Will there be some pause in traffic on formed ether channel interfaces (4500E switch), when i will change the default ether channel load balancing method to src-dst-port (or any other non-default method)?
View 1 Replies
We have to cisco WS-C4900M with Cisco IOS Software, Catalyst 4500 L3 Switch Software (cat4500e-IPBASE-M), Version 12.2(53)SG5, RELEASE SOFTWARE (fc1).We have four gigabit link connected between those two switches.We have create a LACP port channel with those four ports on both switches. Ether-channel is up and running and defined with a load-balancing method of src-dst-ip.But when we test the load-balancing, it's not using the src-dst-ip rule with the XOR: [code]
View 5 Replies View RelatedI have probem with symmetric load balancig, in case when both ends of ether channel are on the sam switch (we are using VLAN translation).We need to create L2 port channel with both ends on same switch (Cisco WS-C4500X-24X-ES), for example:Po1 – Gi0/1, Gi0/3 (one end of port channel )Po2 – Gi0/2, Gi0/4 (other end of port channel)On ports in Po2 we will configure VLAN mapping.My question is what is the best ether-channel load-balancing scheme with wich we can accomplish full symmetry in both directions? For example, if traffic in one direction goes through Gi0/1 (member of Po1), in other direction also must go through Gi0/1. This is required because we need to connect four appliances for DPI (they are full L2 transparent) and traffic through each appliance need to be symmetric.
I can set-up src-ip, dst-ip, src-dst-ip etc. load balancing, but, actually I need src-ip on Po1 and dst-ip on Po2. Is there any way to set up different load balancing mechanism for different ether channel on same switch (4500X).
Is it possible to use two different load balancing methods at each end of a port-channel between two switches?
We have a Cisco 6509 at one end of the port-channel and a Cisco blade switch 3020 at the other end. Right now, we are using "src-dst-ip" at both end of the port-channel. We would like to change this. That is, we would like the #3020 switch to use "src-dst-ip" while the 6509 switch should use the "src-dst-port".
Why we want to do this, the reason is that we have FWSMs on the 6509. I've read that by configuring "src-dst-port" on the 6509, one can get a better performance of traffic going through the FWSM. However, the issue is that the 3020 switch does not support "src-dst-port".
I am installing a several new Cisco VM servers. The VM hosts are losing connectivity when we apply the etherchannel config in the core stack. VMware has stated that the etherchannel load balance needs to be src-dst-ip in order for the etherchannel to work.However, my current stack has 2 etherchannels configured to other switches through out the bldg in network closets. The current load balance configuration is src-mac.My question....when I make the change to src-dst-ip, will my network connectivity go down? I saw there was an older article on this that doesnt provide an answer just a work around. Here is the article. [URL].
View 1 Replies View RelatedRight now I have 2 default routes load balancing 100MB internet links. This is on my 2 6509's.
ip route 0.0.0.0 0.0.0.0 10.47.2.1 (FWSM)
ip route 0.0.0.0 0.0.0.0 10.47.2.250 (5510)
Is there anyway to make the first default route take more of the traffic, like 60/40 or 70/30?Any program that I could use to see top users going through the FWSM?
Here's the proposed network I have to work with: LAN A >> ASA Cluster >> 2x3750G Stack >> Cross-stack L3 Etherchannel (2x100Mb Circuits) >> 2x3750G Stack >> ASA Cluster >> LAN B Company policy governs that traffic between LAN A and LAN B must now be encrypted. ASA Firewalls have been purchased in advance and will be place into the network as above. Src-dst-ip load-balancing is currently in place on the Layer-3 Eherchannel. How can I encrypt the traffic using the ASAs and still ensure proper load-balancing over the circuits? I was about to configure a IPSec/GRE Tunnel between the ASA Clusters but I'm concerned that the tunnel will not be load-balanced over the ether channel based on the single source and destination IPs I will need to configure.
View 6 Replies View RelatedI need to build a layer 2 etherchannel on a Cisco 3560X. Now the question:
¿ May I instruct the switch to inspect the outgoing ethernet packets for IP information and therefore execute Layer 3 load balancing on this portchannel regardless of the fact that this will be a plain Layer 2 etherchannel? (for example: port-channel load-balance src-dst-ip)
The documentation does not say that this is not allowed, so in principle it seems to be that it would be feasible.
We have Nexus 7K on production. 7K chasis is not load balancing with non-cisco devices with etherchannel or LACP..I have tried all load balancing algorithms but in vain. [code]
View 3 Replies View Relatedi'm going to configure a 881-k9 with:
- Ethernet 0/0 LAN (Private Address)
- Ethernet 0/1 ISP1 (Public Address 1)
- Ethernet 0/2 ISP2 (Public Address 2)
find some configuration example to:
- have load balancing over the two ISP connection, used to connect to Internet
- configure Static NAT to bind:
- TCP 443
- TCP 1723on ISP1 e ISP2 Interface to a LAN Address (SBS2008 Server)
I'm have ether channel between CISCO 6506 and CISCO 3750X. I'm set load-balance ip-src from 6506 side and dst-ip from 3750 side. i'm try test etherchannel for detect physical link for test ip. On 3750 all work, but on 6506 i'm get error: test etherchannel load-balance interface port-channel 1 ip 10.10.10.2 10.10.10.1 ^ % Invalid input detected at '^' marker.
View 1 Replies View RelatedEther channel: Cisco documents say Cisco uses proprietary hashing algorithm to compute a binary pattern that selects a link in the bundle. For example below a 2961 router with a switch module " NM-16ESW" performs" XOR" operation to compute the binary value to select a link.
R1#show ether channel load-balance Po1 ---> Source XOR Destination IP address.
1)Would you guys share the output " show ether channel load-balance" on your platforms?( i just want to see how different platform support different algorithm besides xor). Layer 3 ether channel on a sw.
On router, we first create ether channel and then assign int into port channel. Suppose we have a layer 3 switch and we want to put ports f1/1-2 in port channel 1. Can i configure like this: sw(con) int range f1/1-2 no switch port
channel-group 1 mode desirable. Or we must create a port channel just like we do on router and then assign ports to port channel?
Backbone fast: Suppose we have a switch with three ports, f1/1.f1/2.f1/3.
f1/1 ( root port)
f1/2( blocking)
f1/3 ( designated port).
Backbone fast is enabled on our network. Suppose sw receives a inferior bpdu on its current root port f1/1. Sw sends out RLQ on its designated port(f1/2) and Blocked port (f1/3). Suppose sw receives the rlq reply on its designated port ( f1/2). What will sw do? Will it expire the max-age timer on its root port ( f1/1) or will sw wait for all the rlq responses then expire the max-age timer on its root port ( f1/1) ?
I'm trying to make MGSCP solution. I have Cisco 7609 with following configuration:
Mod Ports Card Type Model
--- ----- -------------------------------------- ------------------
3 8 CEF720 8 port 10GE with DFC WS-X6708-10GE
5 5 Route Switch Processor 720 10GE (Activ RSP720-3CXL-10GE
7 24 CEF720 24 port 1000mb SFP WS-X6724-SFP
8 24 CEF720 24 port 1000mb SFP WS-X6724-SFP
9 48 CEF720 48 port 10/100/1000mb Ethernet WS-X6748-GE-TX.
I have conneccted a server with LACP on Nexus extender. I am starting different file copy from diffferent sources to this server, it does not load balance.
source addresse: 192.168.30.3 / 192.168.30.1
destination: 192.168.30.2
I have a 2821 Router, with a VWIC2-2MFT card in it, with two T1s going into that card. The two T1s are a bundled MPLS line.
I then have a cable modem connection going into the gigabit Ethernet GE 0/1 port on the router.
Right now, the cable modem provides a backup connection in case the T1s go down.
What I was wondering is if there was a way to 'combine' the bandwidth from the two T1s with the cable modem?
How to set up redundant LAN Ring topology with load balancing for a cisco catalyst 3560 platform.
View 10 Replies View RelatedI would like configure a CSS content, that uses the sorry service principal in an advanced way.
I am familiar with the primary Sorry Server command and see that the CSS would send all connections to the named service that is configured as the primary Sorry Server.
What I would like to do is to configure the CSS, so that once it’s decided it’s in a “sorry” state (all the services that are configured with “add service” are down) that it load balances to a different set of services.
To explain what I’ve been trying to do in the form of configuration on the CSS, I’ve pasted some pretend config below.
Connections come into IP address 1.1.1.1, which normally get load balanced between 9.1.1.1, 9.1.1.2 and 9.1.1.3.
If 9.1.1.1, 9.1.1.2 and 9.1.1.3 are all down, the sorry service is used and the CSS starts passing traffic to 1.1.2.1, which I want it to load balance between 9.1.2.1, 9.1.2.2 and 9.1.2.3.
The order that I have applied the config, is different to the below, as I set out to configure in this order: secondary services, secondary content, sorry service, primary services, primary content.
The order of the config below is different, because I wanted it in the order that the traffic flows and the CSS won’t take the config in that order!
The wall I have ran into, is that when I try to create the service I have named “Sorry Service”, I get the following error:
%% Service IP Address conflicts with a local I/F, VIP, mg mt route.
[Code] .....
The best option for load balancing between 2 X Cisco nexus 5548UP switches located at one site and connecting to 2 X Cisco nexus 5548UP switches located at another site.
The sites are connected via a 1GB fibre connection. I am unable to use GLBP until GLBP is supported in further software releases.
Does 3650-X IP Base support Static Load Balancing or i should upgrade to ip service SW ?
View 4 Replies View RelatedIf the load balancing is set to src-dst-ip, will a layer 2 switch forward based on that information? Particularly talking about a 6500, with trunk interfaces, since those packets never go to the layer 3 engine, will the load-balancing work as intended?
View 2 Replies View RelatedI have an inquiry about a configuration I deploy in a C2960 switch. I have configured a ether channel with 8 ports, the load balanced method is source mac address. The bundling protocol is LACP.
I have found the ether channel is not balanced as I expect. One of the eight interfaces is congested.
Code...
I have the requirement to provide a Cisco Router with 3 x ADSL lines (768k) to increase the internet speed.PPP multilink is not supported from the ISP.
Is it possbile to distribute the traffic between this three ADSL lines?How can I configure this?
I have the following hardware configuration:
1 x CISCO1921-SEC/K9
2 x EHWIC-VA-DSL-B
The third ADSL line is connected over an ADSL modem at one fixed Router Gigabit interface.
One of our customer has 3 ISP Line, out of which Two are Broadband and One is Leased Line. All 3 ISP interfaces are Etherent.
Now, they want Auto Failover with Load balancing among these 3 ISP lines.
Can we do same implementation in Cisco 1941 Router?? What licenses required in router for same?
I am trying to understand what load balancing method is used on a port channel on a Nexus switch . I have a server connected by a VPC to two Nexus switches. The nexus switches are only acting as layer 2 switches. I have a 6509 connected via a upstream link that does all of the routing for my VLANS. If have a server connected to the Nexus switches and it talks to a server on my 6509 what load balancing happens on the Nexus going across VPC 27 which is a layer 2 trunk going up to my 6509. Is it done on layer 2 or layer 3 flows?
My Nexus shows the default load balancing configurations
Port Channel Load-Balancing Configuration:System: source-dest-ip
Port Channel Load-Balancing Addresses Used Per-Protocol:Non-IP: source-dest-macIP: source-dest-ip source-dest-mac
I have a customer who wants his new ASA-5520 to load balance out-going traffic between 2 ISPs, fairly normal request. Now here's the twist. He wants to separate traffic based upon the protocol used, http to one ISP, https to the other.
View 3 Replies View RelatedWhat I am attempting to achieve is to aggregate trunk ports out of a VMware server into a single logical connection to give as much bandwidth as possible, the switches are 3750X and are three stacked together with the server connections spread across the stack. What I am not sure about is if two port channel load balance protocols can happy co-exist on the switch, by default the switch is using MAC address load balancing and Vmware wants to use IP Source load balancing. As other trunks and channels exist on the switch I don't want to make a change that will affect the other live connections if changing this is a global setting and not local on the channel.
View 2 Replies View RelatedI have a dual-homed fabric (Nexus 2248 dual attached to two Nexus 5020's via vPC). On this Nexus 2248 is a server that has a four port LACP etherchannel. The ports do not appear to be load balancing correctly. The output below shows the four ports in use and it clearly shows port e138/1/10 as getting the most use. When I use the "show port-channel load-balance forwarding-path..." command on either of the vPC switches for various source and destination IP's that use this link, it shows them correctly load-balancing across the four ports. But we do not see this when looking at stats on both the server side and the switch side.
dc5020-3g# sh int e138/1/10,e138/1/12,e138/1/14,e138/1/16 | i seconds
30 seconds input rate 552 bits/sec, 69 bytes/sec, 0 packets/sec
30 seconds output rate 130120 bits/sec, 16265 bytes/sec, 161 packets/sec
Load-Interval #2: 5 minute (300 seconds)
30 seconds input rate 40 bits/sec, 5 bytes/sec, 0 packets/sec
[code]....
**************** Config info below. This is a vPC pair and the port configs are identical on both switches so I'm only showing the configs for one switch to keep it simple.
dc5020-3g# sh port-channel load-balance
Port Channel Load-Balancing Configuration:
System: source-dest-ip
Port Channel Load-Balancing Addresses Used Per-Protocol:
Non-IP: source-dest-mac
IP: source-dest-ip source-dest-mac
[code]....
I am testing on lab equipment (2 Catalyst 3550 and 1 Catalyst 3560) HSRP version 1 and 2.I successfully created a load balancing between the two Catalyst 3550 on a couple of vlans (11 and 12) on ver 1
now, just adding the command "standby xx version 2" my hosts on the 2 vlans are completely unable to ping the virtual IP def. gw on debugging i checked that msgs are exchangedthe two cat 3550 are seeing each other on HSRP (active / standby roles)the real ip addresses are pingable rebooted the swiches (just as a last resort try)deleted arp chache on hostsremoved the auth on hsrp all of this no effect.
i also tried to modify the priority on the cat 3560 (before he was on both vlans in standby) to make it the active one and with the same config it worked flawlessly.
My only idea is that there is a bug on CATs 3550 (IOS: c3550-ipservicesk9-mz.122-55.SE4.bin) [code]
I have a MPLS cloud in our data center. I want one network coming into our core router to have a different default route than the other networks coming in. I'm getting hits on the acl but the route isn't applied and goes to the default route that is configured in the router. I have other PBR for setting local-preferences and as-paths and they are working fine.
The router is a 7206 Version 12.4(11)T3
!
ip route 0.0.0.0 0.0.0.0 1.2.3.4
!
ip access-list extended 2nd_Default_Route
[Code].....
I was contacted by a customer today who is trying to configure QoS on a 4500E with Sup7-E. They are running:
cat4500e-universalk9.SPA.03.02.00.SG.150-2.SG.bin
And the 4500 is licensed for enterprise Services. I don't have access to the switch and am looking for configuration documentation and I am not finding the necessary configuration guides.
Just received a couple of new 4500e chassis with the 2800ACV power supplies installed. I have not seen the cables they come with standard, the plug ends are considerably thicker than normal, what is the deal, do we need an electrician to come out and rewire or purcahse new powerboards?
View 2 Replies View Related client originally connects to the 4500E, moves to the 2960s and then cannot connect back to the 4500E.My design is a 4500E (configured for routing) and a 2960s. The 2960s is trunked to the 4500E, no vlan pruning.
Tried;
- shut/no shut port on the 4500E doesn't work
- no result for sh ip arp | i (clients mac) or sh mac address | i (clients mac) on the 4500E
The only way I can get the user back online is removing the 2960s, not a desirable solution as other clients are on the 2960s.
I have some cisco 4500E with sup7l-e and I want config acces port(with non-cisco ip phone), that cos and dcsp mark does not change.
View 4 Replies View Related
