Cisco Switching/Routing :: How To Segment The Ports On SF-300 Switch
Jul 13, 2012
The default Gateway and DHCP server is connected to port 1 of the switch. I have various other devices on the network plugged into other ports on the switch.I want port 1 to communicate with every port on the switch, but don't want the other ports to be able to see eachother unless I specifically allow them to. For example, port 5 should see port 1, and 7, but nothing else.Everything needs to be in the same subnet. With the older Dlink switches I am used to this feature is called "Port Segmentation" but I see no such option in this switch. I have been playing with the VLAN settings but so far I have not been able to achieve this.
WAN link plugs into a 2821 Router with an switch module in it. About 8 clients are plugged in to the 2821.2821 connects to super cheap netgear switch (I'm 99% sure it's stripping dot1q headers) via one of the ports in the switch module. About 4 people are connected to the netgear.Now, I sent a catalyst 3560g to the branch because they wanted to extend into a new building. Someone decided to run a single cable from the netgear to the 3560. On the 3560, I have about 5 clients and a couple of APs.
So it goes 2821 -> Netgear -> 3560. All of these are single connections.When the 3560 gets plugged in, all clients on the netgear lose their connection, and nothing on the 3560 works. It happens almost instantly. I can't figure out why connections are dropping. The APs have about 4 VLANs onn them, and the PCs are on their own VLAN (the native VLAN).
I like the SG-300 switches for SMB and I'd like use them in our network. Design is quite simple just 6 SG-300 switches connected to one central switch using SFP ports (using 2 port trunks) so I need 12 SFP ports and this is my question. Could you recomend me switch with more then 12 SFP ports from Cisco for this SMB network ? I don't know all the Cisco product lines and I can't find it.
We have an OSPF network with four 6500 Distribution Switches. They are fully meshed and see each other as peers and are sharing routes. Off of one pair (Border) there is a setup of 3750G siwtches that go off to another network and they do not run OSPF. Between the Border Dist and the 3750G Switches we run HSRP. The 3750G side uses HSRP GP 192 and the Dist Side uses HSRP 192.There are static routes on the 3750G pointing to the Dist HSRP address to get back to network.Pings fail from the OSPF side to the HSRP address on the 3750G side.If I do a trace from the OSPF side to the HSRP address it hits one border dist switch then the other and fails.If I have static routes on both border dist switches pointing to the HSRP on the 3750side, do we need to change the metric on one dist so that it is preferred over the other or should the router Id take care of that?
I have a statck of 4 2960s switches, with POE powered access points on 2 of them. All of the access points appear to be functioning normally. For some reason, on 3 interfaces connected to access points, I get the following when issuing show interfaces status:
Gi3/0/9 connected: T 7 a-full a-1000 10/100/1000BaseTX ^
My question is regarding the "T" in the status field. I can't find any documentation on this.
I was viewing the 3560x switch datasheet and i need network module C3KX-NM-10G. I have dark fiber with over 12 km distance to i guess i will be needing SFP EX for single mode.
My SG200-50P Switch Log appears as follows with Random ports going up and down. I am trying to find out if this links to another problem I'm having with a Client Server software locking up on the client end. The hardware, thin clients and desktops, are working and have checked all sleep and power settings. All items in working order, now I'm wondering about the switch
I have been reading the postings on this site trying to retrieve the MAC address for the client devices (computers, printers) attached to our switches. We have approximately 500 switches and I need to map the mac address to the switch. It appears the OID information is for SNMP v2. We are restricted to using only SNMP v3. I have tried using the Cisco SNMP Object Navigator without any success.
I have a Cisco 4500. Recently some of the ports seem to have "died"/ will not supply Poe to phones. Some work for data only. Other do not work at all. The switch has been restarted, this made no difference.
I have a 2960 switch and every then and now the ports are flapping, while i was on console i saw ports going down and coming up...when the ping to machine ip addresses timed out the port status on switch was still up...no errors collisions seen on sw port. Below is sh int when the port was flapping
I work at a hospital and we have 3750X-48P switches in stacks in various locations throughout the hospital. We have noticed that when an EKG machine is plugged into one of the ports on some of these switches and the EKG machines are set manually to 100/Full, the ports are no longer usable until the switch is restarted. The switch is configured for auto. If the EKG machine is set to auto, it will work and not cause problems. The link on the interface will show up/up and there will be output packets increasing. However, there will be no inputs on the link and the port is unusable. Unfortunately, even when the device is removed, the port becomes unusable for any device. Is there any way to fix this problem without rebooting the switch?
In my environment we have 3750x switches running ios 15.0 (1) SE2. We have port security mac address sticky configured on all our switch ports. I noticed that we have several interfaces (on different switches) that are up but have not captured the MAC address from the workstation. Here is one example:
I was checking some things on my Cisco 4500 and spot checking some of the ports. Using CNA it says it is at 10. The web browser to the switch says Full-duplex, 1000Mb/s, link type is auto, media type is 10/100/1000-TX on port 6i/18 The CNA says, so what would cause the difference?
I have a Cisco 3750G-48PS Running IOS 12.2(40) and was wondering how many physical ports are supported in an LACP Configuration. Is it 4 or 8 ports in a single switch.
If I have a dual 3750 stacked together, and I want to configure (8) port LACP, Can I take (4) ports from each switch in the stack and LACP together.
Have our public IP address space masked on /24 at our Internet Router. The router portion of 3845 connects to Internet, while the internal switch connects to my internal network and seeds it with the public address space. The switch had a port configured no switchport (L3) with an ip address with /24 (ie 67.63.145.1 /24) this connects to internal IPS/IDS then to Firewall which NATs to internal, then packet shaper, web filter etc etc etc. I need to test my ISP speed so I need to "break in" to the link between the switch and the IPS/IDS. I figured I could configure another port on the switch on the 3845 but my problem is the port to my network is routed and is masked on entire /24. I tried to configure a port on VLAN 1 and give myself an available address in the L3 address space and this did not work (figured it would not but gave it a try)
Any way to get two ports configured to use the same subnet while one is a L3 routed port and the other is just part of that layer 3 routed network?
i recently deployed cat4507e switch along with 3 nos of WS-X4748-RJ45V+E - 48 port gigabit PoE modules. I am using polycom IP560 phones.
I am facing issue of some switch ports (randomly) stops supplying power to phone at random time. So far there are about 4 incident and i have been plugging those connection to different - usused ports. I am planning to RESET the switch module during weekend and i think it might fix issues with those ports.
But what would be quick and easy way to fix this issue when the issue is faced? How/what to check on switch port interface wrt to power? If switch module is falling short of overall power requirement, is there a way to boost the power?
Is there a switch that handle its 24/48 ports at 10 Gbps with copper?. I have checked 3750 X but just handle 2 SFP with 10 Gbps.The requirement is to use this switch as CORE and connect 12 switches (access) using its uplinks at 10 Gbps with copper ( in this case 3750 X can be used).using copper at 10 Gbps the distance is still 100 m?
I have to configure failover Active/Standby on my ASA 5510.I am wondering how i could do for the outside interface, i mean, actually the ASA1 outside interface is linked directly to our Internet router.So now if i have to add ASA2 connecting to that router i will need a switch between them.I have already a switch for DMZ & LAN.The thing is that i will have to allow 3 switchs ports to communicate with each others.
- 1 for ASA1--outside - 1 for ASA2--outside - 1 for Internet router
How could i isolate these 3 ports to make them communicate alone ? Should i use VLAN for that ?And if i use VLAN, will this require to make any change of configuration on my firewalls (ASA1 & ASA2) outside interface ?I am a bit lost with this, if i am correct i will not have to do some "vlan tagging" on the firewall itself ?
My network generally runs older routers (2600 series) with 16 port switch modules (NM-ESW-16). This has always worked great since I can configure the router and the switch ports on the fly, making changes to either as necessary. Well I am upgrading to 2811 routers, and we wanted to get gigabit ethernet ports on our switch modules. I think I made an error when I purchased a few of these switch modules: NME-16ES-1G.
The first problem, is that the switch ports don't even show up on the router config, I have to establish a session into the switch, (And I can't seem to get back to the router unless I manually switch off power and restart). I don't like this type of switch module, it's like I'm running a completely separate device, and while having a layer 3 switch is cool, It doesn't let me setup routing protocols so I don't like doing it this way. I want to go back to using a switch module that simply adds a ton of ports to my router like the NM-ESW-16. (Note: The NM-ESW-16 does actually work in the 2811 and would be perfect if it were Gigabit speed.)
The seconds problem is that the NME-16ES-1G isn't actually a Gigabit switch. It has a single gigabit port, but the 16 ports are all Fastethernet, and not gigabitethernet. So ideally, I am looking for a switch module that I can fully configure from the router interface that has 16 gigabitethernet ports, and works with a 2811. IE I want to do this. [code]
I am working on a request to clean up alot of excess cabling in one of our IDF's. I noticed that many of the connections have no lights on them and probably haven't been used in a long while. I would like to know if there is a CLI command I can run on the Cisco 3750 switch will allow me to bring up a list of ports which have not seen any activity for a period of time - for example, 30, 60, or 90 days.
I have 4 cisco 2960 switches to which many users are connected. No vlans are the only default vlan 1 is there. Now I want to make ether channel on switch 1 whcih has 24 fast etherenet ports. Can I make port 1- 8 as one ether channel which are connected to users or i can only make ethere channel of ports that are connectd to other switchs. If I can, how the other switchs will comnicate with the switch ports bundalled in the ether channel in switch 1.
I have a Cisco 6509 with IOS "s222-ipservicesk9_wan-mz.122-18.SXF16.bin"I need to enable dot1x on user's ports on the switch. each user is connected to the switch through the IP phone.
I just found out that I can not enabled dot1x on trunk port. I have tried to use "switchport voice vlan " but I got:
Can you configure a Cisco 1941 to use an 8 port EHWic module and the 2 onboard GE ports in a single LAN?
I've discovered you can't have the on GE ports associated with a VLan, and I'm when I've previously researched for a solution, bridging was mentioned but I cannot seem to get it to work (or completely understand it)The reason I would like to use all 10 ports on for the LAN is becuase I have 10 devices I need to connect to the 1941?
we have a 4510r-e running 12.2(50)SG1 w/ various rj45 line cards and a 24 port glc card.at any given time, i see 10's of ports in 10/full.i go to the station, and find the station in 100/full or 1000/full.
i go to the switch w/ my fluke, connect it directly to the switch w/o any intermediate infrastructure except a 50cm cat6 patch cable.the fluke reports 1000/full, but THE SWITCH PORT REPORTS STILL 10/FULL.all ports are config'd 'speed auto' and 'duplex auto'.
the switch seems to be erroneously reporting 10/full.there are no errors logged on any of the ports and there is successful communications even when the station and switch port report different speeds.even though there are no errors logged nor reported by 'show int [port]' nor 'sho int count error' certain killer applications crash on some stations. (the applications are GHOST (which dumps disk images from a server to multiple stations) and NETOP (which i sused in a classroom to transmit an instructors screen to a room full of stations) both of which broadcast and/or multicast.all nodes involved in the above 2 applics are on the same vlan and same phyiscal subnet.
the ports which report 10/full vary and occur even when the above applics are not in use.the only way i found to clear this 10/full report is by either a hardware reset of the entire module or by unplugging the cable, the execute on the port shutdown, speed auto, no shutdown, reconnect cable.then it's just a matter of time until it pops back to 10/full in a few minutes,hours or days.
how to address the killer applic problems besides restructuring the whole net by defining separate vlan for each lab of 20 or so stations?
I have a 2811 router with a 9 port switch module and a four port ISDN module. The ISDN Module is our connection to the outside world. FE 0/0 and FE 0/1 are connected to separate networks and both route our the ISDN connections.We are getting a new satcom system that consists of a modem, antenna control unit (ACU), and an antenna. The ACU and the modem communicate accross Ethernet and are generally hooked to a switch. Anything computer hooked to the switch can simply use the modem IP as it's gateway and be surfing the Internet without much hassle (just need the correct DNS addresses).I'd like the networks behind FE 0/0 and FE 0/1 to be able to route out the satellite modem for their Internet connection -- when the satellite is available. Is it possible to put two switch ports in a VLAN (one for the modem and one for the ACU), give the VLAN an IP in the same subnet as the modem and ACU, and then tell the router to route traffic out the modem IP address ?
Basically what is the difference. I'm looking at a breakdown of all the components connected to my switches I noticed half of them about are listing their port all the same as GI1/0/1 (routing port?). Then the rest are all different ports FA1/0/assigned# or FA2/0/assigned# (switch ports?).which are routing or switch ports and why certain ones are under each. It doesnt seem to matter which component it is (computer or printer) because some of each are under routing or switch ports.
I have 2 3550's connected across a wireless link. [code] However, from Switch A, I cannot reach 10.1.3.9Can this 3550 not route traffic between 2 routed ports?
How many of the 881 switch interface ports can be used as router ports, have used the 877 etc where i can use 2 but need a low cost router that supports 3 for routing. (needs to be physical ports)
I need 10gigbit uplink for this switch. What are the other devices that i need order along with this device.And what is the diff between X2-10GB-LR= and CVR-X2-SFP.if i take CVR-X2-SFP, in future how can i upgrade from one gig to 10 gig?for current use i need 10gig support required. so what are all the other devices that i need to order.Fiber multimode and distance 15Mt only.
i have an issue to connect a trunk between cisco switch and extreme switch i have many vlans that i want to cross via a link between cisco 3750 switch and a Extreme Alpine 3800 switch
