Cisco Switching/Routing :: Cat 6500 - IOS 12.2(33)SXJ5 Version Of Reference Site Inquiry
Jun 8, 2013We prepare to upgrade the IOS and reviewing the 12.2(33)SXJ5 version. IOS 12.2(33)SXJ5 version of the reference site inquiry.
View 5 Replies
ADVERTISEMENT
Cisco Switching/Routing :: 6509 - Cannot Find Reference To Error
Mar 5, 2010This is a 6509 with Sup-2/MSFC2. Can't find any reference to this error on the cisco web site.
View 2 Replies View RelatedCisco Switching/Routing :: 3745 Router Failed To Exchange The Reference Signal
Mar 17, 2013I am almost new to the networking field, hence I might have lacking some basic knowledge. I like to know the impact if the ground of any router get disconnect. WIll the router stops work? We have two peripheral router in my organization, both are connect with the MPLS cloud through the MUX. One router (3745) have ground connection, where as the other (3845) don't. Recently the 3745 router start generating CRC error on the WAN interface. Once we remove the patch cord connecting with the MUX for loop test and reconnect later, the interface did not come back again. FInaly someone advice me to check the ground connection. I found it was loose. Once I fix it properly and reboot the router the interface become up. The person told me that some cisco router send the reference signal through the ground to the MUX connecting with it, if the MUX and router failed to exchange the reference signal the router will not work, is this true ?
View 2 Replies View RelatedCisco Switching/Routing :: Upgrade 6500 Non Modular IOS To Normal 6500?
Dec 21, 2011how can we upgrade 6500 non modular ios to normal 6500 ios?
View 5 Replies View RelatedCisco Switching/Routing :: 1941 / K9 Unable To Ping Over Site To Site IPSEC
Jul 12, 2012I am trying to set up a site to site ipsec connection. AT site A, I have Vlan's 652-10.55.216.0/24, Vlan653 -10.55.217.0/24, Vlan 654-10.55.217.0/24 and Vlan655-10.55.219.0/24 and at site B, Vlan650-10.55.214.0/24 and Vlan651-10.55.215.0/24.The problem is that I am unable to get any associations when i do a "sh crypto isakmp sa"/"sh crypto ipsec sa" on either router at each site.I am also unable to ping by pluging in a laptop into the site at each site. Laptop at site A is set to access vlan 655 and laptop at site B is set to acess vlan 651. I can ping all the devices from one end to the other.I have turned on debug crypto isakmp, debug crypto ipsec, debug crypto ipsec errors but dont get anything at all as output.I have attached the sh run for each router Cisco (1941/K9) and switch (Catalyst 3750) at each site.
View 4 Replies View RelatedCisco Switching/Routing :: ASA 5525 - Configure Site-To-Site IPsec VPN To 3 Peers
Nov 21, 2012I have an ASA 5525 and need to configure site to site ipsec vpn to 3 peers. I currently have an existing /28 public address from my ISP that is used by other services.Is there a way to use this existing ip range to configure IPSEC tunnels to 3 peers ?
View 10 Replies View RelatedCisco Switching/Routing :: HSRP / BGP / Site To Site VPN On Router 2811
Apr 2, 2012hsrp+bgp+site to site vpn on router 2811.
View 2 Replies View RelatedCisco Switching/Routing :: 2851 / Site-to-Site VPN Through EVPL?
Mar 26, 2013I have been tasked with creating a VPN tunnel between our site and a vendor's support center. I successfully created the tunnel, which negotiates fine, but I can't seem to get the traffic flowing properly. The issue that I think I am having is that the vendor is using a public IP address for their remote internal network instead of a public one. At least that's what I think the problem is, but I'm probably wrong Here is a diagram of how the traffic should be flowing:
Office #3 Office #3 Office #1 Office #1 Vendor Vendor
Desktop PC Gateway Gateway Firewall Public IP Private LAN
192.168.5.158 -> 192.168.5.1 -> EVPL -> 192.168.0.11 -> 192.168.0.5 -> Internet -> 68.x.x.x -> 192.68.48.0/22
Cisco 2851 Cisco 2851 ASA 5510 Cisco 7206
When I trace a route from the desktop PC to an IP address on the remote vendor end, instead of going to the ASA the traffic goes to another office. Here is what is happening to the traffic:
1 <1 ms <1 ms <1 ms 192.168.5.1 (Office #3 Gateway)
2 3 ms 3 ms 3 ms 172.20.254.5 (Office #3 EVPL VLAN to Office #2)
3 3 ms 3 ms 3 ms 192.168.1.14 (Office #2 Gateway)
4 4 ms 4 ms 4 ms 173.xxx.xxx.xxx (Public Internet)
The office with the desktop PC has no local internet access, so all internet traffic gets routed to office #2 (192.168.1.0) as shown above. I'm asuming this is happening because the vendor is using a public IP address instead of a private IP address for their network. The routers look for the shortest route, which would be the internet, and then route the traffic there. Instead they should be routing the traffic to office #1's ASA and then on to the remote vendor site. The 2851 routers are using EIGRP. I don't know if that is causing this to happen but I tried adding static routes and the traffic always goes to the same place. I can provide configurations on any of the devices mentioned, save for the vendor's.
Cisco Switching/Routing :: Do VPN Site-to-site Between Two ASA 5505?
Jan 29, 20121. Is it possible to do vpn site-to-site between two ASA5505?
2. Is it possible to do vpn site-to-site between ASA5505 and MS ISA 2006?
3. Is there "Traffic shaping" in ASA5505?
Cisco Switching/Routing :: Site-to-Site VPN Routing On 5510
Oct 28, 2012I'm really struggling to setup the routing through a site to site vpn to another site using subnet 212.xxx.xxx.0/24 10.1.1.2 is a gateway that has access to the site. If I add to any server on the 10.1.1.0/24 subnet route add 212.xxx.xxx.0 mask 255.255.255.0 10.1.1.2 it is able to connect to any system on the 212. xxx. xxx.0/24 subnet. However it doesn't work for computers connected via remote access vpn. I need to have all the servers on 10.1.1.0/24 subnet have access to 212.xxx.xxx.0/24 subnet and also any computer connected via remote access vpn to the 5510. [code]
View 2 Replies View RelatedCisco Switching/Routing :: 2911 With IOS Version Is 15.1 - Routing Table Not Updating
Oct 2, 2012I am using Cisco 2911 & IOS version is 15.1. My problem is that after some days (e.g. 15-20 days), the routing table suddenly stops updating & then I have to enter the default route again to make it up. I am using Track 1 to track default route here. After primary link goes down, the Track is also going down but after coming the primary link up, the track is not coming up. So, I have to add the default route again to make it up.
View 2 Replies View RelatedCisco Switching/Routing :: 6500 Switching Fabric Bandwidth 720 Is Calculated?
Jan 21, 2012As per my understanding 6509 all slots are dual channel, so 9 slot * 40 per slot (20 g in and 20 g out) = 360 GB How cisco claim the 720 ?? What about the 6513 chassic switch fabric connection?
View 5 Replies View RelatedCisco Switching/Routing :: 6500 / High Switching Processor Utilization?
Sep 20, 2012I am seeing a strange situation on my 6500 switch?By having snmp walk on '1.3.6.1.4.1.9.9.109.1.1.1.1.3' (== cpmCPUTotal5sec), I came to know that there are two processor and the cpu util for switching processor is gone to 88 % and some time creeps to 99 %.
snmpwalk -v2c -c "removes" sw6500 '1.3.6.1.4.1.9.9.109.1.1.1.1.3'
SNMPv2-SMI::enterprises.9.9.109.1.1.1.1.3.1 = Gauge32: 12 (--- this is for CPU of Router Processor )
SNMPv2-SMI::enterprises.9.9.109.1.1.1.1.3.3 = Gauge32: 99 (--- this is for CPU of Switching Processor )
but when I do sh process cpu on the console, all looks normal as it shows cpu utilization of RP. why the value is so high on the switching processor ?
Cisco :: Verify Default FWSM Boot Partition On 6500 Version 12.2(17r)?
Mar 12, 2013The network gods recently updated our 6500 and upon reboot, the FWSM booted to CF:1 maintence partition,which caused an immediate outage. On the router, I ran the following command to set the default FWSM boot partition to the configuration with:Router#boot device module 4 cf:5 However, it appears the "show boot device" command has been replaced with "show bootvar" which doesn't show me which partition the router will boot the FWSM to. Is there a command I can run from the Router that will actually confirm the boot partition for the FWSM if the router reloads.
View 1 Replies View RelatedCisco Switching/Routing :: IP Routing On 6500 Series Versus 3750?
Jan 24, 2013For intervlan routing, Is 'IP routing' command enabled by default on a 6500 series switches based on the IOS?and on 3750 switches, do we need to enable the "ip routing" command manually for intervlan routing?
View 1 Replies View RelatedCisco Switching/Routing :: 6500 / Restricting Inter-VLAN Routing?
May 9, 2013I'm looking to restrict Inter-VLAN routing through L3 switch (cisco 6500) and wanted to know best possible way to do it. I used VACL and achieved success to some extent, but my config is making clients take up to 5-6 mins to authenticate IP address from the DNS (bootps).My VACL config was as follows:
Subnet to restrict is 10.100.15.0 (VLAN 15)
STEP 1: Created extended ACL to allow bootpc/bootps through DNS
ip access-list extended EACL_DNS
permit udp any eq bootps any
permit udp any eq bootpc any
STEP 2: Created standard ACLs to allow only relevant subnet, server VLANs & some IPs from other subnets for printers/scanners etc.
ip access-list standard SACL_VLAN_15
permit 10.100.15.0 0.0.0.255 (the subnet I'm restricting)
permit 10.100.50.0 0.0.0.255 (server VLANs)
permit 10.100.25.45 0.0.0.0 (printer in another VLAN which has to have access in VLAN 15)
STEP 3: Created VLAN access list
vlan access-map VACL_15 10
match ip address EACL_DNS
action forward
vlan access-map VACL_15 20
match ip address SACL_15
action forward
STEP 4: Applying VLAN Access list on VLAN 15 vlan filter VACL_15 vlan-list 15 Though the above works, below is noted:
1. I'm still able to PING 10.100.15.2 (the switch virtual interface) from outside the subnet, which I don't intend to do so. Howeve all cients in the subnet have no connectivity from outside the VLAN 15.
2. As mentioned its taking quiet some time to negotiate with the DNS server at system boot time.
Cisco Switching/Routing :: 6500 MSFC No IP Routing Command
Jun 2, 2012I used to "ip routing" command in order to enable inter-vlan routing, for example with 3750 cisco. I have a 6503 cisco with SUP720 MSFC3. I was able to create some vlans but I can not configure inter-vlan routing.
sw#conf t
Enter configuration commands, one per line. End with CNTL/Z.
swsur(config)#ip routing
[Code]....
Cisco Switching/Routing :: IP Routing On 6500 Series Vs 3750?
Oct 30, 2011For intervlan routing, Is 'IP routing' command enabled by default on a 6500 series switches based on the IOS?hes, do we need to enable the "ip routing" command manually for intervlan routing?
View 2 Replies View RelatedCisco Switching/Routing :: IP Routing Command In 6500?
Mar 16, 2013Where is the "ip routing" command in Cisco switch 6500 series?
is the ip routing enable by default accoridng to the: [URL]
Cisco :: Blocking Site On ASA 5505 Version 8.2(1) Base License Using CLI?
Jul 13, 2012basic step to blocking site on ASA 5505 version 8.2(1) base license using CLI
View 1 Replies View RelatedCisco Switching/Routing :: Show Version On VSS 6509?
Apr 7, 2013Is there a way I can check the version of each device on two Cisco 6509 if they are Virtually connected (VSS)? When I enter the command show version, it only shows one result, unlike show module, you have an option to choose which switch by entering 1 or 2.
View 3 Replies View RelatedCisco Switching/Routing :: IOS Version For C3500XL Switch?
Nov 13, 2007im trying to find out what is the latest ios version for 3500xl switch for upgrade it .
View 4 Replies View RelatedCisco Switching/Routing :: 5505 Latest OS Version - 9.0.2 Or 9.1.1?
Apr 23, 2013On the downloads page there's a 9.0.2.ED listed as the 'latest' but then if I expand the '9' below it I get to 9.1.1.ED. Which one is the actual latest? is there any way to tell the one that is not an 'interim' version I think 9.1.1 is also listed under interim?
View 4 Replies View RelatedCisco Switching/Routing :: Upgrading IOS On 2811 From Version 12.2.X To 15
Apr 25, 2012I purchased several Cisco 2811 with Advanced IP Services - they are version 12.2.X
The product number looked like this
CISCO2811-HSEC/K9 2811 Bundle w/AIM-VPN/SSL-2,Adv IP Serv,10 SSL lic,128F/512D
I need to upgrade the IOS to version 15.1 - Do I require a license ? What happens if I install it without a License ? Am I entitled to a free license as I am not changing the software type (ADV IP Serv) ?
Cisco Switching/Routing :: What Should Be Minimum IOS Version On WS-C6509-E
Sep 26, 2012what should it be the minimum IOS version that I require on my WS-C6509-E equipments to support "logging origin-id" command?
Cisco documentation says that this command was introduced in 12.2(15)T, and integrated into 12.2(33)SXH.
BUT my Cisco switches have 12.2(33)SXH5 IOS version......and they do not support "logging origin-id".
(config)#logging ? Hostname or A.B.C.D IP address of the logging host buffered Set buffered logging parameters buginf Enable buginf logging for debugging cns-events Set CNS Event logging level console Set console logging parameters count Count every log message and timestamp last occurance esm Set ESM filter restrictions event Global interface events exception Limit(code)
Cisco Switching/Routing :: 4900M - Upgrade IOS Version
May 7, 2012I have this 4900M running version 12.2(54)SG1. I the log I get this 3 lines:
May 8 08:32:15: %C4K_SWITCHINGENGINEMAN-4-TCAMINTERRUPT: (Suppressed 429 times)flCam0 aPErr interrupt. errAddr: 0xC48 dPErr: 1 mPErr: 0 valid: 1
May 8 08:32:24: %C4K_L3HWFORWARDING-4-FLTCAMPARITYERROR: (Suppressed 866 times)FL Tcam Perr with no FwdEntry Hw index: 3144 Hw entry: Sw entry:
May 8 08:32:45: %C4K_SWITCHINGENGINEMAN-4-TCAMINTERRUPT: (Suppressed 432 times)flCam0 aPErr interrupt. errAddr: 0xC48 dPErr: 1 mPErr: 0 valid: 1
They seems to be coming on regular basis, repeating every minute. I've tried Google and the most relevant info I can find is this {URL}. But it says "Upgrade software to IOS version 12.2(52)SG or later OR 12.2(50)SG4 or later. ". I'm already running 12.2(54), so why does this 3 line repeatedly show up in the log every minute.
Cisco Switching/Routing :: Difference Between 6500 SXJ And SXI?
Nov 25, 2011i would like to check out what's the difference between the naming convnetion for the 6500 IOS.
I read the data sheet to support my POC deployment to support NCS v.1 the 6500 IOS need to upgrade to 12.2 (33) SXI
Is it able to work if i using SXJ instead of SXI, with the same IOS version 12.2 (33)?
Cisco Switching/Routing :: TFT On 6500 Using Different Vlans And VRF
Jul 24, 2012I have tried to test copy tftp: numerous time with no success. I believe the reason it is failing is my laptop to Ethernet port is in vlan 62 and the tftp process operates in a different IP space.I am using gig 7/1 and configuring my laptop nic for x.x.x.254 mask 255.255.255.0. I can ping from laptop to gateway) and I can ping from the switch to my laptop using ping vrf production x.x.x.254. Can you tell me what vlan I need to set my laptop connection in or if there is something else I need to change to make tftp work on vlan62?Does TFTP only work in vlan1 or can it be changed?
View 2 Replies View RelatedCisco Switching/Routing :: Upgrade IOS In 6500 VSS?
Mar 25, 2012how to upgrade IOS in switch 6500 connect in VSS from 12.2(33)SXI IOS to 12.2(33)SXJ?
View 3 Replies View RelatedCisco Switching/Routing :: 6500 ACL Using QoS Not Working
Jul 16, 2012We are setup like a hotel style workers camp. We have wings full of rooms and residents with 3750 stacks in them. Those switches connect back to our core 6500's. The network is mostly all Layer 3, interfaces are routed with IPs.
When it was built before my time they included an ACL for each wing so that residents couldn't access internal devices (IE SSH to 6500) but I've come to notice it's not working.
I see hits on the ACL for accepts but nothing is hitting the deny rule at the top.Here is the configuration below:
mls qos aggregate-policer INTERNET1 24000000 80000 80000 conform-action transmit exceed-action drop
mls qos aggregate-policer INTERNET2 24000000 80000 80000 conform-action transmit exceed-action drop
mls qos aggregate-policer INTERNET 24000000 80000 80000 conform-action transmit exceed-action drop
[Code] ....
Cisco Switching/Routing :: Does OTV Supported On Cat 6500
May 6, 2013On googling I came across documents that say OTV (Overlay Transport Virtualization) is supported on Cat 6500. Any authentic information whether OTV is supported on Cat 6500, especially with Sup-720B? FYI, Cisco Feature Navigator does not mention it.
View 1 Replies View RelatedCisco Switching/Routing :: High CPU On 6500
Mar 19, 2012SUP2T-D#sh proce cpu hist
11111111111 1111 1111 1111 1111
0000000000099999000099999000099999999990000999900009999999
0000000000099999000099999000099999999990000999900009999999
100 **********************************************************
90 **********************************************************
80 **********************************************************
70 **********************************************************
60 **********************************************************
50 **********************************************************
40 **********************************************************
30 **********************************************************
20 **********************************************************
10 **********************************************************
0....5....1....1....2....2....3....3....4....4....5....5....
0 5 0 5 0 5 0 5 0 5
CPU% per second (last 60 seconds)
SUP2T-D#sh proce cpu sorted
CPU utilization for five seconds: 100%/83%; one minute: 99%; five minutes: 99%
PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process
416 3324188 879928 3777 13.05% 14.42% 14.45% 0 Spanning Tree
633 104408 5091 20508 1.50% 0.53% 0.45% 0 Env Poll
75 22000 298 73825 1.10% 0.13% 0.07% 0 Per-minute Jobs
168 69696 163563 426 0.39% 0.23% 0.22% 0 slcp process
2 532 1010 526 0.07% 0.00% 0.00% 0 Load Meter (code )
Cisco Switching/Routing :: QOS On 6500 Switch?
Feb 17, 2013I am trying to guarantee 100mbps for a vlan across a gig link. I have done some research and found this command for switches
mls qos srr-queue input priority-queue 2 bandwidth 20
However it doesn't seem to work for my 6500. I know the 6500 uses PFC for QOS but I have no idea how it works. how I can guarantee a vlan 100mbps across a 1gig link?
