Cisco Switching/Routing :: ASIC Chip Failing In Cat3750?
Jun 5, 2012
I've just noticed an error I've never seen before in our switch logs. We have a stack of 6 Cat3750G-48TS-E switches. The first two in the stack have been up for just over a year and I've only just noticed this error. Thus far, I haven't noticed any symptoms - I just stumbled upon this error while checking for something else.
As far as I can tell, this has only popped up once and it was 2 days ago. Unfortunately, due to an incorrect firewall rule, our syslogs were not getting to our syslog server so I don't have any historical logs to check against, but it hasn't happened since.
The error I've seen is as follows:-
Jun 5 17:04:03.288: * ManagementInterfaceInitialized exception in port-asic 0 (N16FujitsuSwitch.com.au-2)
Jun 5 17:04:03.288: ***********************************************************
I have a 48-port 3750G switch (model # WS-C3750G-48TS-S). How do I determine which ports are grouped per ASIC on the 3750G switch? For example, is the grouping ports 1-8 is serviced by ASIC 1, ports 9-16 is serviced by ASIC 2, ports 17-24 is serviced by ASIC 3, etc. If it exists, what is the IOS command to show the mapping of ports to ASIC?
I know that an ELAM can be setup on a 6500 running ipservices 12.2(33)SXJ, however I noticed that following commands are not available on a 6500 router running advipservices 12.2(33)SXJ:show platform capture elam asic etc
So I wanted to know if there is an alternate way to setup an ELAM for troubleshooting purposes?
In our environment we have some HP chassis, and with them there are blade switches. Lately, we've been seeing some drops on few servers connected on the blade switch ports. The switch model is WS-CBS3120X-S. And below is the tx drop for two interfaces ( where the servers are connected to).
Previously posted as C2900 - inward NAT partial success...
Running C2900-UNIVERSALK8-M, Version 15.0(1)M3 RELEASE SOFTWARE (fc2)
I have several sets of inward NAT defined (51001-51007, 52001-52007. 53001-53007),all to various internal addresses. When I attempted to add another set, the new onesdo not work and get a "timeout" error.
When I tried port 51008, it gets a timeout. When I changed 51008 to 51010, the 51010 now gets a timeout, and 51008 now gets "connection refused" (which I expect).The original sets all work, the new ones (added at the end of the lists) do not.When I am on any of the internal machines, the target (192.168.1.21) works fine.When I am "in the router", I can connect via the ssh command, so I know that therouter can talk to 192.168.1.21 on port 22 as expected.
We are attempting to PXE boot from clients obtaining their DHCP lease information from DHCP pools configured on our 4506. The PXE server, and the client are configured in separate VLANs. We have configured option 66 to point to the PXE server IP address, and the bootfile option to point to the PXE boot configuration filename. On the client side SVI, we also have configured the ip helper-address command to point to the PXE server (which also acts as another DHCP server for redundancy).
The PXE boot continuously fails stating it is unable to find the configuration file. If we remove the DHCP pool from the 4506, and allow the client to receive their DHCP lease info from the secondary server (Windows 2k8 - same server as PXE server), they PXE boot with no issues.
We have no problem obtaining DHCP info, just completion of the PXE process.
We have an issue where switches are failing weekly in a switch closet. In the past month we have gone through several 3750G switches and a couple 4510s. The power supplies have eventually made a popping noise and had to be replaced. on the 4510s we've tried two chassis and gone through several power supplies.The switches have been behind UPS systems so should be receiving conditioned power.Could load from the PoE devices really be causing this? I wouldn't think it's power since they are behind a UPS.
We have just under 500 switches in production (various models but for this discussion we'll stick with 3750's). All are currently running tar IOS (web based). We want to upgrade the IOS from c3750-ipbasek9-tar.122-55.SE1.tar to.122-55.SE5 but some of our switches do not have enough flash to upgrade successfully. We use CiscoWorks to distribute our software upgrades. I know you can lower the flash requirements on the IOS in CiscoWorks, which I have done (changed from 16Mb down to 12Mb) and the upgrade still fails.
1) How far can I lower the flash installation requirements in Ciscoworks and what are the ramifications?
2) If we decide to change from the tar IOS version to the bin IOS version because we don't even use the web based features anyway, is there an easy way to do this? (CiscoWorks will not upgrade an image from tar to bin)
I have a number of 3560CG-8PC-S switches. My intention for them is to act as kind of gateway L3 switches - one for each satellite site. My thinking was simply to have an L3 device at the gateway to each of those sites so that any inter-vlan traffic within each site can stay within the site rather than having to traverse the relatively slow radio links to get back to the 3750X stack in the core. They are also, however, going to be directly serving client devices
My issue is that for some reason, when connecting a new device (laptop etc) to one of the access ports on the 3560's, the port behaves as if it's being blocked. No DHCP addresses go through, the indicator remains orange, and the clients have no connectivity. However, if I wipe the config, I get a VLAN 1 IP address for my client no problems at all. And to make matters more confusing, only two out of my four 3560's are doing this. The other two have exactly the same config, but work perfectly.To that end, I'm loading the config below. I've followed that by the show running-config output, and show ip interface brief outputs.
I have a new 2911 that I am trying to bring up but local authentication is failing. I know I have typed the username and password correctly but no go. When I try to http in it is failing as well. I even create a "Cisco, Cisco" account. I have a console connection and even that is failing.
I am trying to run TDR tests on a 3750G (ver12.2). The switch ports have 3502 series access points attached to them. When ever I run the test the results all show "Not Completed". I understand that this means the test failed but this happens with any port I try.
Uhg. I deployed a 3560G a week ago and it was crashing... so I replaced it Sep 7 around 16:00 and now this one is crashing. Different logs.
Version 12.2(55)EX3 Sep 6 18:06:08: %PLATFORM-1-CRASHED: Debug Exception (Could be NULL pointer dereference) Exception (0x2000)! Sep 6 21:05:18: %PLATFORM-1-CRASHED: Data TLB Miss Exception (0x1100)! Sep 7 04:12:43: %PLATFORM-1-CRASHED: Debug Exception (Could be NULL pointer dereference) Exception (0x2000)! Sep 7 05:35:09: %PLATFORM-1-CRASHED: Debug Exception (Could be NULL pointer dereference) Exception (0x2000)! Sep 7 08:21:37: %PLATFORM-1-CRASHED: Data TLB Miss Exception (0x1100)! Sep 7 11:13:18: %PLATFORM-1-CRASHED: Data TLB Miss Exception (0x1100)!
Replacement Version 12.2(55)EX2 Sep 7 16:34:48: %PLATFORM-1-CRASHED: Debug Exception (Could be NULL pointer dereference) Exception (0x2000)! Sep 8 03:39:38: %PLATFORM-1-CRASHED: Data TLB Miss Exception (0x1100)! Sep 8 18:26:06: %PLATFORM-1-CRASHED: Data TLB Miss Exception (0x1100)! Sep 9 18:14:38: %PLATFORM-1-CRASHED: Debug Exception (Could be NULL pointer dereference) Exception (0x2000)!
More detailed syslogs are in the attaced 'crash-logs.txt' file.
The device is running OSPF (it is in an NSSA). I have several other devices configured almost the same running the same IOS in my network and they are working fine.This does make the third out-of-box 3560C Cisco that has failed on me within a few days.
We are ordering new COWs (Computer On Wheels) for the hospital and they will be using an Intel 6205 Wireless Chip which is a/b/g/n 2x2. The two new floors these devices will be going on will be our first internal hospital entry into 802.11n which I force the clients to run in the 5ghz range for N. Previous to this, all of my cows are G clients and use a 2.2dbi rubber duck for 2.4ghz.
I will be using 1142 AP's, if not 3502 and no I have not performed a survey yet as the floor is still in early construction, but equipment is required to be ordered now. I can tell you that I will be surveying for a voice grade. I suppose my confusion comes from what is the best antenna (obvious open ended question) for this card, being it has two connectors for the 2x2. Again, typically I would use a 2.2 dbi rubber duck for either 2 GHz or dual band 2/5 GHz. Is dual rubber ducks at 6inch spacing (half wavelength met on 2.4 GHz fall back) suffecient or are there other factors involved with the N.
I would like to update the device package for Cat3750. The readme file from update package says that DtShare V1.10 (DtShare.cv50.v1-10.zip) has to be installed first. I have actually DtShare V1.9 installed but there is no DtShare V1.10.
When I execute the device update, than it downloads everytime the DtShare V1.9. My question to Cisco staff and all other CW specialists: How can I become the DtShare V1.10?
I have a 3750 stack of 4 switches that was installed about 2 years ago. Recently I was doing some work on the switch and realized that I am unable to save the config. I amobviously concerned that if the power fails or the switch reboots I will be reconfiguring it and that is not something I am interested in doing! [code]
I currently have Netflow enabled on all of my routers in my network. However, I have a Cat3750, which does not support Netflow. The 3750 is at a larger remote site and I need visibility into the traffic that is traversing internal to that switch. All VLANs are configured on the 3750. I have an extra Cisco router, which I have theorized I could use as a Netflow probe.
The 2811 Router has to FastEthernet ports.F0/0 would be configured with no IP Address and would be connected to the 3750 on G0/1 with no VLANs configured.F0/1 would be configured with a static IP and connected to the 3750 on port G/02 with the appropriate VLAN to ensure network connectivity.
On the 3750, configure a monitor session with a destination of Interface G0/1.On the 2811, configure netflow to sent to the Netflow server and set F0/0 for ip flow ingress.Obviously, it doesn't work. But I cannot figure out why.
Recently I faced 1 issue in MLS 6509.MLS had all Gig modules in slots 6,7,8 taking System detected CRC error rate on port ASIC data bus exceed fatal threshold, ("System detected CRC error rate on port ASIC data bus exceed fatal threshold".) causing the module reset by the SUP. After this active SUP causing it to failover the standby. This process was continuing every few minutes resulting in the SUPs on MLS rolling.what could be the issue for Sup rolling reset?
I'm running a Cisco 891 it has both crypto maps and ipsec VTI's running on the external interface. The cryto maps are for sites that do not have a cisco router and the Tunnels are for the sites that use crypto maps work perfectly fine. But I much prefer using unnels as it gives a routable interface, ospf works ect.
The tunnel interfaces will periodicly fail (Line protocol down) at no set interval, they will then not come back up again. To bring them back up I either have to shutdown and then re-enable the interface or run "clear cry ses rem *.*.*.*"
Logging with isakmp and ipsec errors provides the following: 55801: *May 1 10:31:16.015: ISAKMP:(0):Can't decrement IKE Call Admission Control stat incoming_active since it's already 0.55802: *May 1 10:31:16.015: ISAKMP:
I've got a fully working 877w that I'm trying to get to boot from tftp, but I just can't seem to get that going.I have a tftp server running and can copy images back and forth without any trouble.I have this in my config:boot-start-markerboot system tftp c870-advipservicesk9-mz.124-24.T2.bin 192.168.1.200boot-end-markerDuring the boot process I get an error message that says there is a missing or illegal ip but I really don't see how that can be as my tftp server is 192.168.1.200 just like my config says.
Any issues upgrading the IOS on a 921 router.How can i create a certificate for the new IOS? I've never had to do this for other IOS 15 upgrade?I've confirmed the IOS is not corrupt and if i upgrade the router in ROMMON the router boots correctly.
Im preparing a lab and I have 2 ASA 5520's. I have configured them for failover so the Primarys config will replicate over to the Secondary. They are connected via a 3560 switch. the switch ports are configured as access ports on vlan 1. Spanning-tree portfast is enabled
Firewall (Primary) Cisco Adaptive Security Appliance Software Version 9.1(1) Device Manager Version 7.1(2) Compiled on Wed 28-Nov-12 10:38 by buildersSystem image file is "disk0:/asa911-k8.bin"Config file at boot was "startup-config"
I'm currently unable to upgrade certain devices since Cisco Prime incorrect believes there is not enough room in the flash partition.For example.
Getting the following error messsage trying to upgrade some Cisco 871 routers: "Catastrophic - SWIM1200: Selected Flash partition requires minimum (28 MB) to upgrade selected software/image."The images are around 18 MB in size. Why does Cisco Prime thinks its 28 MB in size? Bug?
