Cisco Switching/Routing :: 3560G / 4948 / 3750 / 3600 - DC Core Design
Jun 19, 2012
I'm working designing a switch system for our core/data center.
We have 5 esx hosts, 2 sans with 3 nodes each. We have voice servers, a couple of routers and a few odds and ends. There are 7 other locations aggregating into this data center via 1-2gbps fiber connections. The bandwidth usage on these links is minimal, but there is a total of about 3000 devices aggregating into the system. My main concern right now is the 3560G's are seeing many output drops, due to the small buffer size on those switches. I have been looking at couple of options to resolve this issue, including the 4948E, 4507E, and 3750X switches.
Budget being the biggest factor, I am finding that the 4507 might be out of the price range. So I was leaning towards the 4948E switches for connecting the servers and iscsi san's as the 3750X is not recommended for iscsi. Redundancy is important so I would like to have two. The second concern is that I need to aggregate the fiber connections and for that I was looking at the ME-3600X or possibly the WS-C3750X-12S-E. I'm running eigrp, so this switch would need to have full routing, as it would also serve as the core switch for the 4948E's.
So in the end I was thinking that two 4948E switches up linked to the ME-3600X which would do full routing for the fiber aggregation and any routing needed for the servers and sans.
Servers and Sans_________4948E________ME-3600X_________7 fiber connections
|____________4948E_____________|
I would look at a second ME-3600X in the future for redundancy. This is the lowest cost biggest buffer solution that I could find.
View 2 Replies
ADVERTISEMENT
Jan 5, 2011
I have got a new 48port Cisco catalyst 4948 switch, which I configured as a VTP client and connected to Cisco 3750 which is a VTP Server (this switch is on production network). I connected port g1/0/48 from 3750 to port g1/48 on 4948 through a straight cable and made both ports as trunk port (I also tried through cross cable). The problem is these two switches are not detecting. For testing I connected a PC directly to one of the port on 4948 (making that a switch port) still the LED on switch didn’t glow up. Is there any special command needs to be run on 4948 switches to activate its physical ports?
View 7 Replies
View Related
Jun 6, 2011
I want to choose a pair of switches for our data center.What I need: 48 x 1GE access ports, 2 x 10GE uplink ports.Nice feature of 3750-X is stacking. So what features has 4948-10GE? Why I should prefer that switch?
View 11 Replies
View Related
Sep 26, 2012
I would like to do the following architecture with the same C3750 : network X,Y,Z connected to 3750 in VRF D the 3750 uses a routed interface on subnet E for the default route in VRF D on this routed interface a BYPASS EQUIPMENT the other BYPASS EQUIPMENT interface is connected also to another routed interface on subnet E "also" this routed interface is in another VRF C with other network A and B.do you know if it will work because of 2 routed interfaces on the same IP subnet or is there a way to do that ? the only goal for me is to catch traffic from network X,Y,Z on SYN and ACK.
View 5 Replies
View Related
Nov 17, 2011
I have a typical LAN environment that spans across a large warehouse. I have done a lot of redesigning of the environment to satisfy the need for a disaster recover plan. I now have created a LAN with multiple v lans and must also connect all the access layer switches back to the core switch where the servers are.
I was thinking of something simple such as Port channel of 2 Gbps across the backbone and simple floating static routes . I have then moved my wan access link to a 3750 and implemented routing a CEF at each of the 3 core switches (blue). My question is more of design.
View 1 Replies
View Related
Jan 25, 2011
I am just browsing and looking for a solution to converge my multi-vendor switched network and bring some redundancy to it as recently
we managed to get a redundant links. I have a need to change core switch to Cat3750G, which has Per-V LAN-RSTP+ on board, but tests have shown that it won't be compatible with some other proprietary per-V LAN RSTP solution other vendor's switches use currently.
So, I thought maybe standard-based MSTP design might do the trick. I've made some tests and got some weird and unstable switching result. I have two topology rings with a core switch in the center. Every ring has about 10 switches, so practically network diameter may vary from 5 switches (when spanning-tree converges in the center and I have a blocking port somewhere int the middle of the ring) to about 10-11 switches (if a I have link failure on any of ports right at the core switch). I disconnected one port from core switch to eliminate a possible switching loop while I will be configuring new MSTP design. Then I started enabling MSTP on all the switches staring from core Cat3750G to MSTP, one by one, placing all switches to the same MSTP region, and placing all V LAN's to default MSTI0(CIST) cause I don't need to organize any separate MSTP instances for every V LAN or for group of V LAN s. When I turned MSTP on on 7th or 8th switch in the chain (cause I had a physical chain when I disconnected one port out of redundant ring) I got all switches "flapping", storming and flooding the network with broadcasts. Even when I had one redundant port disabled.
I have no idea what I am doing wrong. I noticed that Cat3750G has an option that defines a possible network diameter which actually automatically changes some hello, max age etc. attributes according to diameter specified. When I defined a maximum network diameter of 7, if didn't change anything: I still have hello timer of 2 sec etc. I've been wondering if the maximum network diameter has something more than just a "variable" to fine tune hello timers etc? Maybe I won't be able to use MSTP in my network which might have diameter more that 7 switches. Or maybe it was a mistake of placing all the switches to the same region and all the v LAN s to the default MSTI0 (CIST) and I should configure one MSTI per V LAN or per some group of V LANs and subdivide my switches to few MSTP regions?
My topology briefly looks like this:
+--SW1----SW2----SW3---CORE---SW4---SW5--SW6---+
| | | |
+---SWxx---SWxx-----------+ +------SWxx-----SWxx----+
As I said, each "ring" has about 10 switches connected side by side.
View 4 Replies
View Related
Jun 5, 2013
I am planning to migrate the core switch from cisco 3750 to Cisco catalysts 6513 switch. What could be the best approach to minimize the downtime or avoid disrupting the production. I have couple of thoughts, one method is to build the core and then replace the existing core, another option is to build the new switch as the second VTP server and once it recieves all the VTP information then disconnect the old server.
View 6 Replies
View Related
May 7, 2013
I want to upgrade IOS for my production core 3750 switch. Below is Show version/fash output. I have IOS image "c3750-ipservicesk9-mz.122-55.SE7", need to confirm below concerns:-
1-As this is stackable switch do i need to upgrade on all Switch..i can see there are 3 flash while doing show flash?
2-Is above IOS image support with my switch? do i able to enable ssh?
3-is flash memory is enough to succefully upgrade IOS?
4-Any other point which i should keep in mind before upgrading..any special feature which this IOS wont support.
View 11 Replies
View Related
Nov 23, 2011
As we know there are three layer in cisco Network Model:
-Core
-Distribution
-Access
So my question is in Core / Distribution layer should i use Etherchannel between switches or use Stacking if switches are stackble.For ex: suppose I have two cisco 3750 switches . so should i use etherchannel between them or use stacking in core layer?What are the advantages and disadv of both.
View 5 Replies
View Related
Feb 2, 2013
I am planning to upgrade the current core switch(3750) to 6509 series switch. Since we have a production network running we have to plan for an online core switch upgrade.
View 7 Replies
View Related
Feb 8, 2012
The company I work have finally decided to enter the 21st century and invest in a new telephone system (Interactive Intelligence) to replace the legacy system which has served us well for the past 10 years. The project has only just started and involves upgrading sections of CAT3 cabling to CAT6, replacing Cisco 3550 switches in one area of the building with Cisco 4507 switches and upgrading our Core switches with Cisco Nexus 7010's. The area that concerns me most is enabling the network for qos as I have very little experience with it. At the moment Im trying to read as much documentation as I can on QOS to bring myself up to speed.
The access layer switches will consist of a mixture of Cisco 3750 & 4507 switches connected to Cisco Nexus 7010 switches which will form a collapsed aggregation & core layer.
Basically, how I should approach this daunting task of making sure the network will support VOIP.
View 6 Replies
View Related
Sep 29, 2012
I configure 3750 stack switch as core and 2960 stack switches as access layer switches.I connected my laptop to one of my core stack in VLAN 10 and I am pinging to one of my server in VLAN 1. What will be the minimum latency at the time of inter VALN routing
View 2 Replies
View Related
Jan 10, 2013
I've been fighting what seems to be an increased number of outqueue drops on our core stack and edge switches for the last 3 or 4 weeks.(The core consists of a stack of 5 3750s in 32-gig stack mode. The wkgrp switches are 3560s. all are at 12.2.52) The wkgrp switches are directly connected to users. We use Nortel IP phones with the phone inline with the user PC. auto-neg to 100/full. [code] However I have tried turning off QOS on a couple of workgroup switches (no mls qos, but left individual port configurations the same) but am still seeing drops.Since I have disabled qos on the switches in question (no mls qos) (not the core tho) I am presuming these commands have no affect on the switch operation and therefore cannot be related to the problem. With QOS turned off one would presume that it is general congestion - especially at the user edge where busy PC issues might contribute. So I wanted to see if I could see any instances of packets in the output queues building up.
I wrote some scripts and macros that essentially did a snapshot of 'show int' every 20 seconds or so, and looked for instances of 'Queue: x/' where x was greater than zero.What I found after several days of watching the core stack, and a few of the workgroup switches that are most often displaying the behavior, was that I NEVER saw ANY packets in output queues. I often saw packets in Input queues for VLAN1, once in a great while I would see packets on input queues for fa or Gi interfaces, but NEVER on output queues. [ code] Additionally, when I look (via snmp) at interface utilization on interfaces showing queue drops (both core and wkgroup), they are occurring at ridiculously low utilization levels (as low as 4 to 8%). I've tried to look for microbursts between the core and a wkgroup switch where the core interface was experiencing drops, but haven't seen any (using observer suite). [code] While the queue-drop counts aren't critically high at this point, they are happening more frequently than in the past and I would like to understand what is going on... In most cases, no error counters are incrementing for these interfaces. Is there some mechanism besides congestion that could cause output queue drops?
View 4 Replies
View Related
Nov 18, 2011
If I have two stackable switches one switch uplinks to one 6509 core switch and the other connection uplinks to another 6509 core switch, and also the other stackable switch does not connect to the core switches. Because I am using hsrp and also we are not using vss then one uplink to the core is not in used only ones is so then how does creating an etherchannel between does two uplinks to both core switches benefit me in anyway such as more bandwith and using both uplinks at the same time or I'm I wrong?
View 7 Replies
View Related
Nov 14, 2011
If I have two stackable switches were only one stackable switch has two uplinks one uplink goes to one core 6509 switch and the other uplink goes to the other 6509 core switch can a Layer 3 etherchannel be used if each uplink go to a different core switch, by the way hsrp is running between both switches and also can you give an example how data will be routed from the stackable switch through the ethernetchannel to one of the core switch accross the WAN to another core switch?
View 1 Replies
View Related
Apr 11, 2013
We are re-designing our wireless network and are navigating the security options.Are design will include a 5508 WLC and 3600 series APs. We plan on breaking our wireless out into four VLANS.Is 802.1x the standard for wireless authentication?What EAP flavor would you recommend for wireless? We will be supporting an environment with a variety of mobile devices (iPhone, iPad, HP tablets, Dell laptops, etc.). We will also be supporting wireless Cisco VoIP phones. Someone suggested choosing between EAP-Fast or EAP-PEAP, does this seem reasonable? Also, if we want to authenticate users using their AD account, we need to have NPS running on the AD server and use the radius protocol from client to server, is that right?
View 1 Replies
View Related
Sep 10, 2012
We are currently designing a complete Layer 3 to the edge solution for our customers. The network design is a combination of a collapsed core (Core to access) as well as a three layer model (Core/Distro/Access) for connectivity to the Data Centre, Internet and Wireless Blocks.
The core of the network contains two 6509E switches interconnected on a Layer 3 Port channel (no VSS). Access Layer switches (3750 Stacks) connect to the core switches over p2p routed links (Collapsed core part of the design). Distribution layer switches provide connectivity to the Data centre, Internet and Wireless Blocks.(three layer model.
All IP addressing is being planned for assignment from the private RFC 1918 address block(10.0.0.0/8) for both Infrastructure and Access layer VLANs for users.
Clarifications required for the following:
[code]...
View 17 Replies
View Related
Mar 29, 2011
I have a very basic networking question If I have, say, 3750's (or any L3 switch, capable of routing) at the edge and a 4500 at the core, where should I route? At the edge? At the Core? Both?
View 4 Replies
View Related
Jul 14, 2012
I cannot boot IOS, when i reload this switch it go to ROMMON. I try to uploand IOS but it still has problem. i think i may wrong some point during i did uploand.
This is problem
Switch#sh bootvar
BOOT variable = cat4500-entservicesk9-mz.150-2.SG3.bin,1;bootflash:cat4500-entservicesk9-mz.150-2.SG3.bin,1;bootflash:cat4500-entservicesk9-
[Code].....
View 2 Replies
View Related
Mar 13, 2013
My cisco 4948 switch is generating the below error,how do i troubleshoot this error.
*Mar 13 00:09:33.451: %C4K_L2MAN-6-INVALIDSOURCEADDRESSPACKET: (Suppressed 14 times)Packet received with invalid source MAC addre ss (00:00:00:00:00:00) on port Gi1/37 in vlan 1Gi1/37- to this port another 2950 switch is connected by trunk link.and to this switch end host is connected i.e.thin client
View 3 Replies
View Related
May 23, 2012
MAC Support: 16000
Backplane: 18Gbps
Forward: 28Gbps
VLAN's: 4000 (q-in-q support)
Jumbo Frame Supported
Supported 8000 static routing
!Supporting Stack!
Cisco 4948 supporting stackable? which product do you recommend to these criteria?
View 3 Replies
View Related
Sep 19, 2012
I am updating the iOS for a 4948 the bootflash is empty so all i can get into is the rommon. There is no option for x-modem. How can I put the iOS onto this device? [code]
View 2 Replies
View Related
Jun 5, 2013
We had to transport one of our 4948 10 GE to another Data Centre and when we got it there and tried to power up its System Status LED was red and we cannot even get console to the device.
We can try to see if the switch is completely dead and needs replacing or is there something we can do to get it back up and running again?
View 1 Replies
View Related
Apr 23, 2012
We purchased two new 4948 with two 10GE uplink ports and upgraded the devices to run IOS 15. My 6506 is running Sup 720 with s77233-adventerprisek0_wan-mz.122-33.SXI9. Currently we have 4948's connected to the same 6506's with no problems. Today I tried to add the new switches with new IOS and it caused of of my 6506 core switches to failover. I can't explain why because it was close to start of business and couldn't do much troubleshooting.
Currently we have four 4948 (running IOS 12.2(14) switches running Layer2 connecting dually to each of the two 6506 cores via 10GE fiber uplinks. I tried to add two more to the scenario, again running layer2 and dual-honing them to each of te 6506 switches. there are two 6506 core switches and they run HSRP and spanning tree is manually set to give priority to even vlans on one 6506 and odds on the other 6506. Also the new switches I tried to add did had rootguard applied as well as the uplinks.
We have to get this working and have no test environment to work with. We need to do this late this evening after close of business.
On another note, I have had problems upgrading some of my older 4948's to IOS 15. I followed Cisco's suggestion and upgraded the EPROM first and then the IOS upgrade took on three of the switches that were ordered rather recently. The four that were ordered in one batch will not take the upgrade even following Cisco's instruction and lots of other tricks. Nothing works. Having problems with IOS 15, in general?
View 1 Replies
View Related
Jul 25, 2012
I am planning to upgrade Cisco 4948 IOS upgrade. We have few with older code( 12.2(25)EWA7), when issue sh version shows as Catalyst 4000 L3 Switch Software. while newer version of the switch show as Catalyst 4500 L3 switch.
1 Is this/(sh ver output) just because of the Older code ?
My 2 question is according to release note : [URL]
You need to upgrade your ROMMON before the IOS . 2 What is the approximate time it take to do this ROMMON upgrade ?
View 2 Replies
View Related
Mar 8, 2013
I have 4948E module switch at customer site and below is the show version output. Image on the switch is not supporting 'AUTO QoS' as i need to enable Auto Qos on it to prioritize Voice traffic. Which image supports Auto QoS feature . Image should have L3 functionality also i mean it should support Routing protocols. I tried to enable auto QoS using by configuring "QoS' globally but no luck...with existing image.
{ URL}
ROM: 12.2(44r)SG9
Hobgoblin Revision 20, Fortooine Revision 1.22
Switch up time is 12 hours, 1 minute
System returned to ROM by reload
[ code]...
Configuration register is 0x2012
Switch#sh boot flash:
-#- --length-- -----date/time------ path
1 25793234 May 31 2011 15:20:20 cat4500e-entservicesk9-mz.122-54.SG.bin
2 25005209 Mar 08 2013 09:53:18 cat4500e-entservices-mz.122-54.SG1.bin
70033408 bytes available (58249216 bytes used)
View 1 Replies
View Related
Aug 2, 2012
I have the network described below, on which I am running PIM.
(network) ---- Embedded Linux Router --(vlan 5)-- CAT 3560G --(vlan 5)-- Cisco 1811 Router ---- Multicast Listener
The Linux Router and the 1811 have formed a PIM neighbor relationship. The multicast listener sends an IGMP Join and I can see the PIM join leave the 1811 router (via "debug ip pim"). Using tcpdump on my linux router I never see the Join come in, but I can see the PIM Hellos (which is why the neighbor relationship formed).
View 2 Replies
View Related
Jul 24, 2012
Since two weeks I have a problem with the VLANs who I started to configure. I hope together we find the way.I have 5 VLANS configured in a CISCO 3560G switch. In my windows server 2003 I configured DHCP scope for each VLAN.One of the requirement to connect vlans each other is to put the IP of each vlan as gateway in the clients.So, how can I do to access to internet?. The ip of my Firewall are in one of the VLAN´s.When the configuration of the LAN only had one DHCP scope the gateway was the ip of my firewall. But now i don´t know how to configure the DHCP server, or the firewall, or the switch, or all of them To get access to internet.
View 2 Replies
View Related
May 14, 2013
I'm trying to set up per vlan routing on a 3560G switch but it's not performing as I would expect. I've got a server on the 109 vlan with a 10.1.9.100 address and a default gateway of 10.1.9.1 this address is an HSRP gateway and currently resides on 10.1.9.7. When I traceroute through to my user PC on the internal network it receives a response from 10.1.9.7 However, it is then denied by an ACL on the internal firewall which has been applied to interface Eth0/0. It should arrive at the firewall on Eth0/2.109 as it has the 10.1.9.4 address.
My goal here is to route traffic on the 101 vlan to a seperate interface on the internal firewall from 109 vlan traffic. I'm either doing something wrong or these routing commands aren't designed to work in the way I'm expecting (I couldn't find any documentation on the ip route command where it is followed by different gateways for different vlans)
interface GigabitEthernet0/12
description Internal-FW Eth0/2
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 109
switchport mode trunk(Code )
View 1 Replies
View Related
Aug 9, 2012
I'm connecting the two devices above and I need an LC to SC fiber cable. It should be pretty simple but I've seen two different types of LC/SC cables - one is 8.3/125 and one is 62.5/125. I believe the 62.5 is an older cable type but when looking at the detail sheets for each of the SFPs I see that both of these support a 62.5 or 50 micron core size.
View 2 Replies
View Related
May 24, 2012
I would just like to confirm if it is possible to create a 2x10G etherchannel on a 4948.
View 4 Replies
View Related
Mar 28, 2012
upgrade IOS in cisco 4948 switch, I do not have admin right and network access
View 22 Replies
View Related
Aug 3, 2011
I am trying to setup the management vrf on the 4948 10GE so that my TACACS requests will use that vrf for out-of-band purposes. The vrf is working properly because I can ping the TACACS server using the vrf but the logins do not work. I see this error in the tacacs debug:
TPLUS(00000016)/0: Connect Error No route to host
Looking at the release notes, it states that my version (12.2.54 SG1) does support vrf aware tacacs but the documentation seems to be a bit off because i do not get a server private command option as stated in the configuration doc after configuring a tacacs server group:
[URL]
Here is my config:
ip vrf mgmtVrf
rd X:X
!
interface FastEthernet1
ip vrf forwarding mgmtVrf
ip address x.x.x.x
[code]....
View 7 Replies
View Related
