Cisco Switching/Routing :: 4500 / 3560 / 2950 - Slow Network / Broadcast
Jan 31, 2012
Our network feels slow and trying to find the best way to investigate this properly. We have Cisco chassis 4500 with mix of 3560/2950 Edge switches 1GB backbones and WLC/WCS in place. The network is broken into multiple V LANS and IOS on our switches haven't been updated in 3-4 years.
On a wireless laptop (G) with get throughput of 1-2MB/s transfer speed with usually 10 clients per AP and LAN we get anywhere between 7-15 MB/s transfer. Using wire shark on a wireless laptop we see a lot broadcast traffic from other clients and the same for LAN. What is the best way to troubleshoot performance issues on the network and where do I start?
View 1 Replies
ADVERTISEMENT
Dec 17, 2012
How do I limit broadcast/mulitcast traffic on a switchport to e.g. 5000 pps ? I don't want the port to shut down, just block or drop broadcast traffic that exceeds 5000 pps.
View 19 Replies
View Related
Apr 24, 2012
I have a question about RSPAN, is this feature only supported on 6500 and 4500 switchs?
we have 2 3560 switches and want to use RSPAN to monitor different source ports.I checked thorugh the cisco feature navigator and the IOS we have on 3560 has the RSPAN fature listed in them.
View 2 Replies
View Related
May 26, 2013
how to recover password and retrive configuration on Cisco switch 2950 and 3560.I know the way to press and hold the mode button and then plug in the power cord can reset the switch to factory default but it will reset everything to nothing. As such, it is not what I want and I want to keep the configuration file and able to use the configuration on the switch.
View 2 Replies
View Related
Dec 12, 2011
Is there a chart to show what modules will fit what swithches for fiber applications ex 2950 and 3560 switches
View 1 Replies
View Related
Jan 5, 2012
My actual Scenario
1 x 4500 and 1 x 3560?They are gateways of 8 Vlans?They are doing HSRP in each of those Vlans?The 4500 is the Active?There is a DHCP Pool for each of those Vlans on both gateways using "ip dhcp excluded-address" I ensured that the range of provided ips by each DHCP server will not be overlapped Obs.: Reducing the lease time, I ended with the calls bringing related problems.
OK, every thing is blue, every thing is fine.But the network diagram is realy complex(41 switchs, 89 uplinks), and depending of how is the network flow, one or other server answer first or latter.
For many reasons I would like that the secondary DHCP server would answer only if the primary DHCP server goes down.To me, the bigger reason is that DHCP database would be only in one DHCP server.But there is other reasons.
I passed by many frustrated solutions:Try to force a delay on the answer on one of the servers. - Impossible.Try to disable DHCP server, and, using EEM, enable it only if router became active in HSRP. - I couldn't do It.
What I'm thinking now is use the HSRP resource to resolve it.On both routers I would put a "ip helper-address" pointing to an Virtual_HSRP_IP.And depending on which router is the active, him will answer the request.
My first doubt is:Would it work?The second doubt is:Could I use the same Virtual_HSRP_IP that exists on that Vlan(see example 1),or I would need to point it to a Virtual_HSRP_IP in a different Vlan(see example 2)?
Example 1
-----------------------------------
| 4500 |
-----------------------------------
interface Vlan1
ip address 10.10.0.2 255.255.0.0
ip helper-address 10.10.0.1
standby 1 ip 10.10.0.1
[code]....
View 3 Replies
View Related
Apr 3, 2013
In the process of upgrading the image for all of our floor switches..In total there are 35 WS-3560G-PS switches.
So far I have been upgrading them all to image c3560-ipbasek9-mz.150-2.SE2.bin and that has gone well.
But this eve 2 of the switches are extremely slow on the TFTP transfer. Duplexing and links are good back to core.
But when I do a sh ver to compare one switch that is good and one that isnt I noticed this
TFTP Transfer is good on this one - cisco WS-C3560G-48PS (PowerPC405) processor (revision F0) with 122880K/8184K bytes of memory.
TFTP Transfer is slow on this one - cisco WS-C3560G-48PS (PowerPC405) processor (revision F0) with 131072K bytes of memory.
View 2 Replies
View Related
Oct 4, 2012
I am using 1841 LAN router. Recently some broadcast is happening in our network when some users are connected. I need to block them automatically by detecting who are they.
I can block them manually but i want router to detect them and block.
View 4 Replies
View Related
Apr 27, 2012
I just picked up a 24 port Catalyst 2950 to expand my home network and learn a bit more about networking. Having just upgraded the IOS software 'm now trying to get this to work as required on my network but I'm having a few issues.
My intentions are to plug my cable router/modem wan connection which is set up as the dhcp server to fa 0/1, then use fa 0/2 - 24 for the rest of my wired network. So essentially all on the same subnet interfacing with the router 192.168.0.1.
So far I have set up all of the security on the switch, and have all switch ports assigned to vlan1 with no IPs. My laptop connected to fa0/2 however is not assigned an ip address. Looking at a few posts I ahve rightly or wrongly played about with dhcp snooping.
Config
Current configuration : 2205 bytes
!
version 12.1
no service pad
service timestamps debug uptime
service timestamps log uptime
service (code)
View 3 Replies
View Related
Jan 27, 2013
I have a lab setup to take my CCNA and CCNP and I'm having issues trying to get WAN connectivity back to a switch at the end of my network. My lab environment consists of 1 - 2950 switch, 1 - 2620 and 1 - 2621XM. I have 1 Ethernet connection from each router to the switch and 1 serial connection from the 2620 to the 2621XM. I have the serial interfaces in a shutdown state right now so there is no loop since I do not have Spanning tree setup on the ports on the switch yet.
Right now using the fast ethernet ports on the routers and I have no issues its when I shut down those Ethernet ports and try using the serial interfaces when I start having issues. So my network layout is Ethernet from switch port f0/4 to port f0/0 on 2620 and serial from s0/1 on the 2620 to s0/2 on the 2621XM. My 2621XM f0/1 is whats connected to the WAN and I have no issues getting to the WAN from my 2621Xm or my 2620 but when I try pinging any website or even my WAN default gateway from my switch I get nothing!
Ive also noticed that when I do a IP NAT translation (after accessing the WAN from my 2620) on my 2621XM the source IP is of my serial connection not the ip of my 2620 router? I have my default gateway on the 2620 as the the IP of my serial interface on the 2621XM and vice versa because my LAN network is 172.16.1.0 and my WAN is 172.16.9.0. I have a /31 setup between my serial connections 172.16.11.0 (s0/1) is on the 2620 and 172.16.11.1(s0/2) is on the 2621XM. I used the SDM (ver 2.5) to setup NAT to have f0/1 with Nat outside and s0/2 as Nat inside. Encapsulation is HDLC between the serial links. Ive attached the running configs of the switch and routers.
View 2 Replies
View Related
May 14, 2012
is it possible to prevent the users with static IP's to connect the Network?We use Cisco sw 4500 series as an access and distribution switches.Is there any features on the switches that fit my request?
View 3 Replies
View Related
Jun 4, 2013
I am trying to get my workstation to talk to a workstation on a different sub-net through a Cisco 3560 switch. The switch is running the following IOS version: [code]
My primary network is 172.16.0.0 and I am trying to connect to a device on a 192.168.111.0 sub-net. [code]
What would be the best way to get the two workstations talking via the switch?
View 3 Replies
View Related
Sep 25, 2012
I need to apply DHCP snooping on 4500 series switches working as L2 in my Network. We have external DHCL Server in another location connected with 6500 series switch.
Running EIGRP Configured Voice & Data Vlan both
DHCP Server -------- 6509 switch<----------------------------------->6509 Switch -------- 4500 switch ----------------------------------------------------------Ip Phones.
(ving Redundant) (ving Redundant)
I need to know whether the configuration which I mentioned in scenario is enough for apply DHCP snooping in my network.
View 4 Replies
View Related
Sep 11, 2012
creating an Access List on my Intervlan network.how I create my network.I've managed to get the Inter-vlan working and my problem now is to restrict some vlan from accessing one another.
- I've enabled IP Routing on 3560 switch.
- All vlans can PING each other.
- All vlans can access the internet (172.16.1.2)
View 8 Replies
View Related
Oct 22, 2011
Recently we got a cisco catalyst 4500 and six 2960 access switches. I need assistance on configure spanning-tree and faster convergence on my network to avoid loop.
[code]....
View 10 Replies
View Related
Nov 21, 2012
Looking for input/thoughts on the upgrade of our 3560's and 3750's while on production network.
While we could remotely send the IOS over the network to the device, I'm concerned about errors and the lack of physical control of the device. So, the thought is to just go to the comm closet, plug in with laptop to the console port, and upgrade the IOS over the console port. But this would require xmodem, correct? I know the fastest way would be to a. configure an empty fa0/0 port to no switchport, add an IP address, and use tftp. BUT, we would have to isolate the switch from the production network while connected to it with our laptop. Otherwise, our laptop would be seen on the network as an unknown device, and there would be repercussions...
So, we console into the device, and u/l the IOS that way. Is there a way to increase the baud rate on the switch to 115200, change putty to 115200, then do the x modem? I just say we should shut all the ports to isolate the switch from the network, then tftp the IOS to the switch. Unplug, reopen the ports, then reboot the switch.
View 11 Replies
View Related
Jun 2, 2013
How many secondary network config possible???
Switch - Cat3560
IOS Ver 12.2(50)se5
View 6 Replies
View Related
Dec 1, 2011
I have a CAT 3560 connected to a ISR 2911 The 3560 has 2 subnets ( 192.168.1.0 /24 and 10.10.10.0 /24) The 2911 has interface GigabitEthernet0/1 on the 192.168.1.0 /24 and another GigabitEthernet0/0 on a WAN connection 172.16.7.246 I need to NAT both the 192.168.1.0 /24 and the 10.10.10.0 /24 to the single address 172.16.7.246 I have to use route-maps . I have IPSec VPN's and ZBF on the 2911 My problem is the NAT does not work for the 10.10.10.0 /24 network!Why?is my only option to use trunking between the 3560 and 2911 and subinterfaces on the 2911? I want to avoid sub-interfacing.
=============================================================
On the Cat 3560=====================!vlan 40name the 192.168.1.0 /24 subnet!vlan 60name the 10.10.10.0 /24 subnet!interface FastEthernet0/7description Connection to Router Gig0/1switchport access vlan 40!interface FastEthernet0/16description Connection pc host on the 10.10.10.0 /24 subnetswitchport access vlan 60!interface Vlan1no ip address!interface Vlan40ip address 192.168.1.4 255.255.255.0!interface Vlan60ip address 10.10.10.10 255.255.255.0!ip classlessip route 0.0.0.0 0.0.0.0 192.168.1.1
=========================
The host on the 10.10.10.0 /24 network has the 10.10.10.10 address as it's default gateway The host can not access the WAN thru NAT....
View 3 Replies
View Related
Feb 6, 2013
I have 5 linux and 3 Microsoft 2008 Servers, each connected to 2 Cisco 3560 Switches. The 2 Cisco 3560 switches are connected to 2 different Cisco 515e Pix. Is it possible that if i enable Port SPAN in any of the switchport and send a copy of traffic to any of the windows 2008 server, will i be able to monitor the bandwidth of the servers (Here I am only looking for traffic going from servers to PIX and then to internet, also vice versa).
Also will wireshark be able to differentiate specify the bandwidth of each servers seperately ?
View 3 Replies
View Related
Jan 21, 2013
i have 300 user in network in 2 building and firist buiding 5 flors.i use subnet /22.i have core switch 3500xl fiber and 8 swith 3560 and my network have 2 router one for adsl and other for mpls so i want upgrade it to make voip network and wireless
so if i need replace switch what i model and how many?
View 5 Replies
View Related
May 16, 2013
Since a upgrade in IOS XE 3.0.9, our ASR 1002 have a problem with the DHCPDISCOVER.
View 1 Replies
View Related
Jul 31, 2012
I have 2821 router configured with two subinterfaces. This router is connected on cisco 2960 switch. The trunk on 2960 is configured without any prunning of vlans. I noticed that udp broadcast traffic is being forwarded through my router on native vlan 1 (this interaface do not have ip address configured). Below is configuration:
Router:
interface GigabitEthernet0/0
no ip address
duplex auto
[Code]....
View 6 Replies
View Related
May 27, 2012
I'm working with some 891W's that have the internal 800-series AP. I have this router set up initially using Cisco Config Express, then, using Cisco Config Professional 2.5 I set up the firewall and other featuress that CCE doesn't do. Overall this is a very simple router, meant to be a small business Internet gateway device but is currently in my lab.
The intended WLAN setup is very simple. One SSID, with broadcast enabled, using WPA2-Personal. Auth: open Encryption is both TKIP and AES-CCM.
However no matter what I do I cannot get thhis thing to broadcast . In the past I had sometimes run into issues where if I had more than one AP running independently it would cause a channel conflict and one or both would cancel each other's radio, so I disabled all other AP's in my vicinity.
Also I've had issues in the past where f I enabled both TKIP and AES, sometimes clients can't find the AP as a result. My solution had been to disable one of them leaving just the other - no change here however.
Via the IOS, ssid config shows mbssid guest-mode which I believce is default.
Interestingly, if I do the following:
ap# Config t
ap(config)# dot11 ssid <myssid>
ap(config - ssid)#guest-mode
end
I end up with both "guest-mode" and "mbssid guest-mode" in the sh run for the AP, and voila, my AP broadcasts the SSID. However clients end up joining without any security at all, no prompts for pre-shared key or anything.
View 7 Replies
View Related
Jun 23, 2011
I have 30 branch all over the country.There we have Cisco 3825 Series router at HO, and 892/k9m 1841 and 1811 routers in BO.My branches are being connected to HO via dual link which has been linked with two ISPs,both are Layer 2 link provided by the service provider,
-ISP1 subnet: 172.19.0.0/24
-ISP2 subnet: 172.20.0.0/24
usually i have the route pointing to HO ip from each branch routers. [code] Where, there are four branches acting as the gateway for the branch router 172.20.0.13. What cause the problem,and how can I solve this issue permanently?
View 2 Replies
View Related
Feb 4, 2012
how a device (PC or router, in this example) knows to slow down broadcast of traffic.Say my cable modem from my ISP is coded to only allow 50mbps.My internal network supports the normal 100mbps.How does my router know to not send my cable modem more than 50mbps of data (because anything above, I assume after the cable modems RAM fills, will be dropped).I know TCP/IP has "Autonegotiation" which determines link type, but it's only based around if t's 1000/100/10 ethernet. No custom speed variable, such as 50mbps in this case.Say I put my network uploading data maximum stress to my internet connection, at 100mbps. Will my cable modem ever send some special packet telling me router that's too much or something?I suppose if I knew this, I could also understand how when I upload a file to another computer on my network, it does it at the full 100mbps, but over the internet, limited to my upload speed; but how does my computer or router know to slow down because my ISP doesn't allow 100mbps up? It has to be able to detect link speed somehow, otherwise just constantly sending 100mbps up will result in tons of lost data at my router/cable modem, and give the computer a frequently false sense of upload speed.
View 1 Replies
View Related
Dec 17, 2007
how to configure the ASA 5500 with "Directed Broadcast" for Wake of lan from other networksegment. we want pass traffic from 192.168.10.0 network to 192.168.100.0 DMZ Network to turn on the server with Wake on Lan.
I read something about "Static NAT" but how do i make this one?
View 3 Replies
View Related
May 8, 2013
I have a 3945 with a basic DHCP configuration applied to it. This 3945 is connected into one of the access ports of my nexus switch. I'd like to simply have the 3945 hand ip addresses out to other clients connected to the nexus switch. I have zero experience with nexus & haven't been able to turn much up through searching the net.
View 1 Replies
View Related
Jan 25, 2012
I recently bought SG-300 28P to create the VLAN. My network hs 3 subnet 192.168.1.0, 192.168.2.0 and 192.168.3.0.My main net work is 192.168.1.0. I want to divide it to VLAN to eliminate the boardcast storm; especially from the domain 192.168.3.0
But I want all the devices from 192.168.1.0 to access other subnet.
View 4 Replies
View Related
Feb 23, 2012
We have 2 switches split across 2 datacentres connected via an interconnect. Over the past couple of days the interconnect provider's Cisco kit has shut down our port (err-disabled) due to a broadcast storm. They had the level set at 1 which I thought was a bit low. They say they tried to set to 2, then 5 but still kept tripping the storm-control feature so they set at 10. They say they've always had it set at 1% (on a 100Mb switch) and so we must be generating more broadcast traffic.
I'm trying to identify where the broadcast traffic is coming from. On our Cisco 3750 I've clear interface counters and when I do a sh run | i broadcasts there are a few ports which have what seems like a high broadcast count. The one port that is especially high and the only one tripping the storm-control feature (I've enabled on all our ports to try to identify where the traffic is coming from) is the port connected to the 100Mb interconnect. I've mirrored that port to another port and connected a server with wireshark so I can capture all the traffic across that port.
What I'm struggling to find is the source of the broadcast traffic.I have a few questions are these broadcasts layer 3 or layer 2 broadcasts. Also in the output below when it says broadcasts received is this inbound to the port i.e. from the connected device or is this a total of inbound and outbound broadcasts.
When I use wireshark and filter the capture on broadcasts (ff:ff:ff:ff:ff:ff) I see only 200-300 compared to the thousands the switch is reporting.If I filter on the broadcast IP address I also don't see the numbers corresponding to what I see in the show interface output.
GigabitEthernet1/0/1 is up, line protocol is up (connected)
Hardware is Gigabit Ethernet, address is 0014.a93f.7401 (bia 0014.a93f.7401)
Description: Interconnect
MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,
reliability 255/255, txload 4/255, rxload 44/255
Encapsulation ARPA, loopback not set
[code].....
also I'm currently doing : monitor session 1 source int g1/0/1 both, and also tried just rx incase I just need to be looking at receive traffic but still nothing is standing out.
View 10 Replies
View Related
Aug 27, 2012
I have more than 20 Cisco switches in my office which is basically a soap manufacturing factory. The switches include Cisco 2950, 2960, 3560, 3750 etc. We have routers also which include 2821, 2951 etc. We also have Cisco WLC 2125 and LAP 1262 series. Sometimes all these devices management comes very tough to us.
We need to log on to different devices for troubleshooting/network management which sometimes becomes very tough to us. So I wonder if there any Cisco applications or tools by which we can centrally manage all these devices.
View 2 Replies
View Related
Mar 15, 2013
in the last days i'm encountering some issue about ping on some 2950 access layer.These ones are directly connect (fiber trunk) to 4500 core switches. Ping response is very high between 200 up to 600 ms for a period about 30-40 seconds, then returns to normal valueI tried to ping every host connected to this 2950 and ping responses are normal 1ms or less.
View 7 Replies
View Related
Nov 14, 2011
Is there away to disable the mulicasting of eigrp and hsrp to the end user ports on a 6509?
View 2 Replies
View Related
Jun 7, 2012
I have a bunch of 3750x switches that each have a 10 gig routed link back to a central 4507 (loopback = 172.30.255.255).We carved up a /24 (of course, the /24 doesn't really exist except in our address tracking spreadsheet) into a bunch of /30's for routed WAN links and /32's for loopback addresses.We started on the low end for /30 subnets (ie 172.30.255.0/30, 172.30.255.4/30, etc.).We started at the high end for the /32 loopbacks (ie 172.30.255.255/32, 172.30.255.254/32, etc.)
Well, when I try pinging 172.30.255.255 from the access layer 3750x switches, the 3750x seems to be treating it as a broadcast ping where it lists each member that responds instead of the regular !!!!! response (this makes think something is odd with the 3750x). Of course, only one member responds (the core). But even the core seems to respond with the other end of the /30 instead of the actual /32 loopback (which makes me think something is odd in the core). I could have sworn that I've setup similar topologies without problems (ie, using 10.0.0.0/32, 10.255.255.255/32, etc as loopbacks) and as long as the mask is a /32, it should work.Also, I can ping/ssh to that loopback if my laptop is on a directly connected subnet. But I can't do it from any of the 3750x switches (which are also directly connected).I've double checked for overlapping subnets, but nope. I don't see any. Routing looks fine. The actual /32 is being propagated everywhere properly.
View 3 Replies
View Related
