Cisco Switching/Routing :: 3750G Found Duplicate Mac-address Error / Not On More Than 1 Port
May 11, 2010
I've run in to this on 3750G's in a various sized stacks. We apply port security for a mac address on a single port (not existing on more than one port - that's a different issue that appears in multiple posts already).In this case:
1) We do a 'sho mac address-table and see that the device with the mac address in question lives on one port, port 1/0/x.
2) We apply mac port security for this exact same mac address to the same port it is already attached to. switch(config)#int g2/0/2 switch(config-if)#switchport port-security mac-address 001a.1ec8.abcd
3) Get this error: 'Found duplicate mac-address 001a.1ec8.abcd'.We again confirm that that is the only port on the entire switch that has this mac-address.Try the command again, same error.
4) We do a bunch of show commands, get in and out of the switch, go back and then try it again, and now it works, same command, same port and same mac address.
-Aging is default 300
-These are Cisco wireless AP's attached to the switch
-This occurs on different switches with different ports using different mac addresses, always same symptoms.
I have a stack of 3750G's where the connection between switch 1 port 1 and switch 2 port 2 are down
Stack Port Status Neighbors Switch# Port 1 Port 2 Port 1 Port 2 -------------------------------------------------------- 1 Down Ok None 3 2 Ok Down 3 None 3 Ok Ok 1 2
I have ruled out the stackwise cable as the problem but would like to know which switch has the problem
I have just moved to the 3750X switch and have connected it to a 6509E. From the beginning I was having OSPF encryption errors, followed by flood warnings, LSA issue's, duplicate IP's which is baffling me.
There are no IP's which match on either switch however the 3750X was continually power recycling causing the interfaces drop continually.Even after disconnecting from the 6509 the 3750X continue to behave in the same manner. Could there be some issue with this switch?
I have two 2960's in this new environment that I am administering. I am receiving a message on one unit (Designate it 2960-2) of %IP-4-DUPADDR: Duplicate address 192.168.168.8 on Vlan1, sourced by 3037.a63e.540. The "sourced by" address is the 2960-1. I do not know how these units were originally set up. How can I determine where the duplicate address is originating from.When I perform an ARP -a the address that corresponds to the 192.168.168.8 is the mac address of the ethersvi interface on the 2960-1. I
Recently I had came across 1 issue where one of the server IP had conflicted with VIP of Nexus core switch. The blade server was physically connected to Nexus Distribution switch which in turn connects to Nexus core. Neither Nexus core nor distribution had generate any logs in regards to IP conflict which ideally happens on Cisco catalyst switches. I haven't find any document on cisco as well as on internet for this issue . I dont know what logging need to enable on Nexus for this specific case . There are different logging levels define for every feature like hsrp, ip,monitor etc...
We have Nexus 7k with latest release 4.2(6) Software BIOS: version 3.22.0 kickstart: version 4.2(6) system: version 4.2(6)
I have a 3750g connected to a "core" switch stack of 7 other 3750g's via 2 GigE ports in a trunk. This is currently in a switchport mode access port- channel so only the default vlan data is sent over. Now we have a need due to physical location of these switches, to allow vlan20 (DMZ) from this 3750g to the switch stack. I will configure a few ports on the switch stack for vlan20 and they need to be able to talk to the stand alone 3750g.To do this I will change the port channel on both endpoints to
-switchport trunk ecapsulation dot1q
-switchport mode dynamic desirable
also making the appropriate change on the interfaces belonging to this trunk.My question is, now that its a trunk port that carries multiple VLANs, how much is the bandwidth reduced on that 2gbps link?I have a very active VLAN (10) on the stand alone switch, but on the core I'm not going to be assigning VLAN 10 to any ports. So does traffic from VLAN10 even come across the trunk (wasting bandwidth) if no ports on the core side are assigned to it? I really just need vlan 1 and 20 (for now).
I have some question about HSRP in 3750 switch. I have two Cisco 3750 switch which configured HSRP. Let say, we have interface vlan 100 that join in HSRP group member 1. The configuration on both switch is like as follows :
I have created 5 new 2 Gig port channels on a 6513 WS-X6516A-GBIC blade connecting to 5 4510R+E switches. 3 of the 5 Port-channels show up/up. 2 show down/down. However, for the 2 showing down, a duplicate Po interface was created with an "A" appended to the name that shows up/up. E.g:
Port-channel26 unassigned YES unset down down Port-channel26A unassigned YES unset up up
Each of the 4510s has a second 2Gig PO to another 6513 with an identical config and all of those come up fine.
If I monitor a trunkport on the rootbridge in both directions I get Duplicate Multicast Packets on the perticular VLAN. The first guess is, that this is worked as designed and not a IOS Bug (Platform CAT6500 SUP720 IOS 12.2(33)SXI9 ) Until know I only found an old Cisco press link from 2002 with this subject.
on IOS versions higher than 12.2(50) on Cisco 3560G-48TS I get this error/traceback, when I reach a certain number of Access-lists group'ed to "interface vlan", and the ACL inserted in the TCAM reaches acl label #128 (can be seen with : Show platform acl label 128)I can see errors in the TCAM if I issue the command
I want to load balance between two webservers using ACE10 working in bridging mode, but when putting the VIP in the url i'm getting page not found, tried many configurations but didn't work, here is the latest one
logging enable logging buffered 7 access-list ALL line 8 extended permit ip any any
For the past week I've had a problem browsing the internet. Now, at first, this only happened starting at around 3 am central time and ending at about 6 am when I could browse the internet properly. As the days went forth, however, it began happening earlier at around 12 am. What would happen is this: would be on the internet browsing sites and whatnot. All of a sudden (As I'm loading a new page) I would get the "Address not found" error as if I'm not connected to the internet. I could try to reload any other page on my session,but sometimes it would halfway load (ei:not loading pictures, ect.) and other times I would get Address not found. This would go for about a 4 hour time period. After that, everything would be back to normal and I could go back on my session.
Now, I'm on my laptop via a router that is in my house. We also have a desktop computer, but I noticed this problem happening on my laptop first. When it first happened, it was only on my laptop. I had internet connection and could browse it endlessly on my desktop. As the days went on, however, my desktop started having the same problem connecting to the internet (I still noticed the problem on my laptop first and then I would go see if the desktop had it too).When this first happened, I was thinking my laptop wasn't connecting to my router. Instinctively, I reset the router to no avail. I also opened up IE (I don't use it much because it's just too slow) and tried to diagnose the problem using that. When I did this, it was giving me DNS as the problem of me not connecting to the internet. I am not a network admin so I don't know that much about DNS. I also used IE to diagnose the problem on the following days, but after the first time it only gave me a "You aren't connected to the internet" solution. Since then, I've been running a barrage of anti virus, rootkit, ect. just because I can and I haven't done it in a long time. I didn't find anything unusual in all the reports so I'm still not sure what the problem is.
I have a 48-port 3750G switch (model # WS-C3750G-48TS-S). How do I determine which ports are grouped per ASIC on the 3750G switch? For example, is the grouping ports 1-8 is serviced by ASIC 1, ports 9-16 is serviced by ASIC 2, ports 17-24 is serviced by ASIC 3, etc. If it exists, what is the IOS command to show the mapping of ports to ASIC?
I am trying to run TDR tests on a 3750G (ver12.2). The switch ports have 3502 series access points attached to them. When ever I run the test the results all show "Not Completed". I understand that this means the test failed but this happens with any port I try.
Has any come across show ver memory details on 3750G-48PS as below, One of our Catalyst 3750G running software 12.2(44)SE2 shows unexpected DRAM as below:
cisco WS-C3750G-48PS (PowerPC405) processor (revision F0) with 0K/12280K bytes of memory. This would equate to around 11MB memory which does not seem right... Is it a known IOS bug?
I am trying to configure a 3750G that has been sitting on the shelf for several months and am getting the following error -
% Error: Unable to create flash:/microcode_update% Error: It must not already exist
Normally, getting an error during POST isnt a good thing. My first thought was that flash was corrupted or flagged RO somehow. I did fsck flash: with no change. I next tried fsck /test flash:. It tested 77 blocks and performed 0 erasures. It had been running for about 15 minutes with no problems reported so far. Multiple reboots of the switch still report the same error.
I have reviewed the history of what I have done on this switch and finally think I found the problem. I noticed a microcode_update directory that I am not used to see on a 3750. Deleted the directory using the rmdir command and rebooted the switch. On reboot, I noticed that a front_end/ directory was listed as being created as well as fe_type_1 and fe_type_2 were created. The switch now boots up without any errors.
I am receiving this error after connecting a copper adapter on a GBIC blade in a 6509. Here are the results from the show Interface. I am waiting to confirm the device on the other side settings but as far as I see I get UP and Up for protocol and line respectively.
GigabitEthernet2/11 is up, line protocol is up (connected) Hardware is C6k 1000Mb 802.3, address is 0009.11e4.f3ce (bia 0009.11e4.f3ce) Description: RCPBSDEV MTU 1500 bytes, BW 1000000 Kbit, DLY 10 usec, reliability 255/255, txload 1/255, rxload 1/255 Encapsulation ARPA, loopback not set
I've got a pair of N7010's in a vPC domain with some FEX's attach running NX-OS 6.0.2. I am experiencing port failures on my N7K-M132XP-12L module the port got shut down due to internal errors with Error Disabled status and I am not able to bring the port back up. I am getting the following errors when I try to reset it. I am hoping is not hardware related as my vPC peer-link is on this module and I only have a single N7K-M1 32 XP-12L in each N7010. Replacing the module will be painful. [code]
We have a number of 3750 stacks used as access layer switches connecting Siemens VOIP phones and then a PC that connects to the phone.
For example if I plug PC A to the phone that connects to port 13 I pick up an IP addressand all works as predicted now if I plug in PC A to any other VOIP phone that connect to another port on the same switch it goes in error disable state ITs like the switch is holding my PC mac address and locks it down with the port which in my case is Gi2/0/13.
a Customer ask me to configure a etherchannel between two Switches C3500 XL Version IOS 12.0 follow the first configuration what I done and the output error show me by switch:
I've Nexus 7010 switch installed in my DC. I've conncected Cisco router to one of the Ports. On the same port I'm getting following error message and hence, unable to form EIGRP neighborship.
DR-CORE-SW-S01-NEXUS7K %MODULE-2-MOD_SOMEPORTS_FAILED: Module 1 (serial: JAF*******NGK) reported failure on ports 1/2-1/2 (Ethernet) due to R2D2 : Speed patch failed - no frames transmitted in device 143 (error 0xc8f0 1273)
I have a duplicate router ID problem that is confusing to me. A 6509 and 4510 swich both show the same router ID, but only the 6500 has the router ID IP address configured in it. We are running EIGPR. The 6509 has L0 as 164.72.239.1 configured, which is it's router ID. The 4510 doesn't have 164.72.239.1 configured on it, yet that's what it's router ID is. Below are a few show commands displaying this - and as you can see from the 'show run | include 239' from the 4510 there is no 164.72.239.1 configured on it:
6509 chassis
interface Loopback0ip address 164.72.239.1 255.255.255.255end RS6509-Core-A#sh ip eigrp topIP-EIGRP Topology Table for AS(1)/ID(164.72.239.1) Codes: P - Passive, A - Active, U - Update, Q - Query, R - Reply, r - reply Status, s -
[Code].....
why the 4510 has that router ID?
I know I can configure a different router ID on the 4510, but I'm curious as to why it is the way it is.
I am looking to simply monitor Port-Security , Error-Disable and HSRP. I would like to receive an email when any of these are triggered.
Port Security - Port Is shut down Err-Disable - Port goes into err-disable state (securedown) HSRP - When HSRP standyby changes are detected
I need to receive emails with any of the able are triggered. What is the easiest way to do this? I know SNMP is the main option but I have never worked with SNMP and dont understand it too much.
In NX-OS release 4.2(8) a feature was introduced to supress duplicate IP address warning messages in DCI environments.When using the same HSRP addresses in both DCs but blocking the HSRP exchange, ARP still detects these duplicate configuration and writes log messages. There obviously is a feature to suppress this but I do not find any reference how to enable it.url...
There 's a Cisco IP phone that sits between a PC and the switch port. On the switch port, no MAC address is learned. However, the switch is able to detect the IP phone and deliver power to it: [code] Switch is Catalyst 3750 with IOS version 12.2(58)SE1.
I am having an issue where MAC addresses from my user PC's are registering on different ports than the ones they are plugged in to. I have my PC's plugged in to my Cisco phones (most of which are 7941's), and then patched back to my switch, (4507 or 4006). The issue is that a user will be working fine, they will have both their PC and Phone MAC's registered on the correct prot and then with out intervention the PC MAC addresses will register itself with another physical port and the user will pull a 169.x.x.x address and have not access to the network. This is happening to multiple users all of which are hardwired. Port security is configured to allow 3 MAC's, obviously if I change that to 2 it will not allow an incorrect MAC's to register with that port, but I would like to know why this is happening. Both the 4507 and 4006 have been up for 1 year and 33 weeks. The fix has been to find out where their MAC has registered it self, unplugg that PC from the phone, and let the port security aging time (2min) clear all MAC's from the port.
I am configuring a Cat 2960 port for connecting a VOIP phone, authenticated by MAB. On connecting the phone, I get the port authenticated and assigned to the correct VLAN, with LLDP-MED advertising the correct voice vlan. However, I then see no traffic from the phone on the switch. I can see the MAC address of the phone is learned in the right VLANs, but the mac address is showing as "Drop", which normally means the address is statically configured to be blocked. There is no static mac address table blocking configured on the switch.
Switch Version Switch Ports Model SW Version SW Image ------ ----- ----- ---------- ---------- * 1 50 WS-C2960-48TC-L 15.0(1)SE3 C2960-LANBASEK9-M Port configuration interface FastEthernet0/1 description "Standard user port"
Problem is that at some C65K I have directly connected Unix servers and the don't show MAC address at port, and same has happened at 3560 switched where I have too Unix based equipments connected. When use show mac-address interface XXXX, nothis appears at port and tested them with other equipments that worked fine.
I have two Cisco 4506's running cat4500-ipbase-mz.122-50.SG3.bin. Periodically, when attaching a new workstation to these switches the Mac Address of the device disappears off the port when the device is connected or the port is configured. The only way to correct the issue is to do a hardware reset on the blade or reboot the switch. After resetting the blade or rebooting the switch the devices will start showing up on the port and connect. This does not effect devices that are already connected to the switch, just newly added devices
Both switches are populated with WS-X4148-RJ45, WS-X4148-RJ45V and WS-X4248-RJ45V blades. It doesn't matter which blade the new device is being connected to. I believe that this may be a "Bug" but have been unable to locate one.
