i have 2 no of 3560G in our core, now my requirement is to establish the redunent network like for the edge 2960G using stack or some other way ...
View 6 Replies
I have used all the ports on my 24 port 2960G and need to extend it with another 2960G. These switches do not have trunk ports so what is the best way to stack them and have all 5 vlans on both switches.Can I just use a port Channel trunk etherchannel ?
View 7 Replies View RelatedI have a 3560G connected to an ASA FW, both running layer 3 and hosting 6 or so VLANs. The switch is the default gateway for all VLANs (client request) and therefore see's all networks as connected. I used route maps to push the traffic from the switch to the FW so that it got firewalled before being delivered, but I cannot use one of the commands for failover should the FW fail (I wanted to route locally should the FW fail). If I placed all VLANs in their own vrf, NETA would not longer see NETB as a connected network and would follow the route to the FW's NETA interface. I could then inject the connected into each vrf but adjust theirf metric so that they are less preferable than the route to the FW. Should the FW route die, the next route would become active and traffic would route internally to the switch.
View 5 Replies View Relatedone of our switches (WS-C2960G-24TC-L). When I try to turn on the lanbase-routing feature using sdm prefer lanbase-routing, it gives me an error (Unknown command). I tried "sdm prefer ?", and lanbase-routing wasn't there (only qos, default and dual IPv4 & IPv6). The switch is running on image C2960-LANBASEK9-M version 12.2(50)SE5.We have another switch (WS-C2960S-24TS-L), running on image C2960S-UNIVERSALK9-M version 12.2(55)SE5, and I can enable lanbase-routing feature. If I upgrade the WS-C2960G-24TC-L to version 12.2(55)SE5, will it be able to do inter-vlan routing? Or is the switch itself totally limited to VLAN configuration only?
View 4 Replies View Relatedi have a cisco catalyst 2960g and for some reason out of the blue, some interfaces go down and then up. It started doing it after a power cycle.
View 1 Replies View RelatedI have 2960G that in rommon status.I need that the switch work in 0x2102 (regular mode).I don't have a backup to configutratuio in my PC.I do wr before the switch go to rommon (startup config).What to do in order to the switch will be in 0x2102 (regular mode) with the same configuration( before the switch go to rommon)?
View 1 Replies View RelatedI have a few 24-port Cisco 2960G Switches (model WS-C2960G-24TC-L) that I upgraded to IOS Release 15.0(1)SE2 using the web interface. I am now trying to upgrade those switches with the new release, 15.0(1)SE3, however I seem unable to do it, I have tried this on two switches so far, both have been upgraded to SE2 just a couple months ago or so, and both of them will not accept the SE3 upgrade, basically, I can select the tar file in the web browser and click "Upgrade" but when I do the status never changes from "Loading the tar file to the switch". I have tried multiple times from multiple computers using many different web browsers, including IE6 which is listed as supported. I have let it go for as long as 1.5 hours but to no avail.I also had a few idential switches here that had never been upgarded to SE2, I have had no problems loading SE3 onto them using the same method so it would seem that the tar file I have downloaded is valid.
View 5 Replies View Relatedi have a problem with a cisco cat. 4507 edge switch as when i have a login ssh session to the switch the supervisor engine restart and the redundant Sup. engine becomes the active and so on this problem mainly happen when i have multible SSH session to the switch and it happened very rarely with a single ssh login
the ios version i use is cat4500-entservicesk9-mz.122-54.SG which im using on all my edge switch and they are all working fine excpt this one
Today I'm going to be re-organzing my network, kind of and I just wanted to get a second opinon. Right now I have an ASA 5510 and a Cisco 2911 and a Cisco 2960 (and I have two more 2911s and 2960s that handles our phone network).
Router 2911 is on the edge Gi0/0 has the public IP and Gi0/1 is not used and then I have 5 individual VLANs (Gi0/1.100, 1.200, 1.300, 1.400, 1.500) VLAN 100 is our internal network 10.10.18.1/24 (router is 10.10.18.1)And the 2960 is used for swichport access, the ASA is on the side and only used as a VPN.
What I want to do is put the ASA on the edge so I can dump all the access-lists and everything then 2911 will only be used to route the traffic. Now I know I will have to reconfigure the VPN, which isn't a problem. My question is when putting the ASA on the edge do I just put the public IP on the ASA's e0/0 and then plug the 2911 into the e0/1 of the ASA and give the Gi0/0 of the 2911 the ip address of 10.10.18.1 or do I just shut it down? The reason behind this is because I would actually like to use the ASA for more than just the VPN passthrough.
I have got a catalyst cisco 2960G series switch and via this switch I want to creat serveral vlans. I am getting a dhcp IP from a router and I want to setup my own vlan networks.
I plugged in the Ethernet cable that came from the dhcp router to port 16 of the cisco switch and configured the ports 1,2 and 3 for vlan 1, 2 and 3
the dhcp router has given me this IP 192.168.10.158 defautl gateway is : 192.168.10.1
when I plug in a PC to port 1 or 2 of the cisco switch I still receiving the IP from range 192.168.10.* but not from the range that I configured for the vlan 1 or 2.
Below is my startup configuration:
no file verify auto
spanning-tree mode pvst
spanning-tree extend system-id
[code].....
I have a 2960G that I keep on the bench as a work switch. I assigned an IP address to it. The techs have had trouble imaging workstations using GHOST. Do any config changes need to be made to enable multicast to work? Everything is in VLAN1 at this point and the GHOST server is also the DHCP server.
View 1 Replies View RelatedI got problem with wake on LAN software.. The software unable to ON all pc's remotely if sitting under different vlan. Everything is ok if using the same vlan. Below are the network diagram & switch configuration.
Layer 3 switch Intervlan routing configuration
ip forward-protocol udp 7
!
interface Vlan4
description vlan Client-WOL
ip address 172.22.51.253 255.255.254.0
ip access-group Deny_HTTP_Vlan1 in
ip helper-address 172.20.1.246
[code].....
After configured all the switches with the above setting, the software still cannot wake all the pc's using LAN. Base on sniffing, i can't find UDP port usage by the software. Attached here with print screen from wireshark.
I recently changed jobs and at the new location we are primarily running Catalyst 2960G series switches with the exception of one 3750. All of the switches are setup in a cluster with the 3750 being the cluster master. My question is what is the benefit of switch clustering? The entire network seems to be a bit over engineered for the our needs and I am hoping to scale it back a bit. For example, the the network was setup with VOIP QoS when there were no plans to even use VOIP. Also what procedures would I want to follow to disable the cluster to avoid any major outages? Assuming there is no real need for a cluster.
View 1 Replies View RelatedI'm trying to decide what switch to use as a core for 500 users. I'm currently looking at either 2 x 3750X stacks or 2 x 4500s with dual SUPs and PSUs, both options will provide the number of switchports required without the need for additonal access layer swiches. Which switch option is best to go for here? All of our services will be located in our data centre which will be connected using 2 1000Mbps MPLS circuits. I wont need any advanced L3 features and we are not likley to scale over 450 users. Also is it ok to use the dual switch stacks or chassis to provide the collapsed core/access layer or is it best to have a dedicated core (using one of the above options with less switchports) and having a dedicated accesss layer using 2960Gs for example. Our structured cabling terminates in a single comms room so we wont need to distribute switches throughout the office.
View 3 Replies View Relatedi had made a software upgarde on the switch 2960G series have no any passwords, when I fished the upgrade process after rebooting the device i found it need a UserPw to access device manager. i tried to use the default PW "cisco" but it dosen't work too.. after that i tried the password recovery process to rest the PW, but noway, but now i have addition problem, when i try the cmd orders "flash_init , load_helper , dir flash" to beginning the password recovery process it shows the following:
The system has been interrupted prior to initializing theflash filesystem. The following commands will initializethe flash filesystem, and finish loading the operatingsystem software:
flash_init boot
switch: flash_initInitializing Flash...flashfs[0]: 554 files, 19 directoriesflashfs[0]: 0 orphaned files, 0 orphaned directoriesflashfs[0]: Total bytes: 32514048flashfs[0]: Bytes used: 15540224flashfs[0]: Bytes available: 16973824flashfs[0]: flashfs fsck took 10 seconds....done Initializing Flash.
switch: load_helperUnknown cmd: load_helper
switch: load_helperUnknown cmd: load_helper
switch: load_helperUnknown cmd: load_helper
[code]....
After that the problem updated
because I tried to install the IOS by Xmodem to reload the missing flash file.After finsh the TAR file loading and reboot the switch.......the LEDs of mode and Giga ports are lighted amber and not blinking, i tried many times to follow the steps to connect the switch by the emulator and consol cable by holding mode button and connecting the power cable at same time the device does not work, the switch now still not blinking, now i try to read and understand how can i remove the corrupted files and install a new IOS for this switch?What shall i do.
I am unable to configure an interface using the "ip igmp filter <profile #>" command on a 2960G running 12.2(58)SE2. The switch allows me to create a profile using the "ip igmp profile <profile #>" global configuration command. It also lets me enable filtering with the global "ip igmp filter" command (which I didn't see in the documentation). But, the command is not accepted when configuring an interface. "ip igmp ?" does not even show "filter" as a valid auto-complete when in configure interface mode, and the command is rejected if I try to enter it.
I verified the command worked on a much earlier version of IOS, so it must have broken somewhere along the line. I'm wary of moving up to 15.0(1)SE. Is that a major IOS change?
I am trying to upgrade my 2960 edge switch through tftpd...i have configured vlan 1 with IP address 172.16.10.1 and tftpd as 172.16.10.2 I am trying to ping tftpd, but I couldn't, but when I try to ping vlan 1 from tftpd, i can?
View 6 Replies View RelatedI have a Cisco 2960G switch and one of the ports was configured with srr-queue bandwidth limit 90 - I need to remove this bandwidth limiting from this interface. [code]
View 2 Replies View RelatedI have a requirement to monitor downstream data feed from a remote site and feed it to multiple destination devices for recording. The source data will be fed into a port on a Cisco 2960G switch then, using the monitor function, be forwarded to multiple interfaces. This works fine for normal Etherent II traffic. We tried a test using a device that generates IEEE 802.3 Raw packets ('type' field is used as a 'length' field) but found that while the traffic appeared to be accepted by the input port with no errors it was not forwarded to the destination ports, even when using the monitor function. I did try the 'encapsulation replicate' feature with no luck. It does not forward these packets even if I set all the ports into a common VLAN and let the switch just perform a normal switch function (non monitor).
if it is possible to get the IEEE 802.3 raw packets to pass through the switch and if it is, how to or what I need to do to make it work?
My Cisco Catalyst 2960G-24TC-L is broken.Yes,I think it's broken.
1.Always dispaly : “ !!! WARNING: The switch is not usable !!! ” “Unable to create l2trace server process, socket_open() failed”.
2.All GigabitEthernet is missing .
Switch(config)#interface ?
Async Async interface
Auto-Template Auto-Template interface
[Code].....
Our database server is connected on cisco swich 2960G gigabitEthernet 0/38.while showing the interface command the total output drops is a large value..Is there any issue with this value.I think this is one of the reason for slow access of the server.
cisco6#show interfaces gigabitEthernet 0/38
GigabitEthernet0/38 is up, line protocol is up (connected)
Hardware is Gigabit Ethernet, address is 58bc.2746.45a6 (bia 58bc.2746.45a6)
[Code].....
I need to make some changes on our network. We currently have two sites 150 miles apart we join both by way of fiber and on each side we have Cisco 3750 stack switches, configure trunking for all V lans on one port in site one then through the the long haul fiber to site two with site one using 10.1.1.30 and site two using 10.1.1.40 as their default gateway, with static routing all V lan sub nets to the other sites default gateway life is good.
My question - seeing how we have sites using the same sub net 10.1.1.x to trunk all data to each site through switches; we need to now change the network and add each site to the MPLS network, site one switch 1 IP address 10.1.1.30 going to MPLS router one with FA0/0/0 using IP 10.1.1.31, site two having switch 1 IP address 10.1.1.40 going to MPLS router one with FA0/0/0 using 10.1.1.41. I need to know will this work.
We have the same sub net in each site 10.1.1.x to the MPLS routers then the external router interface connecting each site to local switches, will this cause any problems by using the same local sub net for each site?
I have the network described below, on which I am running PIM.
(network) ---- Embedded Linux Router --(vlan 5)-- CAT 3560G --(vlan 5)-- Cisco 1811 Router ---- Multicast Listener
The Linux Router and the 1811 have formed a PIM neighbor relationship. The multicast listener sends an IGMP Join and I can see the PIM join leave the 1811 router (via "debug ip pim"). Using tcpdump on my linux router I never see the Join come in, but I can see the PIM Hellos (which is why the neighbor relationship formed).
Since two weeks I have a problem with the VLANs who I started to configure. I hope together we find the way.I have 5 VLANS configured in a CISCO 3560G switch. In my windows server 2003 I configured DHCP scope for each VLAN.One of the requirement to connect vlans each other is to put the IP of each vlan as gateway in the clients.So, how can I do to access to internet?. The ip of my Firewall are in one of the VLAN´s.When the configuration of the LAN only had one DHCP scope the gateway was the ip of my firewall. But now i don´t know how to configure the DHCP server, or the firewall, or the switch, or all of them To get access to internet.
View 2 Replies View RelatedI'm trying to set up per vlan routing on a 3560G switch but it's not performing as I would expect. I've got a server on the 109 vlan with a 10.1.9.100 address and a default gateway of 10.1.9.1 this address is an HSRP gateway and currently resides on 10.1.9.7. When I traceroute through to my user PC on the internal network it receives a response from 10.1.9.7 However, it is then denied by an ACL on the internal firewall which has been applied to interface Eth0/0. It should arrive at the firewall on Eth0/2.109 as it has the 10.1.9.4 address.
My goal here is to route traffic on the 101 vlan to a seperate interface on the internal firewall from 109 vlan traffic. I'm either doing something wrong or these routing commands aren't designed to work in the way I'm expecting (I couldn't find any documentation on the ip route command where it is followed by different gateways for different vlans)
interface GigabitEthernet0/12
description Internal-FW Eth0/2
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 109
switchport mode trunk(Code )
Multicasting. The configuration is I have a 6506 as my core switch receiving multicasts from an interface assigned to VLAN10. I have a monitor port setup with a PC running Observer which says multicasts are being received on the core switch. On a different interface on the core switch I have a 2960G switch connected to it and this interface is on VLAN 10. The 2960G switch has a workstation connected to it that needs to receive the multicasts. How do I configure the 6506 and/or the 2960G to process the multicast traffic?
View 0 Replies View RelatedWe run a network of several 2960G and 3650G switches in a network with a number of VLANs. One one particular VLAN (let's call it VLAN 10) it appears that non-broadcast traffic (i.e. normal unicast traffic) is being copied to every port in VLAN 10 only on one switch . The traffic is not crossing trunk ports and does not appear on other switches that have ports in VLAN 10. We first spotted this by noticing that a UPS port had an unusual amount of activity on our port througput graphs:
This traffic at 4 am is not expected and this profile is repeated across all ports in VLAN 10 on this switch (a WS-C2960S-48TD-L stack running IOS 15.0(1)SE3)\iffed one port using local SPAN (the UPS port) and discovered that this traffic was not broadcast, which was running at a normal low rate at all times. The traffic appeared to be unicast traffic from other ports of the sort you might see on a hub. It was from various hosts that live on VLAN 10, most (not all) of the conversations had one end station homed on the 'problem' switch. There are about 800 non-broadcast packets per hour and this is a busy VLAN so it does not account for all the traffic on the VLAN.
I am unable to access a series of switches connected together through a management vlan. I receive the message "The server xx.xx.xx.xx at level_15_access requires a username and password." Entering the username and password fails and the same username and password message returns. I am able to ssh into the switch with the username and password that fails trying to access the switch with the browser.
How can I check the username and password for access with the browser?
I am trying to monitor switch performance. Is there a good way to monitor switch performance with the command line interface?
I just got a Cisco 2960G 24-port gigabit switch so that our HP servers can have a Gigabit connection to the network. I moved 2 servers to it (HP Proliant DL380's) but they don't actually seem to be able to achieve even close to 1000Gbps. I ran same some LAN bandwidth tests and it was showing only around 200-300 Mbps between all of them. I also ran a network stress test utility, LAN Tornado, and it was showing packet loss as high as 60% when on gigabit, and only .07% when on 100Mbps.
-Both the NIC's and the switch ports are set to 1000/Full
-Currently using Cat5e cabling no more than 25Ft in length (I know Cat6 would be better but Cat5e is supposed to support Gigabit)
-All servers are on the same VLAN
Here are the port statistics when running just a stress test @ 10Mbps that had a 45% packet loss. What's odd though is when I set the servers and switches to 100Mbps, I get less than 1% packet loss.
GigabitEthernet1/0/16 is up, line protocol is up (connected)
Hardware is Gigabit Ethernet, address is 203a.07ff.7e90 (bia 203a.07ff.7e90)
MTU 9000 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
[Code].....
I have a 3560G switch with c3560-advipservicesk9-mz.122-46.SE and 2 routers. The switch has vlans defined. I want to route all traffic on vlan 25 out of one of the routers exclusively. Here is what I have attempted:
-Set the SDM template to routing & reload
-Define an access-list for the v lan traffic
-Define the route-map
-Apply the route-map to the vlan interface
When I attempt the last step I receive the following syslog error:
%PLATFORM_PBR-3-UNSUPPORTED_RMAP: Route-map RM_IMDGuest not supported for Policy-Based Routing
Also, the route-map is removed from the vlan interface after this error is thrown. Im 99% confident that PBR is supported on this switch (am I wrong?). Here is the relevant show output:...
access-list 125 permit ip 192.168.25.0 0.0.0.255 any
route-map RM_IMDGuest permit 10
match ip address 125
set ip next-hop 192.168.5.3
[code]....
I was assigned a task to connect two locations through a L2 VPN, The infrastructure which i have are...
Fortigate 80 C firewall at Location A
CISCO 3560G at Location A
CISCO 3750G at Location B
2 MBPS Leased Line connecting two locations.
T1 line at Location A.
The requirements are as follows..
Both locations should be in the same ip range (ex 10.80.71.1/24) Internet for Location B should be from Location A, both locations should talk to each other.
We have 2 catalyst 3560g-48-PoE protected by a 1000Va 800Watt tripp-lite and I was cheking to see if that is really sufficient. Looking at the charts from Cisco suppport I would think I should have more, but have not had any issues with a few power outages
View 1 Replies View Relatedi facing problem with my switch cisco 3560G, when it power on only System light is green and noting happen. i check with serial cable ( Console) but noting happen no booting.
View 2 Replies View Related
