Cisco Switching/Routing :: C4500 - UDLD Normal / Aggressive With Multiple Neighbors
Aug 20, 2012
we're running 4 c4500 Switches at 2 sites connected to each other via Layer-2 crypto boxes and VPLS in a point-to-multipoint configuration which ist completely transparent (it's more or less like connecting them via a Hub - every switch sees the other 3 ones as neighbors). Our basic configs have udld globally enabled in aggressive mode. I wanted to disable that for the interfaces (routed ports) to the crypto boxes, because I don't want them in ErrDisabled for 5 minutes if there are connectivity problems in the VPLS-cloud (every switch also had 3 UDLD neighbors because of the P2MP configuration). In if-config mode I could do this simply with "udld port disable", but I thougt it would be better to run normal mode (not aggressive) to have the chance to use the UDLD show-commands. So I configured "udld port" for the affected interfaces.
interface GigabitEthernet1/2
udld port
!
[Code].....
View 6 Replies
ADVERTISEMENT
Oct 29, 2012
I'm trying to implement the UDLD protocol (Cisco-compatible), but face some problems. There is no enough information for implementing this protocol neither in RFC 5171 [URL] nor on [URL] How can I get a more detailed information regarding protocol state machines and timers?
View 2 Replies
View Related
May 31, 2012
Does g0/1 port (dual purpose port but set to use sfp) support udld? If yes, what's the command to enable it? I have it connected with a 3750v2 switch. On the switch I have udld enabled.
View 2 Replies
View Related
Sep 12, 2010
I have the following problem with
Situation:
- 2x 3750G-12S Distribution-Switches (DS) and several 3560/2960 Access-Switches (AS)
- redundant Fiber optic uplinks between AS and DS
- Cross-Stack Etherchannel config on all uplinks
- UDLD aggressive mode configured on all uplinks
Problem:
- when I reload the DS and the switch comes up again, I've lost the connection with several (not all) AS
- looking at the AS log I found the following error message: "%UDLD-4-UDLD_PORT_DISABLED: UDLD disabled interface Gi0/1, aggressive mode failure detected"
Cause:
- in the log of the AS I don't see intf Gi0/1 go down during the reload of the DS
- this means the DS didn't shuts down all its ports during the reload
- but this also means that UDLD on AS didn't know about DS reload, and therefore didn't resets counters
Workaroud/Solution
- I'm now configuring errdisable recovery on all AS
So I'm forced to configure errdisable recovery, even if I don't want.
View 3 Replies
View Related
Jun 9, 2013
I have a problem between two switches with ether channel configured:
Model number : WS-C2960S-24TS-L
System image file is "flash:/c2960s-universalk9-mz.122-58.SE2/c2960s-universalk9-mz.122-58.SE2.bin"
Gi1/0/23 ETH-CH_1_SW-EDGE01 err-disabled trunk auto auto 10/100/1000BaseTX
Gi1/0/24 ETH-CH_2_SW-EDGE01 connected trunk a-full a-1000 10/100/1000BaseTX
Po1 Trunk_SW-EDGE01 connected trunk a-full a-1000
[code]...
I already change the wire without success, and already restart sw-edge02. With "u dld port disable" the link is working correctly.
I have two another switches working with SFP Cable:
Gi0/25 ETH-CH_1_SW-CORE02 connected trunk a-full a-1000 1000BaseCX SFP Cable
Gi0/27 ETH-CH_2_SW-CORE02 connected trunk a-full a-1000 1000BaseCX SFP Cable
Po1 Trunk_SW-CORE02 connected trunk a-full a-1000
Model number : WS-C3560G-24TS-S
System image file is "flash:c3560-ipbase-mz.122-50.SE1/c3560-ipbase-mz.122-50.SE1.bin"
View 8 Replies
View Related
Aug 6, 2012
We just installed a Cisco ME-3400EG switch at one of our sites. A Cisco C3750X switch is connected to the 3400. When we run the command CDP NEIGHBORS, the 3400 shows no devices. We can access the 3750 via the 3400. Also, when we run CDP NEIGHBORS on the 3750 we do not see the 3400 (but other devices are displayed). How can we get CDP to display the devices on the 3400? We have already tryed CDP RUN.
View 5 Replies
View Related
Sep 16, 2012
we have 5 sites connected with a combination of direct fiber and Service Provider Ethernet. The equipmet consists of 3750 stacks with IP Services. Currently each site runs full EIGRP and is a EIGRP neightbor to all the other sites. Everything is working fine right now.
We would like to upgrade the R5 site to a 3750x stack with IP Base (cheaper than IP Services) and configure it as EIGRP Stub. My concern is with the following statement in the IOS command reference guide.
Note Multi-access interfaces, such as ATM, Ethernet, Frame Relay, ISDN PRI, and X.25, are supported by the EIGRP Stub Routing feature only when all routers on that interface, except the hub, are configured as stub routers.
View 2 Replies
View Related
Dec 11, 2011
Is there any official Cisco reference to describe what is considered to be the highest acceptable production CPU load on 2800 routers? I found the document "Integrated Services Routers G2 - Performance Overview" that states at page 5,Most service providers set their CPU alarms to 60 or 65 percent. Many enterprise customers are comfortable running production networks with CPU around 70 or 75 percent.
View 3 Replies
View Related
Apr 18, 2013
We have a new stack of two Catalyst 3850-48T's running IOS XE 3.02.00 (we are upgrading to 3.02.01 this weekend.)We noticed the CPU usage is around 30% even when there is almost no traffic going through the switch. We haven't seen any indication that it is causing a problem, but is this considered a normal baseline?I attached my config (with passwords sanitized,) show ver, show controllers utilization, and show process cpu history.
I noticed this behavior is normal on 2900XL/3500XL switches, but I didn't find anything relating it to 3850 switches. Does the same thing apply to the 3850 switches? [code] url...
View 3 Replies
View Related
Nov 2, 2011
we are seeing network latency problems and our cpu on the 6509e is spiking and have a above average % for the past week or so. When we do see these spikes it seems that snmp and apr input is high
CPU utilization for five seconds: 75%/53%; one minute: 17%; five minutes: 14%
PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process 9 1636168 95505 17131 4.19% 0.36% 0.34% 0 Check heaps =======>
12 478096 1011864 472 3.07% 0.12% 0.12% 0 ARP Input =====> 52 30420 436000 69 0.07% 0.07% 0.07% 0 Per-Second Jobs
53 317496 7789 40762 0.87% 0.10% 0.06% 0 Per-minute Jobs
220 55380 87807 630 0.07% 0.06% 0.07% 0 Compute load avg
[code]....
we recently upgraded our 3560 switches to the new 12.2-55 ios version but have not upgraded our 6509 because its ios is on 12.2(33)SXJ1. Not sure if this is related or not but it seems that after we upgraded to the later ios that the latency started.over the last 24 hours the spike is several times an hour and at least one a day that it hits the 90 - 100 % mark.is there a way that we can limit what snmp view but would not effect functionality or network?
View 2 Replies
View Related
Apr 24, 2012
I was checking some things on my Cisco 4500 and spot checking some of the ports. Using CNA it says it is at 10. The web browser to the switch says Full-duplex, 1000Mb/s, link type is auto, media type is 10/100/1000-TX on port 6i/18 The CNA says, so what would cause the difference?
View 3 Replies
View Related
Nov 22, 2011
I am confused on how acl's respond on normal cisco switch (eg.6500) when applied on respective vlans. this is my scenario:on a 6506, i have 2 main vlans in question: Vlan 100 ( vendor1 - 172.16.100.0/24 ) & Vlan 200 ( vendor2 - 172.16.200.0/24 ). the requirement is,
- vendor1 should be able to access/ping vendor2 end points
- vendor2 should not be able to access/ping vendor1 end points
Now, if i ping from a host 172.16.100.11 in vlan 100 to another host 172.16.200.21 in vlan 200, will i be able to get a successful response ?
View 4 Replies
View Related
Aug 7, 2012
I have a 512MB USB Flash device and was able to boot the IOS on the C2960 from it.After that i tried to Copy the IOS file from the USB to the system flash, but it could not find the USB Device.At plugging in the device the systems tells me: "Transfer type 2 not supported" I configured the USB device in NTFS and FAT both are able to boot with the ROMMON, but the normal system does not accept them and i know i can do the copy over a TFTP from my laptop, but it is strange that rommon accepts the usb device and the system does not?
View 1 Replies
View Related
Mar 9, 2010
Is it possible to have multiple dhcp pools for multiple VLANs? The switch is a 6509 and/or 4506 catalyst. I don't want to use server-based products.
View 5 Replies
View Related
Dec 21, 2011
how can we upgrade 6500 non modular ios to normal 6500 ios?
View 5 Replies
View Related
Sep 25, 2012
I have Cisco 800 series (888w) with BRI-ISDN port. Is there any way to change the usage of ISDN port to normal RJ45 port?I want to use this SOHO router to sharing connection.
View 0 Replies
View Related
Oct 29, 2012
We have the following architecture for Internet access:
LAN ---- CISCO-CHASSIS----FIREWALL-----INTERNET
My concern is about PAT, for LAN users Internet access: I would like that PAT is performed by Cisco chassis(in my case, a C4500), not by firewall (which means: local IP addresses for flows from LAN to Internet are all natted with the same public IP address).Are there some drawbacks to this design? I guess there is no problem for classical flows, but what about flows with specific comportment (such as FTP) on Cisco routers?
View 0 Replies
View Related
Jul 5, 2011
Our cable company installed a new wireless router and gave it a different name so now our HP C4500 wireless printer won't print. I can't find any of the installation stuff (ie CD, etc) to reinstall it.
View 3 Replies
View Related
Oct 24, 2012
I have a network with a Catalyst 3750 as the main switch and then some Catalyst 2960 switches that are plugged in to that. I have a server running windows server 2008 with a couple of virtual machines running in Hyper-V. I created 4 VLANS listed below and gave the 3750 the following IP Address.I would like the 3750 to only be configurable from VLAN 40 but currently every VLAN can connect to it, I noticed in the standard web page settings there was a setting for "Management VLAN" but it was set to 1 and would not let me change it, I kinda assumed that was for the management port in the back.-Now the tricky part, I was trying to set up routing between the VLANs and so far I have only been able to get a sort of "all or nothing" routing to work. I can turn IP routing on and add two or more VLANs to the routing and it works fine. But what I was hoping to do is create a couple of "junction vlans" that would only route to one or two other vlans. For instance, I wanted to create a VLAN 100 that routed to VLAN 20 and 30 but nothing else. I also want to route VLAN 1 just to VLAN 30, and so on. I am able to do each one of the cases but only one, it seems like the switch only supports one "routing table" am I missing something or is this just a limitation of the switch?
View 2 Replies
View Related
Feb 15, 2013
We have two Cisco 5505 firewalls connecting to two ISP's . The two internal LAN's on the firewalls are 192.168.184.0/24 & 192.168.186.0/24. We also have a Cisco C3560x layer3 switch with vlan interfaces 184.3 & 186.3. We have two DGS-3100 Dlink layer 2 switches connecting our users to the Layer 3. Ip routing is enabled for intervlan communication & I can reach the Switch interfaces & firewall gateways from machines on both on the vlans.We have pbr enabled on the 3560 & users only on the .186 network can get to the internet. The switch is running the ipservices license & the sdm template is "desktop routing" .
Users on the .184 cannot access the internet but we can ping the layer3 interface & the firewall gateway. [code]
View 20 Replies
View Related
Jan 8, 2013
I have Cisco ASR 1002, code XE 3.4.1 doing site-2-site VPN with an ASA managed by another company that I have no control over running 8.3 (I think).the site-2-site vpn is very easy straight forward as follows.
View 4 Replies
View Related
Oct 23, 2012
I recently set up a Cisco 881 to cover a small business network. The router is currently set up and working as expected. We recently decided to move to VoIP phones and here is where I'm running into some issues.
First an overview: We run a network with a cable internet WAN connection, this connection is DHCP, however we have a static IP through our ISP. We also have a block of 30 additional IP addresses for one to one mapping as we need them. The new VoIP system is being run over T1 lines throughout the township (we are a municipal organization) and the VoIP system is being run to about 5 buildings in the township.
This brings me to the topic of VLANs. As the phone engineer explained it to me, there is a network set up over the T1 that allows the VoIP equipment to talk to one another and operates all of the VoIP phones on one network. The equipment that is being installed at our building connects to the network over the T1 and "talks" to the other equipment on the network. The engineer wants to create a VLAN and run it on ports fa1 and fa2, with the fa2 port being connected to the actual "MPLS" (their term) that connects to the T1 and into the cloud, and the fa1 port connected to the internal phone switch.
TLDR; The problem is this: When we attempt to set up the VLAN on ports fa1 and fa2, we have no connectivity with the other units in the external VoIP cloud. Pinging while directly connected to the "MPLS" yields successful pings, while pinging from the router with the "MPLS" connected to fa2 yields failures. I'm going to post the running config below, I feel like what we're doing should be working. I asked around about subinterfacing, but others seemed to think this was not necessary.
ROUTER CONFIG
Building configuration...
Current configuration : 4909 bytes
!
! No configuration change since last restart
version 15.1
[Code].....
View 10 Replies
View Related
Dec 25, 2012
how to properly route multiple external IPs to internal ips assigned to several servers. Where I'm getting a bit lost is that I have two levels of routing - one from the outside into a comcast business class cable modem, which also creates its own internal network. Within that internal network, I have my RV180 router, which creates another separate internal network in which the servers live (don't want the servers to have access to other computers within the Comcast Modem's internal network). I want to map the external ips to servers within the RV180 second level network.
To diagram:
Comcast Cable Modem
/
RV180 Computer(s)
/
S1 S2
An internal IP is assigned to the RV180 router. Suppose it is 192.168.1.100.
The cable modem itself supports NAT as well. Do I use NAT twice (on both cable modem and RV180) to route the external IP to S1 and S2?
Or do I modify the routing table on the cable modem? Then use One to One NAT on the RV180 to map the external IPs directly to the internals?
View 2 Replies
View Related
Mar 11, 2012
I am trying to configure a Cisco 871 router.I have 3 servers on my network that need static public IPs but also still need to communicate on the local network.
I have given my WAN interface the first IP in the block and set up PAT for the rest of the computers on the network which is working fine. Next I set up static NAT rules for the servers translating 3 of the remaining public IPs to the internal addresses of the servers.
I can access those servers internally using the public IPs but not from outside the network. A tracroute from outside the network gets dropped when it gets to my ISP.
I've never configured more than one static ip for a network before and i know i've just missed a step here. Do I also need to set up static routes? Will that update the next hop's routing table?
View 2 Replies
View Related
Apr 12, 2013
I have two Cisco Small Business SF 100D-16 switches, one was a spare. I have run out of ports on the first one and would like to run the other one in series to new devices across the office. I'd prefer not to buy a bigger switch at the moment, but can I run one switch into the other without any adverse effect on the network.
I'm running an optical broadband connection and so far the system is fast and stable, running 8 VOIP phones, 8 laptops and 4 printers.
View 2 Replies
View Related
Jun 13, 2011
Currently, I have in a number of remote sites (with dynamic public address) a C800.On this Cisco, I have a config for initiating an agressive-mode tunnel to a central ASA.relevant part of the config:
---
crypto isakmp policy 10
encr aes
authentication pre-share
group 2
!
crypto isakmp peer address 1.2.3.4
[code].....
Now I need to replace these C800 by ASA5505. But I don't know how to replace the "crypto isakmp peer address" command in ASA.The C800 transmits both the password (abcdefg in my example) and the fqdn (remotesite1 in the example). how to configure the ASA to build the tunnel the way the C800 did?
View 5 Replies
View Related
Jan 16, 2013
Need the clarity on IKE version 1 with aggressive mode, I assume this is used for remote site VPN and not for site to site VPN.
Correct me I am wrong and also share the inputs on this.
Also required the inputs for disabling in Cisco 3800 series router.
View 18 Replies
View Related
Feb 20, 2013
view cached CDP neighbor information in LMS 4.2.
In LMS 3.1 it is displayed in the Device Center summary section, but I cant find it in LMS 4.2 Device Center.
View 4 Replies
View Related
Apr 17, 2012
Anyone got a single VSM (albiet in HA) managing two vDS split over two ESX clusters connected to a single instance of vCenter?
View 0 Replies
View Related
May 9, 2012
Switch: SG500 VLANS: 1 (default) xxx.xxx.0.0/24 network, 150 (device management vlan) xxx.xxx.150.0/24 network I am plugged into port 1. This is a trunk port with VLANs assigned as follows: VLAN 1 (Default) - UntaggedVLAN 150 (dev mgmt) - Tagged Device is plugged into port 2. This is an access port with the following VLAN assigned: VLAN 150 - Untagged Why is it I cannot communicate with the device on port 2?
View 1 Replies
View Related
Sep 13, 2012
I have a above said switch at my remote office (600KM) which is connected with L2 Point to Point leased line. Both the ends I have Cisco 3950 catalyst switches with Vlans configured at both the ends. Now, for obvious reasons I should remove the other end 3950 switch and replace with Cisco 2950 switch. The other end 3950 is having 4 Vlans configured on 4 ports. Now my requirement is, I should configure 3 Vlans (one for P2P, one for 10 Desktops and one for to bring traffic from other network).
View 1 Replies
View Related
Dec 14, 2012
I have an ASA 5505 with Security Plus License ?I have 5 Static IP Addresses from my ISP?I have the following interfaces. Outside (vlan 2) / Inside (vlan 1) / Guest (vlan 3)For my Vlan3 guest network I have set it up so that DNS must be routed through opendns.org's DNS servers ( for web filtering, etc ) However, its using the static ip that I have plugged into the ASA.
What I would like to accomplish is to put my inside interface (vlan1) on another static ip for outside access if thats possible, so that I can route those clients through opendns.org however however giving them more web privlieges than what the guest network is getting.
View 14 Replies
View Related
Apr 24, 2012
I have this cisco 4507 switch that I need to configure multiple ip ranges on. The problem is that I can only configure two ip ranges on it, one ip range on the management vlan and the other ip range on vlan 2. After I have configured these 2 vlans with different ip ranges, I can route between then and get them to talk to each other, but that is all I can do. If I add another vlan with a different IP range I cannot see it from the switch or get any of the otehr ip ranges to see it.
I am doing something dumb because this is a layer 4 device so it should be able to route the ip ranges. I have tried everything just cannot get it to work. I have assigned the IP range directly to the port number and directly to the vlans. Just wont work.
View 6 Replies
View Related
