Cisco Switching/Routing :: 6500 - SSH Control Process / Private Key Not Found
Nov 30, 2012
we have configured SSh on our primary and secondry core switch , SSH is working on primary Switch but we are unabme to access secondry Core switch through SSH .
Error are as under :
ov 28 09:14:15.380: SSH1: starting SSH control process
ov 28 09:14:15.380: SSH1: sent protocol version id SSH-2.0-Cisco-1.25
ov 28 09:14:15.396: SSH1: protocol version id is - SSH-2.0-PuTTY_Release_0.62
ov 28 09:14:15.396: SSH2 1: send: len 280 (includes padlen 4)
ov 28 09:14:15.400: SSH2 1: SSH2_MSG_KEXINIT sent
[code]...
View 1 Replies
ADVERTISEMENT
Mar 19, 2013
document which explians normal booting sequence in a 6500 Switch running IOS. What I am looking for is in which order the image is loaded in SUP, RP, SP etc
View 1 Replies
View Related
Apr 15, 2013
We are looking to upgrade the version of IOS on the 6500s this evening and in preparation i've dowloaded the image to sup-bootdisk. However when trying to update the boot path as follows I see the following error: [code] Why are we seeing this message when the router is not doing anything with ISSU?
View 3 Replies
View Related
Oct 24, 2012
The switch 6500-E is frequently crashing whenever the pm scp process reach 100% .I got it under the command "remote command switch show proce cpu".How to solve the problem. I opened the TAC and the engineer says to upgrade the image12.2(18) sxf.Is there any other work around that would avoid to reimage the switch and reloading.
View 1 Replies
View Related
Jan 11, 2012
We are cutting over from 6500 IOS to Nexus 7000 and have hit "Maximum ospf feature instance limit reached." as we configured up the 7 existing ospf processes - the limit is 4. These existing processes are for various vrf contexts we have. I see you can run multiple vrf contexts under one process - but how does that work in a mixed environment where the ospf neighbours are still ios 6500s? They still expect to see different ospf process id per vrf.
View 2 Replies
View Related
Jun 29, 2012
I want to know what is this process used for on a catalyst 6500 ? we have got following message in the crash file, probably due to CSCsv77354
Jun 30 16:06:47.099 UAE: %SYS-6-STACKLOW: Stack for process ACE HAPI running low, 0/6000
View 3 Replies
View Related
Apr 18, 2012
we are using Cisco 6509-E VSS mode [12.2(33)SXI] ipbase image and facing high cpu utilization. In show process cpu output it is showing some "ios-base" process consuming cpu. I attached show cpu output
View 1 Replies
View Related
Dec 5, 2012
We will be converting two 6500s to VSS. Each chassis has a Sup2T module, fwsm, 6908-10G blade, wism1 blades and two or three 6748-SFP blades. I was wondering how long the conversion process takes? If I remember correctly at the 2012 networkers lab it took maybe 10 minutes while using Sup720s. The instructor mentioned that with Sup2Ts it would convert a lot faster.
View 3 Replies
View Related
Oct 9, 2012
I have two core switches - 4506E, and i noticed there are frequent cpu spikes on both of the cores switches. As its spikes intermitendly i couldnt able to anlyze the issue. I need inputs on the following,
1) Is there any Free CPU process monitoring tools to identify which process is spiking ?
2) Troubleshooting techniques to identify the issue.
View 1 Replies
View Related
Mar 19, 2013
I'm currently working on setting up 2 ASA 5510's with redundancy/failover. I'm not an expert when it comes to the ASA's so I'm not 100% sure if I can do what I need to.I have 2 inside networks that need to remain separate, a DMZ network,and an outside network. Since each network connects via ethernet to one of the 4 ethernet ports on the ASA 5510's, all 4 ethernet ports on the ASA 5510 will be in use. If I wanted to setup one firewall as Active and the other as standby, how would I go about doing that? Do I need a direct ethernet connection between the 2 firewalls to use something such as HSRP? Or would the Standby firewall be able to tell if the Active firewall is OK since they would both be connected on each of their interfaces to the same networks?
View 1 Replies
View Related
Sep 27, 2011
I have used wireless routers in the past...but have just purchased a Cisco E2500. When attempting to set it up using the CD I am asked to assign name + password.....I do this and but the ?? is unable to find the router. This despite the fact that it is 8 ft. away and showing up with 5 bars on my networks available display. When I attempt to connect without going thru the setup it asks me for the password which is part of the setup process..
View 3 Replies
View Related
Dec 21, 2011
how can we upgrade 6500 non modular ios to normal 6500 ios?
View 5 Replies
View Related
Dec 4, 2012
I'm trying to do some basic troubleshooting on our WiSMS. Some clients on a working network are unable to connect in the afternoons, debugging the client on the wism shows this message:
*apfMsConnTask_2: Dec 05 14:23:44.018: Association request from the P2P Client Process P2P Ie and Upadte CB
It keeps repeating with the Task_X changing.What does that mean?We have two controllers in our 6500's running this software ver. 7.3.101.0
View 9 Replies
View Related
Jul 4, 2012
We are in the process of switching our infrastructure of our routing/firewalls/vpns over to cisco. We are switching our first location and one of the issues I'm struggling with is windows authentication pass-through for internally hosted web pages. Meaning, user inside our network has the 2921 as their default gateway, they try to access a web page that is hosted on the internal network but is secured with windows authentication. In the past, because they are logged into the domain internally, the website authenticates and loads. After switching to the Cisco, it asks for a password even though they are logged in.
Because its the web server that actually authenticates I'm not sure why the router isn't allowing that to happen, but I can't think of anything else that could be causing this behavior.
View 4 Replies
View Related
May 29, 2012
I have a process whick take all the CPU on two differents Stack of WS-C3750G in version 12.2.53(SE2):
XFRPALSN02R#sh proc cpu sorted CPU utilization for five seconds: 97%/3%; one minute: 95%; five minutes: 95% PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process 307 5450059 4167397 1307 86.74% 83.63% 83.35% 0 hulc nrgyz PD di XFRPALSN02R#sh proc cpu sorted CPU utilization for five seconds: 96%/3%; one minute: 96%; five minutes: 96% PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process 307 7779608 5947379 1308 86.26% 85.75% 85.30% 0 hulc nrgyz PD di
View 2 Replies
View Related
Oct 9, 2011
i try newest ios 15.1(3)S0a and 12.2(33)SRE
in both case some times i obtain lowing traffic on interface and highest cpu - to 100%
after clear cef linicard i obtain growing traffic and cpu 0%
#sh proc cpu s
CPU utilization for five seconds: 87%/83%; one minute: 91%; five minutes: 96%
PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process
7 1711512 87883 19474 4.06% 0.84% 0.89% 0 Check heaps
[Code].....
View 18 Replies
View Related
Feb 24, 2009
We are following the ISSU process for upgading a VSS 1440, using the documentation here: URL
After copying image onto both supervisors, when the command:
issu loadversion sup-bootdisk:s72033-adventerprisek9_wan-mz.122-33.SXI.bin is run we get the following error:
% CV [ bootdisk:s72033-advipservicesk9_wan-mz.122-33.SXI.bin ] must be named first in BOOT [ bootdisk:s72033-adventerprisek9_wan-mz.122-33.SXI.bin ]
The advipservice image is the one running, and the adventerprise is the one we are trying to upgrade to.
View 9 Replies
View Related
Jun 4, 2012
Our switch is very high cpu in process arp
Am debug ip arp track command the result as below
-- on this switch have interface vlan 201 ip subnet is 10.11.201.1/24
Jun 5 15:30:40.732 GMT+7: IP ARP: rcvd req src 10.11.201.217 0001.6c6b.8ab9, dst 172.27.116.73 Vlan201
Jun 5 15:30:42.150 GMT+7: IP ARP: rcvd rep src 10.11.201.217 0001.6c6b.8ab9, dst 172.27.116.4 Vlan201
Jun 5 15:30:42.150 GMT+7: IPARP_TRACK: ARP tableid(0) 10.11.201.217 Vlan201 mode(1) modified.
Jun 5 15:30:42.150 GMT+7: IP ARP: rcvd req src 10.11.201.217 0001.6c6b.8ab9, dst 172.27.116
and then am try to shutdown vlan database 201 after that the cpu process has to normal state.
How to check the root cacus?
View 1 Replies
View Related
Nov 29, 2011
I have a router 3845 with c3845-advsecurityk9-mz.124-24.T6.bin software . Frequently we are facing problem in logging to the device .Inorder to resolve we need to reboot the router . Yesterday fortunately i have got the console access for some time so i came to know that TPLUS process is consuming 99.9% percentage cpu.
View 1 Replies
View Related
Jan 2, 2012
I've been reading the documentation for the new 3750v2 switch, and I'm wondering is the IPBase license supports FULL OSPF. The product sheet notes that it supports OSPF in the IPBase license, but then further down the page it notes that for advanced routing functions (EIGRP,OSPF) you need the IPServices license. Are there any limitations to the OSPF process on a 3750v2 with the IPBase license?
View 3 Replies
View Related
Aug 30, 2010
I have a problem with cpu high.tell me if normal have this process?
CPU utilization for five seconds: 29%/0%; one minute: 29%; five minutes: 30%
PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process
29 198216576 402619350 492 15.83% 15.87% 15.68% 0 Cat4k Mgmt HiPri
30 175197296 96703435 1811 10.23% 10.10% 10.64% 0 Cat4k Mgmt LoPri
Cisco IOS Software, Catalyst 4000 L3 Switch Software (cat4000-I9S-M), Version 12.2(25)EWA14, RELEASE SOFTWARE (fc1)Technical Support: [URL] Copyright (c) 1986-2008 by Cisco Systems, Inc.Compiled Tue 20-May-08 18:49 by chendahImage text-base: 0x10000000, data-base: 0x114BE208
ROM: 12.2(31r)SG2Dagobah Revision 226, Swamp Revision 34
System returned to ROM by reloadSystem restarted at 00:36:52 UTC Sat Dec 10 2011System image file is "bootflash:cat4000-i9s-mz.122-25.EWA14.bin" cisco WS-C4506 (MPC8245) processor (revision 10) with 262144K bytes of memory.MPC8245 CPU at 266Mhz, Supervisor II+Last reset from Reload1 Virtual Ethernet interface144 FastEthernet interfaces2 Gigabit Ethernet interfaces511K bytes of non-volatile configuration memory.Configuration register is 0x2102
View 1 Replies
View Related
Feb 6, 2012
We are experiencing with high CPU input due to ARP input between 20:30 and 22:30 every day At this time we have a lot of backup operations. When I look the netflow report, I can't see anything anormal.
We are changing our backup server's NIC card from 1gig to 10Gig. The backup operation's traffic is high (approx 2Gbps level) but 6509 has to be handle this size of traffic.
We are using two 6509E in VSS mode and our image version is s72033-adventerprisek9_wan-mz.122-33.SXJ.bin
20:00
show ip arp summary
--------------
2588 IP ARP entries, with 166 of them incomplete
[Code].....
View 16 Replies
View Related
Nov 18, 2012
I'm facing high CPU utilization issue due to a ssh process on 3750 switch. What is the use of SSH proces in the switch? Can I disable it for troubleshooting?
will there be any impact if I disable it?
#sh processes cpu sorted 5min
CPU utilization for five seconds: 99%/0%; one minute: 66%; five minutes: 46%
PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process
159 1896078 589986 3213 3.96% 10.76% 14.00% 0 Hulc LED Process
165 32871 591 55619 77.42% 33.40% 8.85% 3 SSH Process
View 2 Replies
View Related
Nov 13, 2011
which process is consuming high memory with my c6509 switch.
View 17 Replies
View Related
Sep 23, 2012
I have a hub and spoke WAN that conisits of one core location with with a 6500 and nine other buildings using 4006 Catalyst that conenct back to the core via dual gig fiber. We are using EIGRP at each location as well as the core. I was tesing something at one of our buildings decided to hang a 3750 off the 4006 and enable the same eigrp process on the 3750 that is enabled on the 4006 and 6500 (EIGRP 1).
1. All the routes that the 6500 knows about are advertised out to each of the nine locations.
2. The 4006's are all advertising thier directly conencted routes to the 6500.
Onto the location I was testing at:
The 4006 where I was testing at has four vlan interfaces enabled and they are in an UP/UP state. The ip routes from the 4006's directly conencted vlan interfaces propogate to the 6500 at our core location and the 6500 sucsefully propgates these learned routes to all the other 4006's.
This past Friday I configured a 3750x with two /22 vlan interfces and one physical gi port with an IP address and also configured on Ethernet port on the 4006 with an IP address in the same network block as the 3750x gi interface (a /30 netowrk block). I saw both interfaces come up and EIGRP sucesfully established a neighbor adjecency between the 3750x and the 4006.
I noticed that the 3750 advertised out all of it's directly conencted routes to the 4006 and the 4006 advertised it's directly conencted routes to the 3750. However, the 4006 did not advertise any of the routes it had learned from the 3750x to the 6500 and nor did the 4006 advertise any of the routes it had learned from the 6500 to the 4006. My suspicion is that the "eigrp stub connected summary" statement is enabled on both the 4006 and 3750 thus prevenintg them form advertising out any routes other than thier directly conencted routes. Can any of you verify that I'm either correct or inccorect about this?
here are the eigrp statemnets from the 6500 and 4006:
6500:
router eigrp 1
redistribute static
network 10.0.0.0
network 172.16.0.0
network 172.17.0.0(code)
View 2 Replies
View Related
Feb 26, 2013
we observe that the process platform causes about 50% cpu load of our Nexus 7010.Could not find any information for what this process is responsible to find out the root cause of the high cpu load.
View 1 Replies
View Related
Jan 1, 2012
I have a Cisco 3750 with private VLANS configured.. VLAN 2 is the "primary", VLAN 3 is "isolated" and VLAN 4 is "community". This is all working correctly, however I now have the need to another VLAN called "production". I need the production VLAN to be able to reach all the private VLAN hosts (community and Isolated), and vice versa
View 2 Replies
View Related
Aug 8, 2012
Multicasting. The configuration is I have a 6506 as my core switch receiving multicasts from an interface assigned to VLAN10. I have a monitor port setup with a PC running Observer which says multicasts are being received on the core switch. On a different interface on the core switch I have a 2960G switch connected to it and this interface is on VLAN 10. The 2960G switch has a workstation connected to it that needs to receive the multicasts. How do I configure the 6506 and/or the 2960G to process the multicast traffic?
View 0 Replies
View Related
Feb 7, 2013
I have two ospf processes running on a single 3570 edge router that has a dedicated transport circuit back to our network core. We are adding an additional "transport" only circuit into a new location that is also apart of the second ospf process backbone which will connect back to our core. There will also be a 3750 for this new circuit termination. Currently we are only redistributing ospf process 2 into ospf process 1 (1 = core backbone).
#router ospf 1
#redistribute ospf 2 subnet
We have no need to have ospf process 1 redistributed into the process 2 tables. That being said, when we add an additional transport ciruit, or path back to our core backbone, will this configuration present any issues with the redistribution process and failover.
View 2 Replies
View Related
Mar 6, 2013
I am in the process of swapping out an older 24 port Cisco catalyst 3525 POE switch running IOS 12.0(5) with a 48 port POE catalyst 3560 running ios 12.2(50)The trunk port on the older switch (that currently works) is in port Gig0/1 with as basic of a trunk config as you might find.
In the newer switch I have a 1000BaseSX SFP min gbic with a SC-LC fiber cable attached (8.3/125 – 15 meter.When I make the connections, I get no lights… no connection.
View 7 Replies
View Related
Jan 15, 2013
Why I got below error message when config Private VLAN?
Error: while enabling/disabling service: private-vlan, err: Private-vlan is not allowed in F2 VDC (0x40e4005d)
View 2 Replies
View Related
Nov 2, 2010
i have major problem with two new Small Business 300 Series switches.Everytime i try to save the running config i get a GUI error message: "Another copy process is active, please try again later."It's also not possible to re-flash the firmware because the GUI stops responding.I have also tried to do this via console access and this produces a "the copy utility is occupied by another user" error message.-> so this is not a browser based problem.My first thought was that the switch (SG 300-28) is faulty so i unpacked the next new one (SF 300)and got the same error messages!Then i had a 2 hour webex support session with the Cisco Small Business Support and they did not found a reason for this behavior.Both switches are working normally, you can configure them, but after a reboot they are back to factory default again There is no possibilty for copy running config to startup config and it's also not possible to flash the firmware.(Web GUI & Console). tell me if this is a fundamental problem of the 300 Series?
View 6 Replies
View Related
Sep 5, 2012
Is this supported on a 3750X ?? A router has two VRFs and its lan interface is a trunk with 2 VLAN IDs, let say VLAN 10 and VLAN 20. The ip address subnet of these two vlans is the same (therefore , they are in different VRFs)
fa0/1
VLAN 10 = 10.15.4.9 (VRF A)
VLAN 20 = 10.15.4.10 (VRF B)
This router is connected on a 3750X switch. There is a firewall connected to this switch also, which is default gateway for several VLANs including VLAN 10 (10.15.4.1)
The goal is that VRF B ip can talk to 10.15.4.1 and VRF A can talk to 10.15.4.1 but VRF B can't talk to VRF A (10.15.4.9 <-> 10.15.4.10)
FW |--- TRUNK VLANs 1,2,3,4,10 ---------| SWITCH |----- TRUNK VLAN 10,20 -----| ROUTER (vlan 10 = VRF A, vlan 20 = VRF B)
I think this is not supported on the C3750, as my promiscuous port is located on a trunk.
View 1 Replies
View Related
