We have many remote offices that we want to add public wifi and a couple of other services that would be completely outside of our internal network. Each office has a 3750 with plenty of open ports. How can I safely create a vlan for public access on these switches which currently have our internal network on. I have read that people are doing this to save on the cost of purchasing a dedicated switch. Some people are using access lists and one person mentioned creating a private vlan for the public network. I looked up private vlan and it seemed bit confusing.
Does the 4500 support VSS (Virtual Switching System) ? On the official product overview page it says: 1.6 Terabits capacity with Virtual Switching System (hardware-ready)What means Hardware ready ? Does it mean that it supports VSS in the same manner as the 6500 ? The reason I'm asking this question is that I didn't find any info on the Internet about this. We would like to upgrade our network by interconnecting the 2 sites with Layer 2 redundant links (Layer 2 extension), but I'd like to use the both links in a load-balancing manner, which can be a real pain in the *** with STP. The choice is between 4500 and 3750 stackable core switches. The 6500s are very expensive.
How to know 4500 SUP7-E's MIB ?Our customer use MS SCOM 2012 SP1 get the OID are 1.3.6.1.4.1.9.1.1286, but we use IOS MIB locator, we can not find this MIB id.
below are the IOS sh version information :
Cisco IOS Software, IOS-XE Software, Catalyst 4500 L3 Switch Software (cat4500e-UNIVERSAL-M), Version 03.02.00.SG RELEASE SOFTWARE (fc4) Technical Support: [URL] Copyright (c) 1986-2011 by Cisco Systems, Inc. Compiled Tue 26-Apr-11 18:09 by prod_rel_team
What is the correct way to lic VSS on a 4500 SUP7L-E ? url... Under Table 5 - Support by Image Type; VSS is listed as available on IP Base (SUP7E only) and a plain Yes under Enterprise Services, inferring that you need Enterprise Services lic on SUP7L-E to get VSS? url...Under Table 1 - Minimum License for VSS; IP Base or higher (7-E) or special license (7-LE and Catalyst 4500-X)Can find no option on CCO / configuration tools to list a 'special' VSS license for 4500R+E chasiss with dual SUP7L-E and IP Base.How are you meant to purchase/license VSS on 4500E Chassis + SUP7L-E ?
My 4500 core always in 60 % cpu utility , and when i run #sh proc cpu sorted i find that 55 29725041543795572214 0 39.43% 41.40% 41.39% 0 Cat4k Mgmt LoPri
Which mean that this process is the top one , and when i run #sh platform health i found that Stub-JobEventSchedul 10.00 15.98 10 64 100 500 20 17 12 29269:55 K2 CpuMan Review 30.00 35.60 30 48 100 500 49 46 32 52390:52
Those two process are the top and they already exceed their maximum rang and when i run #sh platform cpu packet statistics i can find that Packets Received by Packet Queue
How i can configure the SFP Ports on my 4500 SERIES CHASSIS with other SFP ports on the connecting switch. I want to connect 15 switches via GLC=SX=MM to my 4506E sfp card.
I am getting a very strange problem where 4500 switch is remarking the packet with dscp 1 to 0.
Let me explaint the setup. I have two PCs connected on same switch but on different modules. PC1 is conencted to Gi4/19 and PC2 is connected to Gi2/43. Both the ports has been configured to trust the dscp. Below are the configuration:
I am trying to setup the WOL for our enterprise. We have a C4500 setup with mutliple Vlans. We are using Microsoft SCCM server to wake up workstations for security update. The workstations are on vlan190 and the Microsoft server is on vlan 441
Here's my config
the config below
interface Vlan190ip directed-broadcast 100 (Enables the translation of a directed broadcast to physical broadcasts) access-list 100 remark ====== Wake-On-LAN ======no access-list 100 permit udp host 10.4.40.98 any eq 9 logaccess-list 100 remark ====== End of ACL 100 ======
We have 3 layer LAN architecture, layer 1 of 6500(IP routing), layer 2 of 4500(L2 switch only), layer 3 of 2960(L2 Switch)In a Single (2960 and 4500) Switch Port Avaya IP phone and PC are connected.Now, the requirement is that, Qos need to be configured for Voice traffic and Data traffic should be in default class of service.We plan to use COS value in Switch 4500 and 2960. We made a sample configuration as below
### For 4500 Switch class-map match-all VOIP-Access-2MB match cos 3 5 class-map match-all VOIP-Uplink-20MB match cos 3 5
[code].....
check these configurations are correct as per standard and if there is any other method of configuration?What need to be configured in L3 Switch(6500)??In 2960, it doesn't support ingress QoS, what impact it will make when compare to 4500? do users experiance any difference?
read the posts regarding vlans that are administratively down, they suggested that they are down if no ports are assigned to them, however I do have a switchport assigned, and the interface is still down. This is on the vtp server and on the clients. The vlan is not listed when issuing show vlan brief. Other vlans configured in a similar way do show and their interfaces are up. These are two Catalyst 4948-10G.Cisco IOS Software, Catalyst 4500 L3 Switch Software (cat4500-IPBASEK9-M), Version 12.2(53)SG5, RELEASE SOFTWARE (fc1).
I have installed a WS-X4448-GB-RJ45 on a 4503 chasis. I could not get input or output rate, just shows 0 bit/seg wether or not is forwarding traffic. I would like to know if I have to make any configuration or workaround. The IOS version is 12.2(37)SG1.
When I connect two 4500-x switches in a VSS setup, do I need to have both 4500-x switches equiped with Enterprise Services, or can I mix IP Base with Enterprise Services in one VSS setup in order to save on licensing costs?
I have a Cisco 4500 Sup 6 engine and I have two 48 port fiber line cards installed. When I do a show interfaces I do not see any of the Fiber cards. This is a new out of the box 4500 and I installed the Sup 6 Line card in Slot #1, And the two 48 port Fiber cards in Slots 2 and 3. Am I missing something, is there a command or set up procidure for the line cards. I just assumed they were plug and play
I have a 4510R-E chassis which currently has a single supervisor 5 installed.
We are now looking at upgrading the supervisor to a Sup6. Now the question is this, can I install the Sup6 into the redundant cpu slot and then perform a failover to get the new switch working without any noticable downtime.
I'm not sure what having a Sup V and a Sup 6 in at the same time will do to the backplane.
Otherwise I have to take the switch down and then install the card and software manually.
I am about to configure 4 Gig ports for EtherChannel. I've been reading about EtherChannel and it seems easy enough to configure. I have a host (server)which I am going to connect to these 4 - gig ports. This is new for me and would like some feedback for those that have used EtherChannel on their layer 2 switches. The gig ports will be an access port with VLAN XX.
We are preparing to install a new switching Infrastructure at one of our sites. We have decided that we want to have two separate chassis as a core. My original idea was to purchase 2 - 4500 chassis and install 10Gb and 1GB line cards in each and use STP and HSRP to load balance between the two cores.
We had also contacted a vendor for thier recommendations and they came back with 2 6500 Chassis running VSS. I reviewed what VSS was as I had never heard of it and it looks to me basically to be real close to the same thing as Stacking. I didn't really want to have stacked Cores because I would like to have the flexibility to be able to take one core out and update the software or image, reboot, and such without effecting anything on the network. I can do that with the non-VSS approach but it looks like that would be more of a problem with VSS.
My question is, how to use VSS with the 6500's? How to take one of the VSS pairs off line and not effect normal network operations?
I have an in production x2 4500's which I would like to add a new vlan and IP address to.
Sample config...
interface Vlan65 ip address 10.100.6.2 255.255.255.248 no ip redirects no ip unreachables no ip proxy-arp standby 65 ip 10.100.6.1 standby 65 timers 1 3 standby 65 preempt delay minimum 120
We have Three locations (A,B,C) across campus. Location A is Main Location, While B & C are remote locations. Distance among all locations approx. 2 miles.
I want 10G Fiber among these three locations. I am taking 4510+E with SUP 7E with Redundant SUP & 10G Fiber line card(X2 10G) at Location A.At Location B & C, i need Max. 2 Nos. of 10G uplink. i am taking 4507r+E with redundant SUP 7LE. Can i terminate 10G Fiber UPLINK from Location A in to Redundant SUP 7L-E(10G SFP+) at location B & C ??
At one time, Primary SUP 10G uplink should be active & Redundant SUP 10G uplink should be standby. When primary SUP fail, redundant SUP 10G uplink will be active. Is that Possible with this scenario?Is that possible that at same time, 10G Uplink on both SUP 7L-E be Active?
I'm looking to implement a vlan filter to keep unnecessary stuff off my access-layer. Things like IPv6, IPX etc. I really only want IPv4, ARP and 802.1q on these 4500s. I know on 3750, 3560s etc, when I create the mac access-list, I can do it by ethertype, but on the 4500, I dont have that option.
I have the attached setup. now i would like to limit my ftp transfer to 10 mb from a specific vlan to ftp server on the STM-4 (622) link. what would be the best way to limit ftp traffic to 10 mb .
Cisco IOS-XE software, Copyright (c) 2005-2010 by cisco Systems, Inc.All rights reserved. Certain components of Cisco IOS-XE software arelicensed under the GNU General Public License ("GPL") Version 2.0. Thesoftware code licensed under GPL Version 2.0 is free software that comeswith ABSOLUTELY NO WARRANTY. You can redistribute and/or modify suchGPL code under the terms of GPL Version 2.0. For more details, see thedocumentation or "License Notice" file accompanying the IOS-XE software,or the applicable URL provided on the flyer accompanying the IOS-XEsoftware.
We have been receiving these notifications on one of our core.
Jun 28 12:54:01: %MAC_MOVE-SP-4-NOTIF: Host b407.f9c3.3c51 in vlan 56 is flapping between port Po5 and port Te7/2 Jun 28 12:54:01: %MAC_MOVE-SP-4-NOTIF: Host 145a.05c8.0ed3 in vlan 802 is flapping between port Te7/2 and port Po5 Jun 28 12:54:01: %MAC_MOVE-SP-4-NOTIF: Host 9463.d129.546a in vlan 56 is flapping between port Gi2/9 and port Po5 Jun 28 12:54:01: %MAC_MOVE-SP-4-NOTIF: Host 3c43.8ef3.7448 in vlan 56 is flapping between port Gi2/9 and port Po5 Jun 28 12:54:01: %MAC_MOVE-SP-4-NOTIF: Host 000e.35eb.25ae in vlan 66 is flapping between port Po5 and port Te7/2
PO5 goes to our primary wireless controller. Gi2/9 goes to a Cisco 4500 switch that also has a PO5 on it for a failover lan controller and TE7/2 is another core switch.
These mac-address all seem to point to PO 5 which is the port channel assigned to Wireless Controller interfaces.
How do I determine if this is a spanning-tree loop? No ports are err-disabled.
I'm having a trouble with a 4510R+E switch. The WS-X45-SUP7-E supervisors are constantly rebooting, and we can see a 'critical software exception reload' reason. We have checked the logs
______ uptime is 5 weeks, 1 day, 19 hours, 3 minutes Uptime for this control processor is 37 minutes System returned to ROM by reload
[Code]....
What can we do to solve this incident?. Everything was working fine, and suddently the problem arose.
I am trying to understand the implicit limit to the priority queue. I know you can define an explicit policer but if you don't I can't find out what the rate limit really is.
I want to upgrade to the latest IOS for a client of mine. My client has the following image: cat4000-i5k91s-mz.122-25.EWA14.bin
His hardware specifications are as following:
cisco WS-C4510R (MPC8245) processor (revision 4) with 524288K bytes of memory. Processor board ID FOX102203CC MPC8245 CPU at 400Mhz, Supervisor V Last reset from Reload 5 Virtual Ethernet interfaces 152 Gigabit Ethernet interfaces [Code]...
I am planning to upgrade Cisco 4948 IOS upgrade. We have few with older code( 12.2(25)EWA7), when issue sh version shows as Catalyst 4000 L3 Switch Software. while newer version of the switch show as Catalyst 4500 L3 switch.
1 Is this/(sh ver output) just because of the Older code ? My 2 question is according to release note : [URL]
You need to upgrade your ROMMON before the IOS . 2 What is the approximate time it take to do this ROMMON upgrade ?
I have setup a 4500 series core/router.. the customer decided to run dhcp off the router for whatever reason... I have 20 different scopes handing out to their vlans. Does each vlan interface need an helper address?
vlan 1 on router is 10.85.0.1 i used the ip dhcp-server command pointed to 10.85.0.1 and then for ex. int vlan 20 ip add 10.85.20.1 255.255.248.0 ip helper-address 10.85.0.1
i am now getting a loopback error on the router, and i believe this is the cause...
We recently perchaced 4503 switch with Sub Engine 7L. It has universal IOS. We are unable to run EIGRP and HSRP protocol and the switch came with temporal license.how to proceed further to get EIGRP and HSRP enabled on the 4503 switch.