Cisco Switching/Routing :: Cannot Find Port Number From MAC Address Using SNMP With 3725
Dec 2, 2012
I'm developing a project where I use the SNMP protocol to discover the network. By discovering the network I mean go through all the routers and switches and retrieve the IP routing table from routers and the forwarding table from switches. With the routers I have no problem. For the switches I need to know for each port the MAC addresses and the Vlans. Basically it's use SNMP to find a port number from a MAC address. To do that i followed this tutorial: [URL]
The problem is that I'm using a Cisco 3725 Router with IOS 12.4 (21) and a NM-16ESW module to work as a Switch and when I use the OID .1.3.6.1.2.1.17 corresponding to the BRIDGE-MIB as it follows:
From this I guess there's no information on the router about Vlans or anything. Other thing is that when I use community string indexing it returns a timeout. My theory is that this version doesn't support indexing but I don't know.
how can I get the Port Number from a MAC address from this "switch" (it's a router working as a switch) using SNMP?
I have been reading the postings on this site trying to retrieve the MAC address for the client devices (computers, printers) attached to our switches. We have approximately 500 switches and I need to map the mac address to the switch. It appears the OID information is for SNMP v2. We are restricted to using only SNMP v3. I have tried using the Cisco SNMP Object Navigator without any success.
We have IP device on the farm switch(cat6500, which is an access layer siwtch), with the gateway on the core switches (Nexus7000), on the core when I do show ip arp, I found the mac.But when I do sh mac add add of that mac there is no port attached to that mac.
Since that particular vlan only resides on the cat 6500 and two cores, so I logged in to the 6500, and when I show mac- in that vlan, I didn’t find that mac addresss. Instead, I found another mac address with last 8bit are the same of that mac.
Is it some kind VIP of the mac? How so, if no port, how can the switch forward the frame? [code]
i want use CACTI for monitor my bandwidth so i have a question how can i enable snmp for a switch port ? or i shoudl just enable snmp from configuratiopn terminal and then in CACTI i will choose which port will be monitor? can i do something that CACTI connect to my switch with a encryption key ? i have cisco 2960 48 port switch
I'm in the middle of a Nexus 5000 project and recognized today while configuring port-channels, that some of the interface numbers are reserved for internal use.
Is it possible to change or configure which port-channel interface numbers are allocated for internal use by NX-OS?
Unfortunatly I wasn't able to find a solution for this issue in the offical Nexus documentation, the search function of this forum or Google. If I did miss something or didn't look careful enough at the Nexus docs, I'm also happy with RTFM (... fine manual) responses and links to the info :-)
I have 3725 router with internal CF and external slot for CF. I tried upgrading and ended up deleting the iOS version on the internal flash, and can not now put the iOS back!! I turned it off.... so there was no active iOS..
I have tried formatting the CF card on an 1841 but the 3725 won't read it. It is obviously stuck at ROMMON
What is the correct way to format a CF card so my 3725 will read it and I can get an iOS back on it!!
I am setting up multiple vlan interfaces on a pair of HSRP Routers that will provide layer 3 routing for a network. I am seeing this command sporadically show up in the router config mac-address-table static 0000.0c07.acd2 vlan 210
I am not entering this command. So far, it has not shown up on the companion 3725 router. I have a 2nd vlan I have just created and the problem hasn't shown up for that vlan as yet.Using C3725-ADVSECURITYK9-M), Version 12.4(15)T7, RELEASE SOFTWARE (fc3) on the routers.
I seem to be having a problem with DNS name resolution after configuring my router (Cisco 3725 running IOS image: c3725-adventerprisek9-mz.124-25.bin) for handling DHCP requests.
Before I made the change, everything was working correctly; I could ping Google.com from a computer inside my LAN and would get response from one of Google's public IP's like normal.
I had a separate DHCP/DNS server running Windows Server 2008 handling the DHCP request and DNS queries.
When I made the change, I turned off the DHCP/DNS server and issued the following DHCP commands to my router:
I'm trying to configure a SPAN session on a Cisco 3725 router, but it won't let me complete the command. The router has two Fast Ethernet interfaces: 0/0 and 0/1. I'm trying to configure a SPAN session with Fa0/0 as the source interface and Fa0/1 as the destination interface. [code] But when I try to configure the session, it seems like it's giving me the option to configure the SPAN session, but in the end the router won't let me: [code] When I type "?", why would it give me the option of using the Fast Ethernet interface as source port, then when I try to execute the command, it doesn't like it?
I read that there are internal and external flash memory in 3725 router that can max up to 128mb. So adding the sizes of internal and external flash memory, will that total to 256mb?
And also is the internal flash of 3725 just the same with its external flash?
There 's a Cisco IP phone that sits between a PC and the switch port. On the switch port, no MAC address is learned. However, the switch is able to detect the IP phone and deliver power to it: [code] Switch is Catalyst 3750 with IOS version 12.2(58)SE1.
I am having an issue where MAC addresses from my user PC's are registering on different ports than the ones they are plugged in to. I have my PC's plugged in to my Cisco phones (most of which are 7941's), and then patched back to my switch, (4507 or 4006). The issue is that a user will be working fine, they will have both their PC and Phone MAC's registered on the correct prot and then with out intervention the PC MAC addresses will register itself with another physical port and the user will pull a 169.x.x.x address and have not access to the network. This is happening to multiple users all of which are hardwired. Port security is configured to allow 3 MAC's, obviously if I change that to 2 it will not allow an incorrect MAC's to register with that port, but I would like to know why this is happening. Both the 4507 and 4006 have been up for 1 year and 33 weeks. The fix has been to find out where their MAC has registered it self, unplugg that PC from the phone, and let the port security aging time (2min) clear all MAC's from the port.
I am configuring a Cat 2960 port for connecting a VOIP phone, authenticated by MAB. On connecting the phone, I get the port authenticated and assigned to the correct VLAN, with LLDP-MED advertising the correct voice vlan. However, I then see no traffic from the phone on the switch. I can see the MAC address of the phone is learned in the right VLANs, but the mac address is showing as "Drop", which normally means the address is statically configured to be blocked. There is no static mac address table blocking configured on the switch.
Switch Version Switch Ports Model SW Version SW Image ------ ----- ----- ---------- ---------- * 1 50 WS-C2960-48TC-L 15.0(1)SE3 C2960-LANBASEK9-M Port configuration interface FastEthernet0/1 description "Standard user port"
Problem is that at some C65K I have directly connected Unix servers and the don't show MAC address at port, and same has happened at 3560 switched where I have too Unix based equipments connected. When use show mac-address interface XXXX, nothis appears at port and tested them with other equipments that worked fine.
I have two Cisco 4506's running cat4500-ipbase-mz.122-50.SG3.bin. Periodically, when attaching a new workstation to these switches the Mac Address of the device disappears off the port when the device is connected or the port is configured. The only way to correct the issue is to do a hardware reset on the blade or reboot the switch. After resetting the blade or rebooting the switch the devices will start showing up on the port and connect. This does not effect devices that are already connected to the switch, just newly added devices
Both switches are populated with WS-X4148-RJ45, WS-X4148-RJ45V and WS-X4248-RJ45V blades. It doesn't matter which blade the new device is being connected to. I believe that this may be a "Bug" but have been unable to locate one.
We are facing issue with mac address learnt from different port-channels, Connectivity is like 6500 as core running VSS and 4500 access switches are connected to Core and WLC is also connected to Core.WLC to 6500 PO 60 , 4500 to 6500 PO 32.
Our customer has a Cisco ME3600X with the IOS me 360x-universalK9-mz.122-52.EY3.They are saying that is not possible to configure the "switchport port-security mac-address sticky" in the interfaces and want to know whether any additional license is needed.As far as I know there isn't any extra license to activate this feature and also I believe the ME3600 switch should have this feature with the universal IOS, isn't that right?
I just bought a Catalyst 2960S to test out the feature "Port-Based Address Allocation" which is required for our factory. I followed the instruction from Cisco IOS and did all the steps but I could not get it to work, my network client did not received the expected IP address that I configured.
We have a single 4500 connecting to two non-cisco devices. We need to enable port channelling or link aggregation between these two.The links are carrying mulitple vlans , hence are trunked and the ip address on either side is used for routing.
From each of the two non-cisco device, i am taking 2 ports each to connect to the 4500.On each non-cisco device side, two ports will bundle together as one aggregated interface (ae1) and the other will be called ae2.
my query is how do i do the configuration for etherchannel on the cisco 4500 side , as it will need two different Po's( port channels).I need a single ip address on both sides of port channel to be present for routing.
I've run in to this on 3750G's in a various sized stacks. We apply port security for a mac address on a single port (not existing on more than one port - that's a different issue that appears in multiple posts already).In this case:
1) We do a 'sho mac address-table and see that the device with the mac address in question lives on one port, port 1/0/x.
2) We apply mac port security for this exact same mac address to the same port it is already attached to. switch(config)#int g2/0/2 switch(config-if)#switchport port-security mac-address 001a.1ec8.abcd
3) Get this error: 'Found duplicate mac-address 001a.1ec8.abcd'.We again confirm that that is the only port on the entire switch that has this mac-address.Try the command again, same error.
4) We do a bunch of show commands, get in and out of the switch, go back and then try it again, and now it works, same command, same port and same mac address.
-Aging is default 300 -These are Cisco wireless AP's attached to the switch -This occurs on different switches with different ports using different mac addresses, always same symptoms.
Any OID to determine the number of registered AP's on a WLC (specifically the AIR-CT2504).
I've got both of the Airespace MIBs and have browsed through them but I can't seem to find the correct location. I can find a list of all of the AP's registered but our monitoring software doesn't have the ability to 'count' that index. As such, I'm looking for a count/summation of the total number of registered AP's via SNMP.
I have 2 3560 switches that are running 12.2(25)SEE2. Port security is enabled on some of the ports. Whenever there is a power failure, when power is restored, 1 port on each switch goes to err-disabled. The mac address that causes this is a valid address for that port. Below is the configuration on one of the ports.
There is nice c2900PortNumberOfLearnedAddresses table in C2900-MIB, but it's outdated and not supported by modern switches.Is there similar table for modern switches? Most interested in Catalyst 2960 and 3750.
We have recently purchased a 5Mbit line with a second ISP and will have the line activated tomorrow. In addition, we recently obtained our AS number through ARIN. How would I configure the second ISP to be used for load balancing/failover?
I'm working on a CCTV DVR which has network viewing function. The front controls on the DVR won't work at all so i am unable to access any menus or burn off the footage i need. I was hoping to connect to the unit via the network viewer software or web browser but i have no idea what the ip address is. Is there any way of finding out the ip address of the unit if i connect a pc to it via a cross over cable or through a switch or am i stuck because i dont know the ip range it is in?
