Cisco Switching/Routing :: 3750G Access Layer Mac Flapping
Mar 28, 2013
Lately I have been noticing mac flap messages on some of our access layer 3750G switches. Just a little background on how this is setup.
These 3750G switches are stacked and uplinked to a distribution layer 3750E stack (2 switches) via cross stacked etherchannel. (Usually 4 links) The access layer switches are stricly layer 2 where the distribution layer 3750E is routing the VLANs at the access layer to to the core 6500 switches.
I have just about ruled out physical loops on these stacks for the reason that the Macs are flapping. I am seeing this on two different stacks now each having 3 switches in the stack at the access layer. The cross stack etherchannel is spanned across the first two switches at the access layer and connected to both switches at the distribution layer. I have checked the etherchannel status and all ports appear to be part of the etherchannel and they appear fine.
The mac addressses that are flapping are just plain old desktop machines that plug directly into the access layer. I usually see this when the mac is learned on a port such as when a machine is plugged into the network or reboots.
View 6 Replies
ADVERTISEMENT
Jan 15, 2012
Has any come across show ver memory details on 3750G-48PS as below, One of our Catalyst 3750G running software 12.2(44)SE2 shows unexpected DRAM as below:
cisco WS-C3750G-48PS (PowerPC405) processor (revision F0) with 0K/12280K bytes of memory. This would equate to around 11MB memory which does not seem right... Is it a known IOS bug?
View 1 Replies
View Related
Feb 20, 2013
We have 3 VLAN in our cisco 3750G switch. VLAN 1 10.1.0.0/24 for domain network, VLAN 2 10.2.0.0/24 for student and VLAN 3 10.3.0.0/24 for public. We have one printer 10.3.0.206 in the VLAN 3 and want to allow student server 10.2.0.253 in the VLAN 2 to access the printer. How can we configure access-list? Here is current configuration.
ip access-list extended publicaccess
permit icmp any any
permit ip any host 10.2.0.253
permit tcp any any established log
deny ip 10.3.0.0 0.0.0.255 10.1.0.0 0.0.0.255
deny ip 10.3.0.0 0.0.0.255 10.2.0.0 0.0.0.255
View 9 Replies
View Related
Jan 17, 2013
My management has tasked me to give them a high level overview of the different switching we can choose for our new building.
This is what I know so far.4 Closets, each closet has 450 ports,One MDF room that is will contain one UCS Chassis and a Nimble iSCSI SAN.
I am working on the spreadsheet and it looks like this (Not totally filled):
2960s3560x3750x45064510Approx cost (Each, 48PORT, POE+, 10G uplink, Dual PS, IP BASE)
6K7K8K45K75KMax Capacity192432432192384Backplane speed206464520520ProLeast ExpensiveStackable to 9Stackable to 9ProDual PSDual PSDual PSDual PSDual PSProLayer 3 opt
Layer 3 optDual SupsDual SupsConExpensiveExpensiveConNo Dual PSConLayer 2 OnlyCannot stack more than 4
For the MDF I would like to use 2 Nexus 5548's with FEX's, and the layer 3 daughter board. For the IDF's I was thinking of two 4010's.
View 12 Replies
View Related
Mar 18, 2012
I want to setup VLAN with the switches SG300 and SLM2024. What is the suggestion to connect these 2 switches. We have the Juniper net screen.
View 1 Replies
View Related
Feb 5, 2013
We have a Cisco 3750G Core switch which has physical connections, each configured as trunks to two HP Access switches. The client who uses these access switches would like to put a link between the two, but this would create a loop.
------- Core Switch -------
| |
| |
[Code]....
View 12 Replies
View Related
Aug 14, 2012
I've got a bunch of 3750-X switches all running IP Base and acting as a routed access layer. They run OSPF in a totally stubby area with the distribution layer (Nexus 7K) as the ABR. We also have a physically separate management network into which the fa0 management interface of the 3750-X is connected. The management network itself runs OSPF and has multiple subnets and external access.
On the 3750-X, I'd ideally like to be able to run some sort of separate OSPF process for the management network or at the very least have a static default route for management traffic pointing out the fa0 interface, but clearly not have it interfere with the main default route for data traffic coming from the N7K ABR. Normally I'd just create a management VRF, sling the fa0 interface into it and run a separate OSPF process in that VRF. The problem is you can't create VRFs in IP Base! Surely there must be a way to do this? Cisco don't really expect customers to upgrade to IP Services just to have a working OOB Management network, do they?!
View 4 Replies
View Related
Apr 9, 2012
My colleague and I have been having a discussion about using rapid spanning tree in the access layer. Most of our infrastructure has been migrated to a routed access layer with 3750s.
The idea was brought up to configure the switches with rapid PVST. On the surface, it seems like a better idea, faster convergence, in the event that spanning tree ends up being used for some reason. My colleague prefers sticking with standard PVST. His argument is that, in the event of a layer 2 loop, some consumer-level switches filter out BPDUs and if the control plane is overwhelmed, the shorter timers of rapid PVST just puts that much more of a burden on the CPU trying to regain control, whereas with standard PVST it will have around 20 seconds before it starts to engage. (It may still be overwhelmed, but the longer timer delays the additional burden.) He says he's seen this problem with rapid PVST and that his opinion is backed up by our Cisco rep. (I haven't spoken to him yet.)
In our model, it should be very rare -- pretty much never -- that we would layer 2 span another switch off of our access stack.
One suggestion I saw is to use BPDU Guard, which is a good suggestion as well.
But we have had experiences with overloading the control plane on a 3750. I believe that concern is valid. If the CPU can't service spanning tree. But I'm interested in hearing about other experiences people have had in terms of rapid spanning tree in the access layer, end users plugging in unauthorized devices and creating loops, and the effects when using rapid spanning tree vs standard spanning tree.
View 6 Replies
View Related
Mar 29, 2012
We are about to install a new network consisting of Cat 4500s with Sup7E at the Access Layer, with Nexus 7000 at the Distribution and Core layers. We have 14 floors with at least three 4500s on each floor. Within the office block where the Access Layer and Distribution Layer reside we need to support secure borderless networking using 802.1x to place users from different parts of the business into segregated networks at layer 3.All switches will have the feature sets to support MPLS/ VRF / OSPF / EIGRP / BGP etc.We quickly dismissed the idea of using VRF-Lite due to the sheer number of Vlans we would need to managage and maintain, the point to point links alone just to get one additional VRF on each floor required far too many Vlans.As a result we are now considering deploying MPLS. The obvious benefits include scalability and manageability, the fact that all switch to switch links can now be routed, instead of having to using SVIs.
View 2 Replies
View Related
Apr 15, 2013
We have 2 sites that are actually connected through a 10 Mbps cooper link.
In site A we have a 3750G- SW
in site B we have a 2960Poe SW
This link has in each end a ISP's router (allied Tele sis)
This link is working fine. Now we contracted with the ISP a new link, 30 Mbps fiber, and we need to replace de "old" one...
in this case the IPS only gave us a transceiver so we have UTP instead fiber, no routers. the 10Mbps and 30Mbps links in were hired to be layer 2 only.
Is possible to create a config in site B SW to make it work? I was searching and see this IOS command: spanning-tree link-type point-to-point. could this do the rick? Or is absolutely necessary to use a router?
P.S: Actual config of the port in use is:
Site A:
interface GigabitEthernet1/0/5
description description NEW LINK Fiber - UPLINK TO SW4
Site B:
interface GigabitEthernet0/1
description NEW - Fiber - UPLINK TO SW1
[code]...
View 3 Replies
View Related
Sep 29, 2012
I configure 3750 stack switch as core and 2960 stack switches as access layer switches.I connected my laptop to one of my core stack in VLAN 10 and I am pinging to one of my server in VLAN 1. What will be the minimum latency at the time of inter VALN routing
View 2 Replies
View Related
Feb 18, 2013
I have a 3750g connected to a "core" switch stack of 7 other 3750g's via 2 GigE ports in a trunk. This is currently in a switchport mode access port- channel so only the default vlan data is sent over. Now we have a need due to physical location of these switches, to allow vlan20 (DMZ) from this 3750g to the switch stack. I will configure a few ports on the switch stack for vlan20 and they need to be able to talk to the stand alone 3750g.To do this I will change the port channel on both endpoints to
-switchport trunk ecapsulation dot1q
-switchport mode dynamic desirable
also making the appropriate change on the interfaces belonging to this trunk.My question is, now that its a trunk port that carries multiple VLANs, how much is the bandwidth reduced on that 2gbps link?I have a very active VLAN (10) on the stand alone switch, but on the core I'm not going to be assigning VLAN 10 to any ports. So does traffic from VLAN10 even come across the trunk (wasting bandwidth) if no ports on the core side are assigned to it? I really just need vlan 1 and 20 (for now).
View 11 Replies
View Related
Sep 22, 2011
I recently upgraded my network to have two 3750x core, one interface on the cisco is connecting to a Netgear switch via a fiber converter. I am keep getting the vlan flapping error message in my log as below.
View 2 Replies
View Related
Jul 9, 2012
i have 2 cisco 7604 distrubution routers .Both routers are running 310 hsrp groups.
Sundenly there is hsrp flapping which causes high CPU.
What is the limitation of HSRP group on cisco 7604 router .Below is the show ver from the router
----------------- show version ------------------
Cisco IOS Software, c7600rsp72043_rp Software (c7600rsp72043_rp-ADVIPSERVICES-M), Version 12.2(33)SRC2, RELEASE SOFTWARE (fc2)
[Code]......
View 2 Replies
View Related
Apr 14, 2013
i have a question, i have in the logging of my switches a mac falpping problem. i have a log notification : Apr 12 19:33:13: %SW_MATM-4-MACFLAP_NOTIF: Host xxxx.f065.520c in vlan 25 is flapping between port Gi0/1 and port Fa0/35. When i look up what is connected to interface FA0/35 it is a accespoint " AIR-AP1242G-A-K9" Cisco IOS Software, C1240 Software (C1240-K9W7-M), Version 12.4(21a)JA1, RELEASE SOFTWARE (fc1)
How this is making the mac flapping ?
View 2 Replies
View Related
Jun 27, 2012
We have been receiving these notifications on one of our core.
Jun 28 12:54:01: %MAC_MOVE-SP-4-NOTIF: Host b407.f9c3.3c51 in vlan 56 is flapping between port Po5 and port Te7/2
Jun 28 12:54:01: %MAC_MOVE-SP-4-NOTIF: Host 145a.05c8.0ed3 in vlan 802 is flapping between port Te7/2 and port Po5
Jun 28 12:54:01: %MAC_MOVE-SP-4-NOTIF: Host 9463.d129.546a in vlan 56 is flapping between port Gi2/9 and port Po5
Jun 28 12:54:01: %MAC_MOVE-SP-4-NOTIF: Host 3c43.8ef3.7448 in vlan 56 is flapping between port Gi2/9 and port Po5
Jun 28 12:54:01: %MAC_MOVE-SP-4-NOTIF: Host 000e.35eb.25ae in vlan 66 is flapping between port Po5 and port Te7/2
PO5 goes to our primary wireless controller. Gi2/9 goes to a Cisco 4500 switch that also has a PO5 on it for a failover lan controller and TE7/2 is another core switch.
These mac-address all seem to point to PO 5 which is the port channel assigned to Wireless Controller interfaces.
How do I determine if this is a spanning-tree loop? No ports are err-disabled.
View 8 Replies
View Related
Jun 4, 2012
We have some legacy Cisco 6513 switches with the backbone (16-port GBIC blade) MTU set to 1500. It has a WS-X6148A-GE-TX blade as well, MTU set to 9K.
Now we have a customer sending MTU of 1546, their copper interface terminating on WS-6148A keeps flapping. Does the flapping have something to do with the backbone set to 1500? We cant set the backbone to 9K at this moment since it may be intrusive (reuire a reboot).
View 1 Replies
View Related
Feb 27, 2012
We have two switches WS-C2960S-24TS-L running in stack with running IOS c2960s-universalk9-mz.122-55.SE3.We have connected two checkpoint devices on Gi1/0/24 and Gi2/0/24 with a simple configuration:
interface range GigabitEthernet1/0/24, gi2/0/24
switchport access vlan x
switchport mode access
spanning-tree portfast
On the devices log we get the following message:
%SW_MATM-4-MACFLAP_NOTIF: Host 0000.0000.fe21 in vlan x is flapping between port Gi2/0/24 and port Gi1/0/24
The mac-address 0000.0000.fe21 is not found on any checkpoint interface. "Show mac-address int gi1/0/24 or gi2/0/24" does not show the correct mac-address of the checkpoint interface connected to the port, but instead shows 0000.0000.fe21.Is there a bug in the IOS, something wrong with the switch config or does it have something to do with the checkpoint config?
View 2 Replies
View Related
Nov 15, 2011
This is the message that I am getting from my 1941w router. I have a isakmp tunnel built with a GRE tunnel going through it.
View 15 Replies
View Related
Dec 6, 2012
Two days back my entire network was behaving in unusual ways.When is connect to core switc(4506e) through console. [code]
View 11 Replies
View Related
Mar 5, 2013
Would like to ask whats the correct snmp config so that it will send to our snmp server when a mac flapping occurs on a cisco switch specifically 4507 switches.
View 6 Replies
View Related
Aug 27, 2012
I work for a Wireless ISP and the device impacted is the back haul radio into the site. I have swapped from a 2950T to a 3550. Replaced the radio, PoE, patch lead. We have re ran the cable up the tower using shielded outdoor cable with a drain wire which has been earthed to an earthing block in the cabinet. We have other devices on the tower not experiencing the issue. We suspect cable interference however am now at a loss to diagnose further.
[Code]....
View 3 Replies
View Related
Feb 4, 2013
I have a 2960 switch and every then and now the ports are flapping, while i was on console i saw ports going down and coming up...when the ping to machine ip addresses timed out the port status on switch was still up...no errors collisions seen on sw port. Below is sh int when the port was flapping
[code]...
View 1 Replies
View Related
Mar 10, 2012
We have a pair Cisco 6509 switch in which 2 * 48 Port 1G line cards and 1 * 16 Port 10G line Card, FWSM and Sup 720 are installed.We have Cisco UCS and HP Blade servers.Cisco UCS servers are connected to Cisco 6509 switch using Fabric Interconnect, and HP Servers are directly connected to core switches.Recently the team made many changes in the network. Upgraded the IOS in Cisco 6509 switch, Configured Port profiling , MAC Pinning , HBA Cards to UCS / Nexus 1000V Infrastructure. After this change they lost the connectivity to UCS and HP Serers. Every tower is checking at their end.
The Network Team has reverted back the core switch with old IOS , but still the problem persisit.I could only see the following error log in the core switch. There are two port-channels one between core 1 and core 2. The other is between core switch and FWSM module. [code]
View 2 Replies
View Related
Jul 23, 2012
we have cisco 2960 switch which is connected to a cisco 2811 router. flapping issue between these two devices??
The following actions i have taken, but no result.. I have changed cables. have set speed to 100 and duplex full on both the interfaces but the interfaces are showing up up still not getting connectivity. same i have to auto on both sides still no result what configurations should i set to resolve this issue...?
View 10 Replies
View Related
Oct 2, 2012
I have Cisco 1811 and Cisco 2960 interconnect with each other by TRUNK link. As time pass i recieving below log on cisco 1811 router.
DTP-5-NONTRUNKPORTON: Port Fa8 has become non-trunk
LINEPROTO-5-UPDOWN: Line protocol on Interface FastEtherne t8, changed state to down
LINEPROTO-5-UPDOWN: Line protocol on Interface Vlan100, changed state to down
LINEPROTO-5-UPDOWN: Line protocol on Interface Vlan200, changed state to down
LINEPROTO-5-UPDOWN: Line protocol on Interface Vlan300, changed state to down
LINEPROTO-5-UPDOWN: Line protocol on Interface Vlan400, changed state to down
View 4 Replies
View Related
Sep 15, 2012
I recently upgraded my network to have two 3750x core, one interface on the Cisco is connecting to a Net gear switch via a fiber converter. I am keep getting the vlan flapping error message in my log as below.
003396: Sep 17 01:46:16.328: %SW_MATM-4-MACFLAP_NOTIF: Host 5c0e.8ba7.0a5c in vlan 2 is flapping between port Gi2/0/15 and port Gi2/0/13
003397: Sep 17 01:46:19.843: %SW_MATM-4-MACFLAP_NOTIF: Host 5c0e.8ba7.0a5c in vlan 2 is flapping between port Gi2/0/15 and port Gi2/0/13
003400: Sep 17 01:49:58.769: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet2/0/17, changed state to down
[Code] .....
After my research i think this is a looping issue but I'm unsure how to address it.
View 2 Replies
View Related
Jun 2, 2013
i just configured a C6K VSS with Sup2T, 15.1SY IOS software and a WS6724-SFP module with the follwing cos config:
auto qos default
table-map cos-discard-class-map
map from 0 to 0
map from 1 to 8
map from 2 to 16
[code]....
After applying the service policy to one interfac of the WS6724-SFP module the policy is deployed to all interfaces of the module. So far it should be ok but after a short time all interface of the module begin to go down an up and down and up ... flapping.
View 1 Replies
View Related
Feb 22, 2012
Stange problem which I encountered today, I have a Cisco 2960 which is connected to a netgear. The switch started showing itself in CDP and was running STP. I checked the cables physically today and noted 3 uplinks to the netgear, all port on the Cisco active and forwarding and green lights.
The Cisco was running STP, I changed it to R-PVST and the lights on the Cisco went crazy and I got the message port flapping on the switch but the switch did not block any ports (all ports on same vlan).
There after I changed it back to stp and the switch blocked the other up links apart from one.
Sure R-PVST is far superior than STP?
View 5 Replies
View Related
Aug 27, 2012
I am receiving the following error message on a Cisco 3750 switch stack. Need troubleshooting this error message.
00:03:13: %SW_MATM-4-MACFLAP_NOTIF: Host 00d0.7400.2730 in vlan 600 is flapping between port Gi2/0/3 and port Gi2/0/2
View 3 Replies
View Related
Sep 11, 2012
I have two Core 6509E SUP2T configued as VSS and has two 48 ports fiber blades. I have two 3750s, I have two gig on each 3750 port-channle to po1 and connected to both the core, one link to each core.Now, I was asked ot add two more links on each 3750 switch to make it a total of 4 gigs on each 3750s (all 4 gig ports/uplinks will be in used an dtwo links to core one an dtwo links to core 2).when i added two additional links on 3750s and bundled them to po1, I created another port channel on core and bundeled the additional two gigs on each core to accomodate for the two additional links (ports on core switches are not consequtives).
adding these two additional ports makes the 3750 switches flap between managemnet vlan and po1.now, i am not sure if I must have added the two additional links on the core to teh current port-channel or core!? I have created another port-channel on core to accomodate for this currently!?
View 26 Replies
View Related
Mar 11, 2012
I have an issue with a Cisco 3750 switch stack which is connected to two seperate upstream Cisco 3750's which are administered by an ISP. The ISP is experiencing MAC address flapping from one of my VLAN SVI's i am using to route traffic upstream
[code]...
As you can see I utilise a VLAN SVI to route traffic to the upstream 1.1.1.2 (illustration only) IP. As per the diagram of the topology attached, the ISP is receiving a MAC address flapping error confirming the SVI MAC address from my switch stack is being learnt on the trunk port connecting switch 1 and switch 2, and also the port (Gi1/0/48) directly connected to my switch stack. As these are all Layer 2 links essentially being passed upstream and then connected between the two ISP switches, we have a 3 way triangular loop formed.
If I was to remove the port channel configuration from the two ports associated with the VLAN SVI, am i right in suggesting this would still form a layer 2 loop? The two ports would still be a member of the SVI VLAN, and it is the VLAN MAC address which is being learnt by the two ISP switches on different interfaces.
View 2 Replies
View Related
Apr 30, 2012
show logging
May 1 16:00:30: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/12, changed state to down
May 1 16:00:39: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/12, changed state to up
May 1 16:17:28: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/12, changed state to down
May 1 16:17:36: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/12, changed state to up
May 1 16:25:28: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/11, changed state to down
May 1 16:25:37: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/11, changed state to up
May 1 17:19:25: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/11, changed state to down
Configuration as below:
macro name vmware
switchport trunk encapsulation dot1q
switchport mode trunk
no switchport access vlan
[code].....
Note:Both active blade switch and standby one are connecting to same aggregate switch 3750. Yet the active one, with same config as standby one, has not occurred this issue.
View 2 Replies
View Related
