Cisco Switching / Routing :: 3560 - Accessing Management Interface Using Layer 3 Link

Apr 9, 2012

I am setting up a link between buildings that uses wireless links. I'm using Layer 3 routed ports on 2 3560 switches to handle the routing between sites. Normally I would just put these in a /30 and then the switches handle the rest. However, the wireless access points have a web interface for managing them that I want to be able to access, but it's only available on the single NIC that also carries traffic. What would be the best way of making this work? Should I make the link a /29 and give the access points an IP in the same range? If this is the case what do I use for the default gateway for the access points?
 
I have included a diagram to try to explain the issue clearer. The IP addresses in black are what I would do if this were a standard cable (and indeed this will work, but I wont be able to access the admin interface of the wireless AP) and the red ip addresses are the alternative if I use a /29 (but as I said, I'm not sure what to use for the default gateways).

View 1 Replies


ADVERTISEMENT

Cisco Switching/Routing :: 3560 Layer 2 QoS

Mar 17, 2013

I found that when I enabled layer 2 auto QoS in 3560 switch, I need to wait so much time to open a file in network drive. Howerver, when I disable the Qos. It can improve a lot. I have used a sniffer to capture the packet to see. Those default packet is in DSCP 0. Therefore, I think majority packet will drop to queue 4. How can I increase the buffer and threshold in order to improve queue 4 performance.

View 1 Replies View Related

Cisco Switches :: Accessing SG300-28P Via Management Interface?

Dec 21, 2012

I have a new SG300-28P, and have had occasional issues with being unable to connect to it via anything other than the serial port.  I have connectivity between my machine and the switch (tested with ping each way), and in fact, have the same problem if I take a laptop to the switch and connect them directly.What happens is that though the switch is operating normally, http, https, ssh and telnet attempts to access all fail in one way or another.  Ssh and telnet either yields no response or a refused connection (even though those services are enabled).  For http and https, I'll occasionally get enough of the web page to be able to tell what it is ... but attempts to log in just don't work.While this is happening, the CPU and packet load on the switch is very, very low.Rebooting didn't work entirely, though it may have made it better.  Resetting to factory defaults and then reconfiguring makes it work.This is using the latest firmware: 1.2.7.76.

View 3 Replies View Related

Cisco Switching/Routing :: 3750-X OOB Management With IP Base And Routed Access Layer

Aug 14, 2012

I've got a bunch of 3750-X switches all running IP Base and acting as a routed access layer. They run OSPF in a totally stubby area with the distribution layer (Nexus 7K) as the ABR. We also have a physically separate management network into which the fa0 management interface of the 3750-X is connected. The management network itself runs OSPF and has multiple subnets and external access.
 
On the 3750-X, I'd ideally like to be able to run some sort of separate OSPF process for the management network or at the very least have a static default route for management traffic pointing out the fa0 interface, but clearly not have it interfere with the main default route for data traffic coming from the N7K ABR. Normally I'd just create a management VRF, sling the fa0 interface into it and run a separate OSPF process in that VRF. The problem is you can't create VRFs in IP Base! Surely there must be a way to do this? Cisco don't really expect customers to upgrade to IP Services just to have a working OOB Management network, do they?!

View 4 Replies View Related

Cisco Switching/Routing :: 3560 / Getting Layer 3 EtherChannel Configuration

May 23, 2012

I been practicing with the configuration of layer 3 etherchannel configuration and i am facing a problem here. I have two 3560 switches and i want a layr 3 ether channel configuration setup between the first 2 ports of bothe the switches. I assign IPs to the Port-channel 1 of both the switches "10.1.1.1 /24 and 10.1.1.2 /24" but i am unable to get a successful ping. what am i doing wrong. below are the configs for bothe of my switches.
 
3560_1
Building configuration...
 Current configuration : 1274 bytes
!
version 12.2
no service timestamps log datetime msec
no service timestamps debug datetime msec

[code].....

View 2 Replies View Related

Cisco Switching/Routing :: 3560 DHCP In Layer 3 Switch

May 25, 2012

I have made a topology by using one 3560 switch and 2 2950 switches. I have also made 2 vlans name Clients and other Servers and vlan 1 is for anagement purposes. The left 2950 switch is for clients and the right is for servers. Clients is vlan 2 and servers is vlan3 . Now what i want is that my dhcp is should assign ips to clients in vlans 2 provided that servers are in vlan 3. I am also using a border router and i have introduced a default route on the 3560 to the border router.
 
Now when i assign static ips to my clients pc and server dhcp then i can ping between vlans but when i try to assign ip through dhcp then it wont work. Also the default route on the switch to the border router doesnt seem to work. I can ping only the border router when i put a default route on the border router instead of the 3560 switch.

View 3 Replies View Related

Cisco Switching/Routing :: Filtering Ip From Accessing Router 2911 For Remote Management

May 16, 2013

i have router 2911
 
pub ip: 121.97.65.61-74
interface gigabitethernet 0/1
ip address 121.97.65.61/28

[Code].....
 
and other ip will drop/kick/disconnected automatically
  
how to implement this on access list

View 6 Replies View Related

Cisco Switches :: SG300 - Setting Management Interface In Layer 3 Mode

Jun 13, 2012

How to set the management interface on a SG300 Switch in Layer 3 mode? I've some vlans configured on the switch with interfaces in each of them:
 
Vlan 100 (10.0.1.254 /24)
Vlan 200 (10.0.2.254 /24)
Vlan 300 (10.0.3.254 /24)
...
Vlan 900 (10.0.9.254 /24)
 
Now, the management interface is listening on all interfaces (IPs). But I would like to configure the switch to only listen on 10.0.9.254. What I need to configure or whether it is possible?

View 3 Replies View Related

Cisco Switching/Routing :: 3560 / Connectivity From Layer 3 Switch To Firewall?

Nov 29, 2012

RACK 1 is the old rack and NEW RACK is the rack which is going to be procurred for some new Servers. All the Servers in the RACK 1 has a default gateway as PIX Inside IP. As of now the 3560 Switches acts as Layer 2 and does not have L3 IP routing enabled. How can I enable conenctivity between 192.168.36.0 range and 192.168.57.0 range wihtout making any change to current PIX inside IP address 192.168.57.1?Is it possible that I can enable IP routing on the 3560 Switches , create interface VLAN 36 and since already Switch 2 has it 's default gateway as 192.168.57.1 , Would the traffic from 192.168.36.0 be routed to 192.168.57.1 ? Or do I need to create static route for that ?Since L3 Routing is not enabled and since the 3560 Switches are just acting as L2 , the  VLAN 2 - 192.168.57.0 range does not have any interface VLAN configured. When it is changed I would need to create interface VLAN 2 on 3560 Switches?

View 18 Replies View Related

Cisco Switching/Routing :: Catalyst 3560 / 2960 Web-user Management

Jun 7, 2011

We have quite a few 3560 & 2960 on our edge network - what I have been looking at was to access switches via web-interface i.e. web-browser. Only problem with this is it always gives you access on privilige level 15 which is not ideal as not all who we decide to give access to these switches will be admin and allowed to configure these swicthes - In the 3560/2960 data-sheet states:
 
"Alternatively, a local username and password database can be configured on the switch itself. Fifteen levels of authorization on the switch console and two levels on the Web-based management interface provide the ability to give different levels of configuration capabilities to different administrators"
 
Where as there is no mention of how to configure these two levels of Web-based management in the configuration guide.

View 8 Replies View Related

Cisco Switching/Routing :: Accessing WRVS4400N Web Interface On LAN?

Sep 13, 2012

I have Comcast as my ISP and their Small Business Gateway Router/Firewall. I purchased a WRVS4400N and configured them like this:
 
Comcast Router/Firewall - 10.1.10.1
Cisco WRVS4400N - 10.1.11.1
 
I turned DHCP off on the Cisco so that wireless devices that connect to it get a 10.1.10 address from the Comcast device. Now, I am completely unable to connect to the web interface of the Cisco, whether connected to it wirelessly or even if I plug directly into one of the LAN ports on it. I have one of the LAN ports on the Cisco connected to one of the LAN ports on the Comcast. What am I missing here? I'm guessing I'm not able to see the 10.1.11 addresses when I am getting a 10.1.10 address from the Comcast, even though I'm connected to the Cisco?

View 6 Replies View Related

Cisco Switching/Routing :: Cannot Assign Ip Address To Layer 2 Interface In 878

Apr 19, 2012

I have a cisco 878 router and I can’t assign ip address to it’s fast Ethernet interface. When I assign ip address give me this message: “you can not assign ip address to layer 2 interface”.
 
But I can not understand why give me this alert when I use a layer3 device?!

View 3 Replies View Related

Cisco Switching/Routing :: Unmanaged Switch And No Way Of Accessing An Interface SE2500

Dec 27, 2012

I am trying to make my LAN to work at home. Its pretty small but I am bearly an smart user, noobie if so.I have a Motorola Cable Modem model SB5101 receiving the internet from Shaw Cable.from there I have an ethernet cable to my switch (Cisco SE2500) from there I have two ethernet cables coming out, one goes to my PC and the other one goes to an Airport Extreme so our laptop.I am just here double checking this info... sice this is an unmanaged switch I guess there is no way of accesng an interface to make this happen.I just hate spending the money in something I wont be using just because I dont know whats going on.

View 7 Replies View Related

Cisco Switching/Routing :: Nexus 7K Out Of Band Management Interface?

Dec 8, 2012

regarding to the out of band Management interface , if I configured an intervace vlan to be as a managment interface for one vdc ( the default vdc ), when I connected to this vdc via telnet , can I switch to any other vdc ?  ( suppose that I have the Admin role which allows me to enter and config all the vdc's )If that is possible so that I dont have to make a dedicated managment ip for each VDC I need to do that only if I want to make vdc admin's account to allow some users to access specific vlans only , is that true ?

View 2 Replies View Related

Cisco Switching/Routing :: Nexus 5548UP - Management Interface

Apr 21, 2013

How separate is the management interface on a Nexus 5548?
 
In context - what's the risk of having a layer 2 only Nx5K in a DMZ and running the managment ports down into an internal managment VLAN, to form peer-keepalive links and software upgrades.

View 4 Replies View Related

Cisco Switching/Routing :: Management Interface On Nexus 7010?

Apr 28, 2013

We have a couple of Nexus 7010's split into Core and Distribution VDCs. MGMT0 interfaces on each of the Nexus VDC's (including the Admin VDC) are configured with different IP address, but on the same subnet i.e 10.10.10.1/24 for admin, 10.10.10.2/24 for Core and 10.10.10.3/24 for Distribution. The MGMT 0 physical port on each Nexus is connected to a physical gig port on a 3750 X switch, and the 3750X has uplinks back to the Nexus configured for vPC.
 
When i ssh to the VDC MGMT0 IPs from the 3750X, i can access each of these VDCs without any problems. But if i enable routing on each of these links(OSPF) and advertise it to the WAN, i cannot see these routes advertised and also cannot see any of these routes in the local routing table.Just wondering if i have to enable these links on a VLAN and then advertise it to the WAN..But if this the case, VLANs cannot be created  on the Admin(default VDC).

View 9 Replies View Related

Cisco Switching/Routing :: 2900 - Nexus 7010 Layer 2 VLan 11 Active But Interface Shutdown

Sep 13, 2012

I understand the vlans on the catalyst side of the house on 2900 to 6500 Catalyst switches.
 
This 7010  running nx-os 5.1(3) I did not setup, but have to manage it.  Hasn't really been a proble till now.
 
My nexus 7010 has a Layer 2 only vlan 11. It is "Active" but the interface is "shutdown".  Yet, it is passing traffic across the directly connected  ports on the nexus 7010 and to other switches in my network.  Vlan 11 is being set out via VTP to all my switches and things are running fine.
 
I need to create another L2 only Vlan.  I can't seem to find any docs  that indicate that a Layer2 vlan Interface on nx-os should be in  "shutdown" mode as part of the setup. I do see in the docs where it has  to be set "Active" as part of the process.
 
Is this the correct way to seutp a L2 only vlan on nex-os? Leave the interface in "shutdown" but make it "Active"?
 
Mystery Vlan 4 and 6
The mystery deepens.  I have other L2 vlans ,Vlan4&6 that are NOT defined as "Interface Vlan4" in the nexus config, yet it is applied to GigE ports on the nexus and these Vlans 4/6is also being sent out VTP to all switches.  Even weirder is that these vlans have names associated with the numbers.  These are valid Vlans that were configured on the old 6509 before the Nexus was installed.
 
I have checked all switches, NONE are running in Server mode for VTP, all are in CLIENT. The nexus 7010 is the only device running in VTP Server mode. 

View 2 Replies View Related

Cisco Switching/Routing :: 3560 Ip Command Is Not Available On Interface

Apr 4, 2013

I am using cisco packet tracer to configure the hsrp on 3560 (c3560-advipservicesk9-mz.122-37.SE1.bin) but the standby ip Command is not available on the interface  the problem in that IOS or in config

View 1 Replies View Related

Cisco Switching/Routing :: 3560 Switches Hang Off With Sub Interface

Jul 22, 2012

Was building a small network in Cisco Packet Tracer and ran in to an issue.  I have 4 routers running OSPF, and off one of the routers I have 5 3560 Multilayer switches.  The router that the switches hang off of, I have a sub-interface with dot1q encapsulation, set for vlan 10 and an IP Address. 10.14.16.1/24.  The switches have interface vlan 10 configures, and have IPs in the same subnet.  From that router, I can ping/telnet to all the switches without issue.  My problem arises when I try and reach those switches from any other router.  OSPF is set to redistribute static and connected subnets.The routing table is populated correctly on all the routers.  When I ping and trace the packet, it looks like it makes it all the way to the respective switch, but the packet never makes it back.  I've played with the default route on the switches to no avail.  Am I trying to implement this incorrectly, or am I just missing something?

View 4 Replies View Related

Cisco Switching/Routing :: No 802.1x Interface Commands On 3560 Switch

Aug 20, 2012

I am trying to configure 802.1x wired on a 3560 switch and don't see the required commands under the interface. I am running c3560-ipbasek9-mz.122-55.SE6.bin. I was thinking it might not be available on the ipbase image, but I do have the commands on a 3750g running the ipbase image, so I'm not sure about that.

View 4 Replies View Related

Cisco Switching / Routing :: 3560 - Management Port Used As Regular Port?

Jan 30, 2012

I have an all gigE  3560.  I don't use the management FE0 port on the back.  I was thinking to use that for a 100Mbps WAN connection. 

Seems to work just fine when I plugged in an test.  But I am not routing across that link yet as I still need to setup the far end.

Is there any reason this would not work?  I would like to not burn a gig port if the max throughput of the circuit is 100Mbps.

View 1 Replies View Related

Cisco Switching/Routing :: 3560 / Apply Acl Restrictions To The Vlan Interface Ip Address Itself

Nov 1, 2011

I've set up my 3560 to do routing.  Now, I'm looking for a way to apply acl restrictions to the vlan interface ip address itself. 

View 1 Replies View Related

Cisco WAN :: VLAN Routing On Layer 3 Catalyst 3560

Jan 15, 2013

My first question is I have an access layer switch which is a single VLAN and I am trunking that VLAN to a distribution layer switch, I can ping the gateway on the distribution layer switch for THAT VLAN, But cannot ping the gateway address for the second VLAN I have on the distribution layer switch. I know it is simple, But I have forgotten and just need a push
 
Also I have a third VLAN set to  route traffic not bound for those 2 VLANs out to a router is the statement "ip route 0.0.0.0 0.0.0.0 172.16.252.2" good enough and do I actually need to create a VLAN for that traffic? and if so, is an access switchport the best option?

View 2 Replies View Related

Cisco Switching/Routing :: Sg300 And SLM2024 VLAN As Layer 2 And Layer 3 Switches Connection

Mar 18, 2012

I want to setup VLAN with the switches SG300 and SLM2024. What is the suggestion to connect these 2 switches. We have the Juniper net screen.

View 1 Replies View Related

Cisco Switching/Routing :: Layer 2 Link Configuration VLAN 2626

Apr 29, 2013

I've turned up a new layer 2 WAN link between two data centres and i'm having some trouble trying to logically figure out how things should be configured.As you can see from the diagram i've created, I have the link connected on port 13 on one switch and port 14 on the other. Both ports have an IP address assigned to them and they can both ping each other..
 
The problem comes when I need to add routes in order to get traffic flowing over the link.I added an IP address to switch 2 on the link interface (port 14) as: 192.168.4.10
 
I then added an IP address to switch 1 on the link interface (port 13) as:

192.168.1.10
192.168.2.10
 
When I tried to add 192.168.3.10, it said "192.168.3.0 overlaps with VLAN2626". This would be correct as Vlan 2626 has an IP address of 192.168.3.15.

However, if I remove the IP address from vlan 2626 and add 192.168.3.10 to vlan 2 (the link port VLAN), I would surely lose remote access to the switch. (I'm telnetting into the switch from a machine on vlan 2626).
 
I started to tinker with this by manually adding a route to a server in each location and seeing if I could get traffic to flow:

On server 1: route add 192.168.4.0 MASK 255.255.255.0 192.168.1.10 METRIC 1
On server 2: route add 192.168.1.0 MASK 255.255.255.0 192.168.4.10 METRIC 1

If I try to tracert 192.168.1.20 from server 2, the first hop is the default gateway instead of 192.168.4.10.
 
The ultimate goal is to add the static routes to the Layer 3 router/firewall, but before I do that, I need to be sure of what to add to that router (It's a manged firewall from the data centre, so I don't have access to it and I need to raise firewall change requests to get the work done, so want to ensure it's right first time.

View 9 Replies View Related

Cisco Switching/Routing :: 2921 / Catalyst 3560 - Router Interface Input Queue Drops?

Nov 6, 2011

i have an 2921 connected to an Catalyst 3560. My router interface shows quite a lot of input queue drops. Load is not too much max 5/255.

View 1 Replies View Related

Cisco Switching/Routing :: 4500 / Layer 3 Port-channel Up But Can't Ping Across Link

May 17, 2012

I configured the interfaces individually at L3 and could ping across each link Example:

4500 Switch 2:            6500 Switch 1
int t5/1                    -      int g3/17                    1 Gig fiber link
tore down config
tried second set of interface
int t6/1                    -      int g8/17                    1 Gig fiber link
 Ping successful

[code]....

View 2 Replies View Related

D-Link DIR-655 :: Slow Management / Interface And Best Firmware?

Jun 19, 2012

owner of a new B1 here. I've seen various recommendations for 2.03 as a firmware, as mine came with 2.04. Why is this recommended? Is there any others that are recommended?Additionally, after connecting up to the router via ethernet (192.168.0.1), the control mechanism for the router is rather slow. I've owned many routers, and this might be the slowest administration/settings page i've seen for a router. Is this normal?

View 8 Replies View Related

Cisco Switching/Routing :: 3560 - Unidirectional Link

May 10, 2012

We have a switch that continues to get unidirectional links. The fiber run is very long and is working off of legacy infrastructure. We have one uplink that can sustain 100MBPS trunk link. However, the moment we plug in the second redundant uplink the port will error disable for unidirectional link. We have tested all of the patch cables involved on the run, replaced the catalyst 3560 v2 switch, and even had a contractor come and out verify the fiber was good between the buildings. No matter what the link will come back as unidirectional. Or any troubleshooting steps we could try next?  We have UDLD port aggressive enabled on both the switch interface and the interface on our distro router.

View 2 Replies View Related

Cisco Switching/Routing :: 3560 - Setting Up 1gig Link Between Two Sites

Jul 30, 2012

We are having two sites seperated by half a mile and we are using dedicated 100 Meg link at the moment for intranet traffic, and now we got new 1 gig link and I am working to set it up, Service Provider came on site installed two circuits on both sites and fiber connectivity is tested succesfully betweeen sites, now I need to connect the circuits to our network and  make the 1 gig link active to make traffic flow between sites and as well bring 100 meg as standby.
 
So to brief the issue:
 
Connectivity at the moment SiteA: Switch1(3560)------100Meg--------.SiteB: Switch 2(3560)
 
I Want to configure SiteA: Switch 3(4507)------1gig (Active)--------.SiteB: Switch 4(3560) SiteA: Switch1(3560)------100Meg(Standby)--------.SiteB: Switch 2(3560)
 
simple as connecting a fiber or ethernet link from external circuit on both sites to respective switches on their interfaces and configuring hsrp to enable redundancy. A

View 7 Replies View Related

Cisco Switching/Routing :: Implement Shaping VLAN Only On Trunk Link Between 6500 / 3560

Jan 2, 2012

I need to implement the shaping VLAN only on the trunk link between the 6500 and 3560. [code]

View 8 Replies View Related

Cisco Application :: Accessing ACE30 Through Https For Management

Jun 11, 2012

I am new to the ACE30. I a basic configuration from the CLI and I am trying to use the device manger. I am able to get to the web informational page rather then accessing the login page.    I have rest the password for both the admin and www and still no go. my question is how to go into enabling the GUI access.

View 1 Replies View Related

Cisco WAN :: 3560 - Possible To Use Layer 3 Switch For BGP

Apr 22, 2011

can i use normal  two L3 Switch(3560) for BGP Multihoming with 2 different isp

View 4 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved