring a catalyst 3500XL, but I'm having a problem, when I connect an ip phone it works just fine but if I connect a computer to the pc port in the phone the computer doesn't get an ip address. The switch is configure with two vlans Voice and Data and is connected from fa0/24 to a Catalyst 3560 fa0/46. I did configure both ports as trunk.
View 9 Replies View RelatedI am trying to trunk between a 3Com 4800g and a Cisco 3500xl. I can get the a PC that connects to a vlan 1 port on thecisco switch to connect to the 3com switch and get connectivity. However, I cannot get anthing on the cisco switch that is on vlan 2 to connect and get dhcp. I am not a 3com guy, so I am not familiar with the command and configs.We have 2 vlans on both switches: Vlan 1 is Admin and Vlan 2 is Student.
View 17 Replies View RelatedMy understanding is that even layer 2 switches like the Cisco 3500XL can have 1 IP address for management. However, I cannot seem to figure out how to configure it to get it working in a router on a stick setup. I can manage the router through SSH, but I cannot SSH to the switch.
View 3 Replies View RelatedI have an old Cisco 3500XL I am using for my home lab, but was wondering can I use the fiber ports to connect to my PC. I have to correct NIC interfaces but no link indication. I did make sure the port was no down, but sill not link.
View 8 Replies View RelatedBase ethernet MAC Address: 00:0a:b7:07:35:80Xmodem file system is available. The system has been interrupted prior to initializing theflash filesystem. The following commands will initialize the flash filesystem, and finish loading the operating system software:
flash_init load_helper boot switch: flash_initInitializing Flash...flashfs[0]: 3 files, 1 directoriesflashfs[0]: 0 orphaned files, 0 orphaned directoriesflashfs[0]: Total bytes: 3612672flashfs[0]: Bytes used: 1815040flashfs[0]: Bytes available: 1797632flashfs[0]: flashfs fsck took 3 seconds....done Initializing Flash.Boot Sector Filesystem (bs:) installed, fsid: 3Parameter Block Filesystem (pb:) installed, fsid: 4ô
have a Switch I bought off a guy at work. Just to get into the Switching world of Cisco. He doesnt know the password on it and i cant reset the switch. I would like to mess around with it more but it doesnt load the flash or helper. It just sits there and holds. I have tried the password recovery and everything. Trust me, everything is correct, but it wont work for me. I cant load a new image to it because I dont have access to a server to get it from.
Base ethernet MAC Address: 00:0a:8a:94:58:c0Xmodem file system is available.
The system has been interrupted prior to initializing theflash filesystem. The following commands will initializethe flash filesystem, and finish loading the operatingsystem software:
flash_init load_helper boot
switch: flash_initInitializing Flash...flashfs[0]: 3 files, 1 directoriesflashfs[0]: 0 orphaned files, 0 orphaned directoriesflashfs[0]: Total bytes: 3612672flashfs[0]: Bytes used: 1815040flashfs[0]: Bytes available: 1797632flashfs[0]: flashfs fsck took 3 seconds....done Initializing Flash.Boot Sector Filesystem (bs:) installed, fsid: 3Parameter Block Filesystem (pb:) installed, fsid: 4û
I am trying to configure a switch that was given to me. They don't know the password to anything. I have already tried to recover it. The problem is, the switch doesn't load flash, or will copy flash from xmodem either. It also doesnt load the helper or boot. It is user mode and lets me do nothing. It doesnt let me use the enable command to get into it. I would like to start the config from scratch. Its a 3500xl switch, 24 ports. I dont know what to do with it. I am trying to study for my CCENT Exam and would like a switch that worked.
View 8 Replies View RelatedI am trying to configure a 3500XL switch (and I know its old). I get to the int fa 0/1 line and thats where it all stops working.
switch#(config-if)#switch port mode access
switch#copy run start
or
switch#(config-if)#switch port mode access
switch#sh run int fa 0/1
It will show the configuration for port fa 0/1 as if I hadn't entered the "switch port mode access" command. Or any other command for that matter. Why the switch is not holding configuration and seemingly loses it as soon as you exit out of each interface?
I have a Netgear wnr3500 for my home network. I have certain sites blocked from inside it, for instance.I even blocked it by exact url. Still gets through then blocked yahoo.com and it was immediately Netgear blocked.It seems this site is fooling my router.
View 3 Replies View RelatedCisco Small Business Switch POE ESW-520-24P with a Wireless Access Point Cisco Aironet AP1141. Both the devices are upgraded to the latest firmware.
Connected to the ESW-520-24P is a Windows 2008 SBS 2011 with DCHP and Domain Controller. Along with the server I have a number of wired computers connected to the switch which do not have any issues and connect to the DHCP server without any problems.
When connecting two wireless devices to the AP1141, they get the IP address and DHCP from the server; but when connecting other devices apart the first two they will fail to connect to the DHCP server and do not get any IP Address. They manage to connect to the Wireless access point but they cannot contact the DHCP server.
We've got 5 remote offices with cisco 881 routers, Win Clients behind them and all routers connected via vpn site-to-site to central software router.
Mostly all clients recieve ip addresses from routers in their subnets 192.168.x.024
We have Win DHCP Server in subnet 192.168.181.024
The problem is that some of clients,physically sutuated in 192.168.10.024 subnet, recieve ip addresses from Win DHCP server from 192.168.181.024 subnet.
Here's part of cisco cfg:
interface FastEthernet0
no ip address
!
interface FastEthernet1
[Code].....
I have two 3560x Catalyst switches setup between two different locations. They link via a PTP line (Layer 2). I have setup Intervlan routing between the switches and that works fine.Each location has a separate subnet and a Windows DHCP server for each subnet.I want to block any DHCP requests to be sent from hosts on one subnet to the DHCP server on the other side (i.e across the PTP link) What is the best method to do this?
View 5 Replies View Relatedlast week we have changed the connection of small town from licensed radio to direct fiber with clasic 1gig sfp.After that we have connected the new fiber , we can see 5 min outages of customer internet connection. If we are conncted on the same subnet anywhere on network, we can ping the customer all the time. But if we try to ping the customers public IP it is each 5 min for 5 min unreachable. I have tryed to sho logg in all switches but there are no mesasages. I just see, when comunication have lost, the MAC and IP of customer will disapear from routers ARP tabbel. What is going on?When i enter sho mac address-table i can see customers MAC address in all switches. There are exactly 5 min outages. 5min it runs ok, 5 min outage and it repeats agan.
I looks like the swith blocks the ARP packets from customers to their default gateway.The routers are connected to catalyst 3560x lan base ios, This switch is connected to another 3560x lan base ios and it is connected with fiber to ME3400 where are customers connected.
We are using the SG300 series switches, and have come across an issue where we need to block ARP broadcasts based on IP.
we have multiple computers, each with only one ethernet adapter, each adapter has two IPs configured, 10.10.10.x and 192.168.0.100.All machines have the same 192.168.0.100 address (Used for applications/hardware running locally to that machine and this IP cannot be changed).
When the machines are connected to the network, ARP is advertising BOTH the 10.10.10.x address and the 192.168.0.100 address.
As all machines have the same 192 address we receive IP conflict notifications on each machine.
How can the ARP broadcasts for the 192 address range be blocked?
Our company bought a Cisco 2960-S to add to the network, We gave the interface VLAN 1 an IP address, and tried to attached the switch to a jack port on the wall to test if it gets a link or not. The status of the port blinks amber and stays contionous amber, I have searched the manual of the switch and it says that amber means that the port is being blocked by STP.
View 4 Replies View RelatedWe have a server that we remove from the rack. The only role it has is to give out DHCP on the wireless network. I tried enabling the built in DHCP server on the Airespace 4112, though a Catalyst 3750G, but I dont get an address when I'm connected to the wireless network even though the range is enabled. If I set an static IP on my wireless card I can access the network. I also tried enabling DHCP on a Sonicwall that is connected to the Catalyst 3750G.
Do I need to link the DHCP scope to the wireless network? Is there anything on the switch that would be blocking DCHP since it on a VLAN? I have the last four ports in a VLAN for the AP's and the internet connection to the Sonciwall.
I got ASA 5510 with base license, can I block all Peer-2-Peer traffic from inside to outside.
ASA Giga 0/0 connected to ISP Router 2811
ASA Giga 0/1 connected to LAN switch 3560
I'm having some problems with a D-Link switch. I believe it's filtering the management VLAN frames, which is really strange. If you look at the graph, you can see that the D-Link is connected to three switches by trunk links. I'll just use the numbers set in red on the graph to explain what's going on, it's simpler to see.So when I'm connected either to switch 4 or switch 5 (or the others on 5's level) I can use the management VLAN (ID = 1) to connect to all switches above number 3 (including number 3) but I can't get to switches numbers 1 and 2.The only way to connect to those switches is to either connect directly to one of their ports attributed to VLAN 1 or by connecting directly to switch 3. So that's why I concluded that switch 3 filters VLAN 1 frames. It's not switch 4 cause I can get from 5 to 3. But at 3, the frames stop.Also, this only happens for VLAN 1. We have some VoIP phones connected to switches 1 and 2 and their frames can communicate anywhere in the network.
View 12 Replies View RelatedWe made an IOS doBlades on switch 4507R keep block after an IOS downgradewngrade. Before to do it, the equipment comes with blades 1, 2, 3, 4 and we insert "X4418" and "X4548" on blades 5 and 6.[code]
After we made an IOS downgrade to a cisco 4507R from "cat4500e-ipbasek9-mz.122-54.SG.bin" to "cat4500e-entservicesk9-mz.122-53.SG2.bin" (comes with a redundancy supervisor blade WS-X45-SUP6L-E) the standby supervisor keep disable.We tried with the command "Switch(config)#boot system flash cat4500e-entservicesk9-mz.122-53.SG2.bin" then save configuration and "reload" comand but the switch runs with the "...54.SG.bin" IOS.
We erase the configuration with the command "erase/all non-default", before to apply the reload command insert the "entservicesk9-mz. 122- 53. SG2.bin" using the tftp command.The standby supervisory remains on disable state but the active supervisory runs with the desire IOS. In order to downgrade the IOS to the standby supervisory the active supervisore was removed temporarely (previously the switch was off) to make the standby as active, after that made the same procedure with command "erase/all non-default", "copy tftp://(....122-53.SG2.bin), and "reload" command.
The switch was off and re-insert the active supervisory and turn on the switch, after we made the procedure the blade "WS-X4548-RJ45" marks a fault as follows: [code]
The blades were reset but don't have access to them.
I have two networks at two sites with a dot1q trunk between the two L3 switches at both sites (no routers involved)
SITE A - Cisco 3750 L3 - VLAN ID 50
10.10.50.0/24
SITE B - Cisco 3750 L3 - VLAN ID 50
10.20.50.0/24
I would like to extend the SITE A VLAN to SITE B so that I can move hosts from SITE A to SITE B without needing to change their IP address but the vlan ID is already in use. Obviously the easy solution is to change the VLAN ID for one or other of the sites but both sites contain hosts that run 24/7. Is there a way to join two VLANs with different IDs together.So for example I create a new VLAN 60 at SITE B and associate it with VLAN 50 at SITE A.
i need to solves this little problem on 2960S lan BASE but i dont know if it is possible.
Uplink port config for gi 1/0/28 is:
switchport mode trunk
switchport trunk alloved vlan 10,11
but on interface gi 1/0/1 i want to have data from vlan 10 tagged as VLAN 20.
At this time i have solved this issue very primitively
I have set up gi 1/0/2 as int mode acces, acces vlan 20 and i have connected gi 1/0/2 with gi 1/0/3 with eth cable. int gi 1/0/3 is switchpor mode acces, switchport acces vlan 10
We are upgrading out internal office network. I have setup 4 switches and 1 router using the following config.
-2 SGE2010p's are stacked together forming vlan 30 (to be used for phones)
-2 SGE2010's stacked for workstation's under vlan 20
Both switches are apart of vlan 1 (the default)Ports 1 on each stack are connected to a Cisco 890 (port fe2 and fe3) in trunk mode. Ports 2 and 3 are in an LAG group and connected to the neighboring stack (I have attached a diagram), and are also in trunk mode).At this point one port (port 1 on either stack) goes into blocking mode, and I get why ,it's a physical loop.I need more than a 100mb link between switches (which is what pulling the LAG between switches gets me), but I don't want to route phone traffic through my workstation switches to get out of the LAN.Is it possible using these switches and router to have a LAG between stacks and a link to the router for traffic to 0.0.0.0 ?
I have a 3750G switch in my production network that only has VLAN 1 on it. All ports are in a default state and VLAN 1 is disabled. The switch is passing traffic but shouldn't having the default VLAN shut down cause the ports not to pass traffic? If I start to create VLANs will that cause the switch to stop passing traffic?
View 4 Replies View Related