Cisco Switching/Routing :: 3560 - Setting Up 1gig Link Between Two Sites

Jul 30, 2012

We are having two sites seperated by half a mile and we are using dedicated 100 Meg link at the moment for intranet traffic, and now we got new 1 gig link and I am working to set it up, Service Provider came on site installed two circuits on both sites and fiber connectivity is tested succesfully betweeen sites, now I need to connect the circuits to our network and  make the 1 gig link active to make traffic flow between sites and as well bring 100 meg as standby.
So to brief the issue:
Connectivity at the moment SiteA: Switch1(3560)------100Meg--------.SiteB: Switch 2(3560)
I Want to configure SiteA: Switch 3(4507)------1gig (Active)--------.SiteB: Switch 4(3560) SiteA: Switch1(3560)------100Meg(Standby)--------.SiteB: Switch 2(3560)
simple as connecting a fiber or ethernet link from external circuit on both sites to respective switches on their interfaces and configuring hsrp to enable redundancy. A

View 7 Replies


Cisco Switching/Routing :: 3560 - No Access List On Switches And No Firewall Between Sites

Jul 15, 2012

I have 3 3560 switches which are configured with trunks between them. They run vlan 10, 11 & 12. I have a 'core' switch (switch 1) of these 3 to which an MPLS router is connected on vlan12. I in addition have another switch hanging off the 'core' switch via a routed link (switch 4). I have EIGRP configured as a stub and as such the IP address on the routed link at the core switch end is of a /24 from v lan 1 on the other switch. This makes the route directly connected and therefore distributed via EIGRP stubs. Switch 1 is then exchanging routes with the MPLS router (via EIGRP).
The problem I have is that from any sub net on any switch (switch 1, 2 or 3) I can ping (switch 4). When I try and ping switch 4 from over the MPLS I am unable to. If I trace to the switch I see it reaches the outside of the MPLS router, but is then unresponsive. The same applies if I try to ping switch 1 on Any of the other IP addresses of switch 1 respond.
The MPLS network is a managed solution to which I have no access. I'm told that the MPLS provider is able to ping switch 1 & switch 4 on the 192.168.13.x addresses from a remote router ( I have tried from a switch on the same L2 sub net ( and I don't get a response.
From switch 4 I am able to ping the switch on 1 of it's interfaces (, but not the interface I mentioned above There are no access lists in place on the switches and no firewalls between the sites.

View 22 Replies View Related

Cisco Switching/Routing :: Nexus 5500 Support Auto Negotiation On 1gig Sfp Port?

Jul 28, 2012

Nexus 5500 support auto negotiation on 1gig sfp port? There is an end device that only support auto negotiation and cannot be manually set speed/duplex.

View 0 Replies View Related

Cisco Switching/Routing :: 3560 - Unidirectional Link

May 10, 2012

We have a switch that continues to get unidirectional links. The fiber run is very long and is working off of legacy infrastructure. We have one uplink that can sustain 100MBPS trunk link. However, the moment we plug in the second redundant uplink the port will error disable for unidirectional link. We have tested all of the patch cables involved on the run, replaced the catalyst 3560 v2 switch, and even had a contractor come and out verify the fiber was good between the buildings. No matter what the link will come back as unidirectional. Or any troubleshooting steps we could try next?  We have UDLD port aggressive enabled on both the switch interface and the interface on our distro router.

View 2 Replies View Related

Cisco Switching / Routing :: 3560 - Accessing Management Interface Using Layer 3 Link

Apr 9, 2012

I am setting up a link between buildings that uses wireless links. I'm using Layer 3 routed ports on 2 3560 switches to handle the routing between sites. Normally I would just put these in a /30 and then the switches handle the rest. However, the wireless access points have a web interface for managing them that I want to be able to access, but it's only available on the single NIC that also carries traffic. What would be the best way of making this work? Should I make the link a /29 and give the access points an IP in the same range? If this is the case what do I use for the default gateway for the access points?
I have included a diagram to try to explain the issue clearer. The IP addresses in black are what I would do if this were a standard cable (and indeed this will work, but I wont be able to access the admin interface of the wireless AP) and the red ip addresses are the alternative if I use a /29 (but as I said, I'm not sure what to use for the default gateways).

View 1 Replies View Related

Cisco Switching/Routing :: Implement Shaping VLAN Only On Trunk Link Between 6500 / 3560

Jan 2, 2012

I need to implement the shaping VLAN only on the trunk link between the 6500 and 3560. [code]

View 8 Replies View Related

Protocols / Routing :: Unable To Access Any Sites Except Google Sites

Jul 8, 2012

MY ISP installed one router in my lab.for internet connectivity they mail me steps :connect your Laptop directly to gi0/3 port to check internet connectivity with public ip 1.1.1.x and Gateway with subnet mask after connection I surprised because I am able to access only google sites like gmail,google search etc. but I am able to ping/traceroute all sites.from browser I am able to access only google sites only.In Router no firewall no such access list.

View 2 Replies View Related

Cisco Switching/Routing :: 6509 - VSS Between Sites?

Nov 9, 2011

I have been asked to research running VSS between 2 6509's between 2 sites?
I am just going through the whitepapers and need to establish the link requirements for such a setup.
Is it a valid setup?

View 2 Replies View Related

Cisco Switching/Routing :: How To Block Sites In 2800

Nov 23, 2012

I have a cisco 2800 router.. (flash:/c2800nm-advsecurityk9-mz.151-4.M4.bin, Version 12.4(13r)T11) configured DHCP, DNS, NATING and Bandwidth restriction...And to stop some social network [URL] i configured ip route Null0 (rang of facebook address) But still i am able to open in my network...
ADMIN-II_2811#sh run
Building configuration... 
Current configuration : 1812 bytes
! Last configuration change at 17:26:33 UTC Sat Nov 24 2012
version 15.1
service timestamps debug datetime msec
service timestamps log datetime msec


View 1 Replies View Related

Cisco VPN :: VPN 3000 Setting Two Concentrators At Different Sites To Create Ipsec Tunnel

May 20, 2011

I'm currently setting up two VPN 3000 Concentrators at two different sites to create a IPsec LAN-to-LAN Tunnel. I have gone through all the basic configuration guides on the CISCO site, but a LAN-to-LAN session is never created. I have enabled the logs on the Concentrator and it displays no errors at all - it appears the Concentrator is not even trying to establish a IPsec LAN-to-LAN Tunnel.After running through the standard setup provided by CISCO, is there anything I need to do to make the Concentrator try to create a Tunnel, or should this be automatic once all settings are in place?

View 2 Replies View Related

Cisco Switching/Routing :: 1841 Access To Individual Sites

Sep 9, 2012

I have restricted access to users using TCP/IP using cisco 1841 router in my organization.
I need to permit some sites for users which are part of work..
The issue here is I cannot ping to the site but able to browse to that site when having internet access, i have permitted range the entire range of that IP's but still no luck.. the site which is not pinging from internet.I have also checked the source code for the root IP but still no luck.

View 4 Replies View Related

Cisco Switching/Routing :: 5596 - Extending 10Gb/s LAN Between Sites

Dec 14, 2011

For a simple 4x sites design for backup consolidation (3x sites connected to one central site), does the design in the attached JPEG make sense and is the configuration achievable using the specified parts?
Brief Explanation:
- Each site is to have servers with 2x 10Gb/s Ethernet (both teamed/bonded/etc) and one NIC on each of the 2x switches in the site (if possible). Each site will also have 2x Cisco Nexus 5596UP Switch (though the P version may be used instead of the UP).
- Two of the sites are within 10KM of the central site
- The last site is about 35KM from the central site
- It is required to have a minimum bandwidth of 10Gb/s between any site and the central site
- I have specified 10Gb/s LW SFP+ and 10Gb/s LW SFP+ (for the 2x 10KM and 1x 35KM sites)
- are there any special licenses needed?
- as asked before, can such a "simple" design work as-is?
- what sort of single-mode fiber would fit the bill (especially for the 40KM link) - 9nm?

View 2 Replies View Related

Cisco Switching/Routing :: 6509 Jumbo Frames Across Trunk And Sites

Oct 25, 2011

I understand that jumbo frames need to be enabled end-to-end. I have two ESX hosts connected at each site. I want to enable jumbo frames for those ports, but what if not all host on the ESX are using jumbo frames, will I have drops and connection failures? So if i have two sites, each with a 6509 connected via a trunk and need to enable jumbo frames for a vlan between the sites how do I accomplish this?If I enable jumbo frames on the trunk link how does that impact other traffic between the sites?

View 3 Replies View Related

Cisco Switching/Routing :: 1700 ADSL Router - Connecting 2 Sites Together

Jan 23, 2012

We currently have a main network running through a static broadband connecting using a Cisco 1700 ADSL router, everything is working fine locally.

We are looking to rent some space in an office nearby so im going to order another business adsl connection with static IP for this site and i currently have a spare 1800 router.My question is can the cisco routers connect up like a VPN connection so both sites work together and will the connection remain online constantly so from the remote office we can access all our servers from the main network?

Also how does the IP addressing work on 2 sites. The main network uses 10.120.21.x and DHCP is assigned from a cisco router. Does the remote network assign from the same DHCP server or would the remote sites cisco router need to be setup to give out DHCP to local machines. If so what would be the best IP setup to use.

View 9 Replies View Related

Cisco Switching/Routing :: 2960 - Local Multicast Range Is Not Passing Between Sites

Jan 29, 2012

We found out that only local multicast ip address range is not passing between the sites, any other range is passing, local range is and above.
We have two different datacenters, the internal switch is 2960S (Stacked) with 1-10 vlans and the external switch is 3560E, the external switch is adding another tag (qinq, dot1q), vlan 611, and send the packets to metro line to the other site.
on the other site we have the same configuration.
internal switch from site A is configured with igmp querier and the internal switch port on site B connected to the external switch is configured as mrotuer port.
multicast and igmp is passig between the sites, but the local multicast range is not passing, igmp filterring is configured on all port but no profile is defined and no ports are filterred, on the external switch igmp snooping is disabled.

View 4 Replies View Related

Cisco Switching/Routing :: 9000 Jumbo Frames On Routed Ports Between Sites?

Oct 14, 2012

We have a number of sites which have high-speed L2 links which terminate on our L3 switches at each site. The ports are between the sites are placed in routed mode.
I would like to use Jumbo frame between two of the network which will communicate across sites and 1500 mtu on the rest, is this something which is possible?
From my understanding is the mtu is set on the interface therefore if I set the mtu on the L2 link ports on both sites to 9000 then would this cause a problem for the 1500?

View 1 Replies View Related

Cisco Switching/Routing :: 3560 Policy Based Routing Verify-availability

Apr 19, 2012

Cisco 3560 does not support "set ip next-hop verify-availabilty". I need this command in my config. "set ip next-hop"  do not do the same job.

View 8 Replies View Related

Cisco Switching/Routing :: Cat 3560 No Switchport Command Test Out Routing With Switch

Dec 8, 2011

The last few days I've been exploring options in getting rid of some old routers accross a wan connections.  I have a cat 3560 to play with and I thought I would try and use the no switchport command test out routing with switch.  I've got some type of route issue and I tried a few things which I thought would fix the issue but had no effect.  I'll post the config and a few commands so you can see what the basic setup is. 

Here we can see in the arp that it knows about both (PC unable to ping as well as (ASA).I tried adding in a ip route of as well as  Neither produced the results I wanted allowing (PC) to ping the ASA ( [code]

View 4 Replies View Related

Cisco Switching/Routing :: 3560 VLAN Routing Between Switch And Router

May 8, 2012

I have an environment of 3 X 3560G of which I have 1st switch-CORE(f0/10) connecting to the VPN router(CE) interface-f0/0. Remaining 2 Cisco 3560's(Access) are connected to Gi0/1 and Gi0/2 on the 1st switch-CORE via gi0/1 . On all three switches I have created multiple VLANs and assigned ports to these VLAN. The switch to switch connection is trunk allowing all VLANs created on all these 3 switches. Now the issue is how I am going to have all these VLANs routed through single interface on the routeri-e f0/0, as all these subnets will communicating to remote site over VPN. What should be default gateway on the 2 Access switches and the CORE switch, also what static route should be on router to reach all subnets(VLANs) created on these 3 switches.
I have read inter-VLAN routing i-e creating sub interfaces on router but dont want to proceed with that and looking for any other way to have my VLANs talk on all three switches and then are accessible to remote site ove VPN?

View 9 Replies View Related

Cisco Switching/Routing :: Make Policy Based Routing On 3560?

Apr 17, 2012

I have tried to make policy based routing on Cisco 3560. I use ipservices ios (SW version 12.2.(50)SE3 and SW-IMAGE C3560-IPSERVICESK9-M)  For below configuration there is no problem and pbr is working.
“Access-list 100 permit ip host host
Access-list 101 permit ip host host
 Route-map pbr1  permit 10
Match ip address  100
Set ip next-hop verify-availability 1 track 11
 interface fasthethernet  0/1
ip policy route-map  pbr1”
But when i add another sequence to the "pbr1" with another sequence number  like that.
“Route-map pbr1 permit  11
Match ip address  101
Set ip next-hop verify-availability 1 track 12”
pbr is not working. Switch gives message "PLATFORM_PBR-3-UNSUPPORTTED_RMP:Route-map pbr1 not supported for Policy Based  Routing”"ip policy route-map pbr1" command not shown in the running config. And "show ip policy" output is blank.Configuration guide says you have insert many sequence to the route-map with the same name. And also this command is not in the unsupported command list.

View 16 Replies View Related

Cisco Switching/Routing :: Routing Secondary Network On 3560 Switch

Jun 4, 2013

I am trying to get my workstation to talk to a workstation on a different sub-net through a Cisco 3560 switch.  The switch is running the following IOS version: [code]
My primary network is and I am trying to connect to a device on a sub-net. [code]
What would be the best way to get the two workstations talking via the switch?

View 3 Replies View Related

Cisco Switching/Routing :: 3560 - Access List On InterVLan Routing

Dec 11, 2012

I implemented access list on cisco 3560 switch but it never works. I want to block access from network B to Network A and allow from Ato B
Network A.
Network B
The configuration is
interface Vlan1
description Data VLAN


View 14 Replies View Related

Cisco Switching/Routing :: 3560 - Unable To Perform VLAN Routing

Apr 28, 2012

We recently purchased Cisco 3560X Layer3 Switch. We need to perform simple Inter VLAN routing.  We have configured VLAN1 (name-server_vlan) and VLAN2 (name- user_vlan). We have also assigned the Ports and IP address to both the VLANs. After assiging this if we plug Laptop A into VLAN1 then it doesnt communicates with Laptop B (btw, Laptop A is able to Ping VLAN2 Gateway ) in VLAN2 but on the other hand Laptop B is able to communicate with Laptop A and ping everything i.e. Gateway of VLAN1.

View 17 Replies View Related

Cisco Switching/Routing :: Catalyst 3560 - Routing Enabled With / Without Default Gateway Or IP Route Command

Feb 25, 2013

We have two catalyst 3560 switches running  c3560-ipbasek9-mz.122-58.SE2.bin  They are connected using etherchannel using gi 0/21 -  24 interfaces.
on 3560-1 switch, there isn't any ip-default gateway or ip route configured. It only have 1 interface vlan configured.
on 3560-2 switch, there is ip default gateway configured along with 1 interface vlan.
What i dont understand here is that, i can reach out to other subnets from 3560-1 switch in which the routing is not enabled?

View 4 Replies View Related

Cisco Switching/Routing :: 2504 WLC / 3560 Catalyst Routing

Oct 21, 2012

I have a 2504 WLC connected to a Catalyst 3560 which has multiple vlans and is connected to a 2800 series router. I know the catalyst is L3 but I am needing nat functions to get outside to the internet. From my 2800 series router I am able to ping out to the internet, also I am able to ping the vlan interfaces on the catalyst switch. Problem is from the catalyst switch I can ping the inside and outside address of the 2800 but I cannot get any further then that. I cannot ping the 2800 router gateway. Not sure what I am doing wrong as far as routing.
I've attached my 2800 and 3560 configs.

View 3 Replies View Related

Cisco Switching/Routing :: 6509 / Layer 3 Port Channel Between Sites Connected Over Dark Fiber?

May 21, 2013

Has anyone configured Layer 3 port channel on Cisco 6509 switches which are connected over dark fiber between two buildings?

View 3 Replies View Related

Cisco WAN :: 3560 What Internal DSCP Setting Means

May 29, 2013

The Cisco 3560 uses a relatively simple classification scheme, assuming you consider only what happens when the forwarding decision has been made. These switches make most internal QoS decisions based on an internal DSCP setting. The internal DSCP is determined when the frame is forwarded. What internal DSCP setting means?

View 5 Replies View Related

Cisco Switching/Routing :: Upgrade The IOS In 3560?

Oct 7, 2012

I am trying to upgrade the IOS in 3560 but I am facing one issue. Its flash is 15MB & available space is 8MB whereas the IOS is of 11MB. How can I upgrade the IOS without upgrading the flash?

View 4 Replies View Related

Cisco Switching/Routing :: 3560 / PoE Is Not Working?

Mar 10, 2013

We bought a 3560 PoE switch to replace tons of PoE-injectors but when connecting the devices our logs were flooded with
Mar 11 15:09:20.725: %ILPOWER-7-DETECT: Interface Fa0/7: Power Device detected: IEEE PD
Mar 11 15:09:20.725: %ILPOWER-5-INVALID_IEEE_CLASS: Interface Fa0/7: has detected invalid IEEE class: 7 device. Power denied
Mar 11 15:09:20.968: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/8, changed state to down
Mar 11 15:09:20.985: %ILPOWER-7-DETECT: Interface Fa0/7: Power Device detected: IEEE PD
Mar 11 15:09:20.985: %ILPOWER-5-INVALID_IEEE_CLASS: Interface Fa0/7: has detected invalid IEEE class: 7 device. Power denied
While the message seems quite clear im wondering if there's any workaround on the problem?

View 13 Replies View Related

Cisco Switching/Routing :: 3560 Need To Add 2nd Trunk

Jun 6, 2013

I have a Cisco SW ( 3560 ) with one Trunk link to my router ( 7606 ), Trunk link is fully utilized so i need to add 2nd Trunk.Shall all move some customers from old trunk to 2nd one and create a new subterface for them ?I am think if i can create bundle and add subinterfaces under this bundle ?Add two GE ports to be memeber of this bundle ?

View 5 Replies View Related

Cisco Switching/Routing :: QOS On Catalyst 3560

Oct 28, 2012

We have a IP-phone system connected to port 1 on a 3560 switch, the phone system tags traffic with dscp. The switch uplink is on port 24.
Is this configuration correct:
interface 1:
auto qos trust
interface 24:
priority-queue out                 

View 3 Replies View Related

Cisco Switching/Routing :: 3560 IOS Upgrade And PBR

Nov 21, 2012

I have a 3560, which is being used as our core router that I have recently installed. It still has the standard IOS which came with (C3560E-UNIVERSALK9-M) it but I need to implement policy based routing so need to upgrade it and have downloaded c3560-ipservicesk9-mz.122-58.SE2.bin and indeally would like to install it in the morning before people start work.

I have 2 questions, 1, Is the ipservices capable of PBR as I have been reading conflicting reports, in fact my friend who works for Cisco has advised that it is not possible on the 3560.

2, When I do upgrade will there be any current configurations that are not compatible with the new one, I wouldnt image that there would be any but just wanted to make sure as it would be the biggest headache ever if it went wrong.

View 7 Replies View Related

Cisco Switching/Routing :: How To Configure QoS On 3560

Nov 23, 2011

I configured following command to implement QoS on Cisco 3560.
class-map match-any IND
match access-group name Lync
 policy-map LyncAV
class IND
set ip precedence 4


how to apply this QoS on interface?

View 3 Replies View Related

Copyrights 2005-15, All rights reserved