Cisco Switching/Routing :: How To Setup SPAN On 4900m Switch
Feb 12, 2013
I currently have IOS image cat4500e-entservices-mz.122-53.SG5.bin. According to my research it appears SPAN is supported on this OS. However, after looking at procedure notes using websites like here:
[url]... I cannot find and obviously not figure out how to use the SPAN command. My main objective is to simply setup a port mirror on one of my TenGigabitEthnet interfaces and from what I read SPAN is the best way to setup a tap interface on a cisco switch.
View 2 Replies
ADVERTISEMENT
Apr 13, 2010
I' ve three 4900M switches equipped with the WS-X4920-GB-RJ45 module and the WS-X4908-10GE module. Now I'm started to setup these switches in our lab environment for the first time. They behave a little bit strange in comparison with the C3750 series which I used before and which I will replace by these powerful machines.
I tried to setup these switches to be managed through the management port. I configured IP address, default route in the management vrf, set the source-interface for tftp,ssh,ftp and tacacs to use the management port. Ping using the manangement port was successful. After finishing theses steps I configured the TACACS and AAA settings accordingly the informations I found on CCO. I tested the settings with "test aaa group authentication" command- without success. On my Cisco ACS no request was received and the switch told me he could't reach the tacacs server. Other switches in the same IP subnet are working without failure, so firewall or server should not be the problem.
View 5 Replies
View Related
Jan 6, 2013
I have been trying to get the http server enabled so I can access Cisco Network Assistant. I have my interfaces configured but for some reason the server in not running, port 80 is still closed. [code]
View 2 Replies
View Related
Feb 2, 2012
Would like to know if the Cisco Catalyst 4900M Switches are stackable?
View 2 Replies
View Related
Jan 2, 2013
I am slowly working my way though the setup and configuration of our new 4900m switch. The switch will have a pretty basic operational configuration. We are simply going to network 3 servers together through the swtich. Anyhow, I have been fallowing the guide at this site: [URL]
Basically the switch is brand new and I just setup things such as the clock, the banner, and the hostname. Anyhow, at various points in the guide such as the configuration of the telnet password and especially the interface gigabitethernet I get the "invalid input detected at '^' marker". I also did a show interfaces and noticed there was not any gigabitethernet interfaces but there was a
"FastEthernet1 is down, line protocol is down Hardware is Fast Ethernet for out of band management, address i"
Anyhow, my thinking is continuing on with the guide and at least try to setup the interface for the management port so I can then use the cisco network assistant gui to then configure the rest of the switch.
View 1 Replies
View Related
Mar 2, 2012
I have two servers, connected on two(Different) 6513 directly connected switches. Both these servers are in the same Vlan.
I have to monitor communication these two servers. I have a system connected on one of the 6513 switch, where network tool wireshark is installed.
How to configure span port.
switch 6513-1# show run int Gi10/43 --------------------Server 1 is connected
switch 6513-2# show run int Gi9/45 ------------------------Server 2 is connected
switch 6513-2# show run int Gi9/46 ------------------------System on which network tool wireshark is installed.
View 9 Replies
View Related
Jan 2, 2012
I have an issue with a Cisco 4900M switch with a WS-X4908-10G-RJ45 half card. The link connection between a 10Gbase-T server nic and the switch does not establish, i believe it is an auto negotiation problem. The link fluctuates constantly between connected and disconnected when set to auto negotiate. When the 10G half card port groups are configured for 1G connections it does the same. If i hard code the server nic to 1G the link remains up when the port group is at 1G. If i hard code the server nic to 10G the link stay down, i don't think the port speed and duplex can be hard coded on the switch end. I have tried updating the drivers on the server as well as diagnostic tests on the nic, which passed. The 4900M IOS code is version 15.0.2-SG2. If i plug a laptop into the 1G configured port the switch and the laptop negotiate at 1G. Also, i believe, if the 10G server nic is plugged into another 1G only switch the link auto negotiates to 1G as normal. The server nic is an INTEL Server Adapter AT 10G, which became end of life in 2009. I believe the half card came out in 2010.
View 5 Replies
View Related
Oct 29, 2011
I read quite a few documents on configuring SPAN on a cisco switch but none of them mention any limitations or any kind of CPU load it can have on a switch. I need to configure this on one of our switches and would like to know if there are any implications related to SPAN.
View 5 Replies
View Related
Mar 10, 2013
I am just going to deploy some new 4900Ms for a customer. Want to know if configuring management for 4900 (everything like NTP, AAA, SNMP , DNS ) is doable through management interface in management VRF and there are no caveats to be aware of.
View 1 Replies
View Related
Mar 11, 2013
I would like if is possible to stack a Cisco 4900M with a 2960S. I know it is not the most common situation but i need it.
View 1 Replies
View Related
Apr 4, 2013
I have an issue with couple of Cisco 4900M switches. We just got them and tried to use the TwinGig Converter on the 4 ports 10G module.
The problem is that the switches sees the new module in slot 2 and when we are inserting the TwinGig Converters we are getting the error message and when we are trying to type the command this command it does not work."hw-module module <slot> port-group <group> select gigabitethernet",When we go to config T, the only thing we can type is "hw-module module <slot> and if we do a ? the only thing is available is logging and power and we can't type
Port-Group or anything else. Is this a hidden command or we have to something else?
View 1 Replies
View Related
Jul 30, 2012
on a Cisco 4900M running IOS Software, Catalyst 4500 L3 Switch Software (cat4500e-ENTSERVICESK9-M), Version 15.0(2)SG1, RELEASE SOFTWARE (fc4) I'm getting a lot of packets on CPU Q "L3 Glean, 6".What is that queue and what could be the root cause?
Packets Received by Packet Queue
Queue Total 5 sec avg 1 min avg 5 min avg 1 hour avg
---------------------- --------------- --------- --------- --------- ----------
Host Learning 1563 0 0 0 0
L2 Control 1138188 3 0 0 0
Ttl Expired 2 0 0 0 0
L3 Glean, 6 4889394 4067 4381 3367 779
[code]....
View 1 Replies
View Related
Aug 10, 2012
Is it possible to use 1GB (SFP / Copper) on the built-in 8 x X2-10GB ports without any Network Module of 1/10GB. If so how.
View 2 Replies
View Related
Jan 4, 2012
I have a client whom has a 4900M switch as their SAN switch. They are getting ready to upgrade their SAN to use 10G.I had quoted them a price for an X2 module, but I am unclear based on pictures I have seen of the part number
X2-10GB-SR
whether or not the X2 module plugs into the X2 slot on the switch, AND then also has to have a transceiver put in it to receive the SC ends of the Fiber jumper, or whether the SC ends of the fiber jumper plug into the X2 module directly.
View 5 Replies
View Related
Mar 11, 2013
I would like to know if i can and how stack a Cisco 4900M with a 2960S. I know it's not the most common but i need it.
View 2 Replies
View Related
May 7, 2012
I have this 4900M running version 12.2(54)SG1. I the log I get this 3 lines:
May 8 08:32:15: %C4K_SWITCHINGENGINEMAN-4-TCAMINTERRUPT: (Suppressed 429 times)flCam0 aPErr interrupt. errAddr: 0xC48 dPErr: 1 mPErr: 0 valid: 1
May 8 08:32:24: %C4K_L3HWFORWARDING-4-FLTCAMPARITYERROR: (Suppressed 866 times)FL Tcam Perr with no FwdEntry Hw index: 3144 Hw entry: Sw entry:
May 8 08:32:45: %C4K_SWITCHINGENGINEMAN-4-TCAMINTERRUPT: (Suppressed 432 times)flCam0 aPErr interrupt. errAddr: 0xC48 dPErr: 1 mPErr: 0 valid: 1
They seems to be coming on regular basis, repeating every minute. I've tried Google and the most relevant info I can find is this {URL}. But it says "Upgrade software to IOS version 12.2(52)SG or later OR 12.2(50)SG4 or later. ". I'm already running 12.2(54), so why does this 3 line repeatedly show up in the log every minute.
View 2 Replies
View Related
May 21, 2013
I have a Cisco SG 300-20 as the core switch, layer 3. It is 192.168.4.6 on VLAN1 and 192.168.5.1 for VLAN2 (VOIP). All the ports are set in trunk mode. DHCP relay is setup on this switch.
The phones connected into a layer 2, Catalyst 2960-S switch. All ports are set in trunk mode. Default gateway on it is set to 192.168.5.1.
DHCP for both VLANs is provided by a Windows Server 2008 R2 server (the relay IP 192.168.4.15).
There is also an ASA 5510 in the mix which is 192.168.4.1. It has a route added to it for the 192.168.5.0 network to go to the SG 300 (192.168.5.1).
Just the two switches can ping each other on the 192.168.5.x network when I "add vlan 2" to the trunk port that is connected between the SG 300 and the 2960. The phones don't get DHCP on the 2960 switch. And I cannot ping 192.168.5.x from the ASA or anything else on the 192.168.4.x network.
After a bit of reading on intra-vlan routing for the SG 300 switch, I am thinking the SG 300 has to be the "center" of things so I need to make it 192.168.4.1 to be the gateway for both VLANs and change the ASA to 192.168.4.2 for VLAN1, etc. And I really can't do asymmetric routing with this switch.
View 1 Replies
View Related
Jan 1, 2013
First time user of cisco hardware and we just purchased the 4900m catalyst switch. My question is very general. I am simply hoping to network 3 servers together and I do not wish to do any fancy or advanced configuration. Can I simply use the web management interface for network administration and setup? I just downloaded the Catalyst 4500 Series Switch Cisco IOS software configuration guide and they talk about Cisco View network management system, is this my answer or is this what most people use for basic configuration and administration?
View 3 Replies
View Related
Dec 8, 2011
I am just going to deploy some new 4900Ms for a customer. Want to know if configuring management for 4900 (everything like NTP, AAA, SNMP , DNS ) is doable through management interface in management VRF and there are no caveats to be aware of.
View 1 Replies
View Related
Dec 18, 2012
We have to cisco WS-C4900M with Cisco IOS Software, Catalyst 4500 L3 Switch Software (cat4500e-IPBASE-M), Version 12.2(53)SG5, RELEASE SOFTWARE (fc1).We have four gigabit link connected between those two switches.We have create a LACP port channel with those four ports on both switches. Ether-channel is up and running and defined with a load-balancing method of src-dst-ip.But when we test the load-balancing, it's not using the src-dst-ip rule with the XOR: [code]
View 5 Replies
View Related
May 12, 2012
I have 4900M with X2-10G-LX4I need to have a link from it to 3560X GLC-SX-MM using MM Fiber Patch Cord.any configuration required in 4900M to change the speed of X2-10GB-LX4 to 1GB ?
View 2 Replies
View Related
Feb 10, 2013
My current version IOS is cat4500e-ipbase-mz.122-53.SG5.bin. I just got a new version cat4500e-entservicesk9-mz.122-53.SG5.bin.I put the new version in bootflash: directory and tried various methods of starting the IOS up to run the new version but it always started in the original ipbase version. My start-config shows:
boot-start-marker
boot system flash bootflash:cat4500e-entservices9l-mz.122-53.SG5.bin
boot-end-marker
and I even deleted the ipbase version in the bootflash: directoy so then my switch would not even boot up at all and hung in rommon. In rommon I tried
boot bootflash:cat4500e-entservicesk9-mz.122-53.SG5.bin
and the result I got back was
File has bad file magic number: 0x0
So I had to point the switch to my tftp server and boot back into a back up copy of ipbase. how I can get my new IOS version to work? I understand I might have to download it again but I just got it so I am skeptical it is a bad file. [URL] as a procedure guide and I do notice some of those commands/steps do not work on my 4900m switch.
View 3 Replies
View Related
May 3, 2012
I am little confused with all these SFP types.
Can I use GLC-LH-SM, GLC-LH-SMD and SFP-GE-L with Twingig converter module? When I used Cisco configuration tool, the only option is GLC-LH-SMD for 1000BASE-LX.
View 4 Replies
View Related
Jan 17, 2010
I was wondering if a interface numbering scheme is available for the 4900M. Configuration includes 1 x 8Port 10G and 1 x 20Port 1G modules. would like to understand How the slots are addressedInterface AddressingTwinGig interface addressing
View 10 Replies
View Related
Dec 10, 2012
know if Private Vlans are supported on the Cisco 4900m switch when set in VTP version 3 and VTP disabled?Most documents just specify VTY transparent mode without mentioning the version, trying not to assume since this is production.
View 1 Replies
View Related
May 23, 2012
Got a question for 4900m with TwinGigi Converter. I bought couple TwinGigi Convert thinking to use it on fix module ports (8 * 10G ports on 4900m ten1/1 to 1/8). I follow TwinGigi configuration guide [URL]however, I am getting Invalid commands on hw-module:
Switch(config)#hw-module module 1 ?
logging Logging
Switch(config)#hw-module module 2 ?
logging Logging
power Enable/disable power to module in specified slot
[code]...
here is show ver and show mod:
Switch#show ver
Cisco IOS Software, Catalyst 4500 L3 Switch Software (cat4500e-IPBASEK9-M), Vers
ion 15.0(2)SG2, RELEASE SOFTWARE (fc3)
Technical Support: [URL]
Copyright (c) 1986-2011 by Cisco Systems, Inc.
Compiled Wed 07-Dec-11 20:20 by prod_rel_team
[code]...
View 1 Replies
View Related
Dec 13, 2011
I am hoping you can provide me with some opinions, feedback, thoughts on the following. We have some Cisco 6509 switches in our environment currently hitting around 60% usage on the Router overall statistics.
Now we are looking at implementing an intrusion detection system but by being as least invasive as possible to the network. Our thoughts are to utilize a SPAN port on the switches to send traffic to the NIDS device but we have concerns of the following. The limitations of SPAN sessions on 6509's . The overhead on the switch of turning a SPAN session on and leaving it on permanently.
View 1 Replies
View Related
Mar 12, 2013
I am trying to configure RSPAN for one of my client. They have Server-Client VTP architecture. Voice Recording Server is connected to C4507. Agents are connected to C2960 and C3750. I got 2 sessions configured and the connectivity is a as follows:
1. Voice Recording Server-----C4507-----C2960-----C2960-----Agent IP Phones (Session 1)
2. Voice Recording Server-----C4507-----C3750-----Agent IP Phones (Session 2)
Recording works with Session-2 but not with Session-1. I understand the problem could be due to multiple reasons: 1.1. C2960 is working in client VTP mode so i cannot add remote span command under the vlan configuration. 1.2. C2960 has LANLITE IOS image which i am not sure if it supports Remote Span.
View 2 Replies
View Related
Sep 3, 2012
I am trying to setup SNMP v3 on a 4948E switch here is what I have done so far:
snmp-server location "location"
snmp-server contact IT Admins
snmp-server group SNMPgrp v3 priv read SNMP-ro write SNMP-rw access 80
snmp-server user snmp_user SNMPgrp v3 auth sha xxxxxxxxx priv aes 128 xxxxxxxx access 80
What else am I missing and how can I confirm that it is configured correctly?
View 2 Replies
View Related
Dec 31, 2011
I have CISCO catalyst with VLANs (VLAN ID 33, 36, 40-53) configured. I need to configure port mirroring in Switch 3750 for NAC (Network Access Control). I need to Monitor all the VLANs. Here is the SPAN configuration of switch: [code] Monitor session 1 source vlan 33 , 36 , 40 – 53.Monitor Session 1 destination interface fa 1/0/8 (here I am not able to set encapsulation dot1q ) because the error occurred saying %one or more dest port do not support the encapsulation%.
View 5 Replies
View Related
Dec 12, 2011
Been dealing with a strange problem for several days now. It started out with a problem that I thought was VTP related but ended up being something else. I setup a span port on a 3750 that I am connected to that was mirroring the trunk connection coming into the switch.
Never saw an VTP traffic come across the connection but doing a sh vtp status indicated the traffic was arriving and getting processed. When I found some debug commands (debug sw-lan vtp), I was also able to see the packets go between switches. Seeing this issue concerns me that there is other traffic that isnt showing up during a span session.
I know that doing a span on a switch, especially using a trunk port as a source, isnt a good idea. Since I didnt have a TAP at time, this was my only choice. I have since borrowed a NetOptics TP-CU3 tap from a good friend and was able to confirm the VTP traffic was going across the trunk connection between switches.
All of my 3750's are running 12.2.55.SE.
View 8 Replies
View Related
May 1, 2013
I have a Cisco 881 router running 15.1(4)M4. I am trying to configure SPAN on it to mirror my outside interface (source) to one of my LAN interfaces (dest).
!--- WAN interface
interface FastEthernet4
description Comcast WAN$ETH-WAN$
[Code]......
As you can see from the above output there is a problem with the command on this interface. When I try to set Fa0 as my source it works fine:
rtr(config)#mon session 1 source int fastEthernet 0
rtr(config)#
Is this because fa4 is layer 3 and fa0 is a switchport? If so, is there another way to set fa4 as the source?
View 4 Replies
View Related
Jul 12, 2012
I have a need to capture some traffic but my core 6513's are already using the limit of 2 span sessions. I can't edit any of the sessions either because I want to source traffic from vlans and you can only do one or the other. Is using a VACL with 'switchport capture' on the destination interface an option ? E.g. I want to source traffic from vlan 10,20,30,40 and send the all to interface Gi10/10 ? Is there any caveats ? I dont need to be too granular with the ACL's but just capture all traffic in those vlans.
View 2 Replies
View Related
