Cisco Switching/Routing :: IGMP And QoS On CAT6500 Platform With SUP720 Engine
Mar 27, 2013
I am having problems with IGMP and QoS on CAT6500 platform with SUP720 engine.The problem is, it seems that all IGMP packets are getting marked with DSCP 48 when sent out of the switch regardless of any input service policy. I found several articles saying that PFC QoS does not apply to IGMP packets. However in IOS 15 that should be possible, but I didn't get it to work there either. [code]
to the above question. I see the specs for the WS-SUP720-3B and 3BXL but not the WS-SUP720-BASE with the MSFC3 and PFC3A daughter cards.The 3B can handle 256,000 routes using IPv4 and the 3BXL can do 1,000,000.
how to clear vty line? Please see below. A sh tcp <line number> shows that the TCB is waiting for TCP Process. The TCP processs TCB is waiting for is SSH. I believe because of this ssh process still running, the vty line cannot be cleared.
sh users Line User Host(s) Idle Location 1 vty 0 pf 10.10.20.8 9w1d 10.10.1.54 2 vty 1 pf 10.10.1.16 35w0d 10.10.1.54 3 vty 2 pf 10.10.1.16 1y14w 10.10.1.54
What this crash means? This is a 6509 with a single Sup720 Cisco IOS Software, s72033_rp Software (s72033_rp-ADVIPSERVICESK9_WAN-M), Version 12.2(33)SXI, RELEASE SOFTWARE (fc2)System returned to ROM by s/w reset at 04:42:07 PST8PDT Mon Jan 2 2012 (SP by bus error at PC 0x40C6681C, address 0x424B).
I have a pure L2 switching network and 2 hosts on the same vlan that want to communicate a protocol between each other using multicast packets.
I wanted to configure ip snooping only on this vlan and create a multicast group limited to only these 2 host ir order to make sure that the multicast traffic is only between both of them.
Since both are sender and receiver I´m not quite sure on how to configure this. In theory I also need to set an IP Multicast Address on the switch to where the hosts will send their multicast packets.
R1 is configured as host (no ip routing) with ip igmp join 239.10.10.10 on fa0/0 and R2 with ip pim sparse-mode on f0/0. SW1 is a Catalyst 3560 running IOS 12.2(25)SEE4 working at Layer 2 only in this topology (VLAN 1).
I configured SW1 for igmp snooping:
ip igmp snooping ip igmp snooping vlan 1
Basically, I can see 'snooped' muticast group (via IGMP reports sent by R1)
SW1#sh ip igmp snooping group Vlan Group Type Version Port List ---------------------------------------------------------------- 1 224.0.1.40 igmp v2 Fa0/2 1 239.10.10.10 igmp v2 Fa0/1, Fa0/2 SW1# SW1# SW1#
Using the new SUP-2T, need to clarify one query. If we are using the new SUP-2T in VSS mode, will the new ASA service module and NAM-3 are supported? From Cisco site, ASA module FAQ:
Q. Will the ASA Services Module support the Cisco Catalyst Virtual Switching System (VSS) at FCS?
A. Yes, depending on which supervisor you use. The ASA Services Module supports VSS either as a single firewall or as a failover pair of firewalls, when used with the Supervisor 720-10G (VS-S720-10G-3C and VS-S720-10G-3CXL). Transparent and multi- context modes also work with the VSS in this configuration. However, though the SUP 720-3B (WS-SUP720-3B and WS-SUP720-3BXL) is supported by the ASA Services Module, it is not capable of supporting the VSS. No reference to Supervisor-2T.
We have IP device on the farm switch(cat6500, which is an access layer siwtch), with the gateway on the core switches (Nexus7000), on the core when I do show ip arp, I found the mac.But when I do sh mac add add of that mac there is no port attached to that mac.
Since that particular vlan only resides on the cat 6500 and two cores, so I logged in to the 6500, and when I show mac- in that vlan, I didn’t find that mac addresss. Instead, I found another mac address with last 8bit are the same of that mac.
Is it some kind VIP of the mac? How so, if no port, how can the switch forward the frame? [code]
I am unable to configure an interface using the "ip igmp filter <profile #>" command on a 2960G running 12.2(58)SE2. The switch allows me to create a profile using the "ip igmp profile <profile #>" global configuration command. It also lets me enable filtering with the global "ip igmp filter" command (which I didn't see in the documentation). But, the command is not accepted when configuring an interface. "ip igmp ?" does not even show "filter" as a valid auto-complete when in configure interface mode, and the command is rejected if I try to enter it.
I verified the command worked on a much earlier version of IOS, so it must have broken somewhere along the line. I'm wary of moving up to 15.0(1)SE. Is that a major IOS change?
I encountered a problem migrating configuration from Cisco 4500 with IOS 12.2(53)SG4 to Cisco 6500-VSS with IOS 12.2(33)SXI7.
With 4500, we had 2 servers with JBoss running multicast to build up the cluster. They used 239.X.X.X multicast IP. There was no need to configure "ip igmp snooping vlan XX static XXXX.XXXX.XXXX interface X" neither static arp entry.
When we migrated to 6500 in VSS, we had to do:
mac-address-table static XXXX.XXXX.XXXX vlan XX interface X disable-snooping
With this command, the JBoss cluster worked well. The question is, ¿Is there any difference regarding IGMP in 4500 versus 6500?
I've got a pair of Nexus 7010's running vPC. I am having a Multicast issue with a cluster of Linux servers that need to talk Multicast for cluster/high-availability operation. All the servers need to talk to a single multicast address and I am having trouble getting them to communicate. I believe I need to enable IP IGMP Snooping Querier on the N7K's and it needs to be enabled on the VLAN where the servers reside. How to enable IP IGMP Snooping Querier on a VLAN ?
I recently rebuilt the configuration of our Cat6500 multilayer device for use as a user stack. The device is funtioning as it should be, but I am unable to set SSH using the 'crypto key generate rsa' command. The crytop command isn't avaiable at all, which suggests a firmware issue.
I have configured a hostname and Ip domain-name and the image is the only one available.
The show version output is listed below. show verCisco Internetwork Operating System SoftwareIOS (tm) s72033_rp Software (s72033_rp-IPSERVICES_WAN-VM), Version 12.2(18)SXF12, RELEASE SOFTWARE (fc2)Technical Support: [URL] Copyright (c) 1986-2007
I have 3560e which doesn't appear to be passing igmp traffic to the upstream router
PC1 ----------- ASA ------------ PC2--------- 3560e ----------- 3825 -------------------- WAN --------------------- Router ------------- Server
My ASA runs SMR, has an igmp forward interface outside command on the inside and has a trunk port to the 3560e (V lans 32 & 48).PC2 is a test pc on the 3560e on vlan32. 3825 is my ISPs router on vlan32.
- if i try to access the stream from PC2 it works. - if i try to access the stream from PC1, i see the igmp join leave my ASA onto the 3560E (i've captured on the 3560e's link to the ASA).
I've also captured on the ASA and i can see the igmp packet leave the outside interface but the join doesn't reach the 3825 (i've captured on the 3560e port facing the router and there is no join being forwarded).the switch is running in layer 2, 12.2(35r)SE1.
switch#sh ip igmp snooping querierVlan IP Address IGMP Version Port---------Switch# Global IGMP Snooping configuration:------------------------IGMP snooping : EnabledIGMPv3 snooping (minimal) : Enabled Report suppression : Enabled TCN solicit query : Disabled TCN flood query count : 2Robustness variable : 2Last member query count : 2Last member query interval : 1000
We have a 3750 acting as the core. By default IGMP snooping is enabled on cisco 3750 from the documents.but, when we see the ip mroute table on the switch, it doesnt show any output.
Our switch model is "Cisco Catalyst Blade Switch 3020 for HP" We are building HA (High Availability) Databases infrastructure.Currently, there are two nodes(hosts- servers) and two above switch for HA.
Oracle said we need to turn off the IGMP Snooping in order to use the multicasting for their interconnect communication.So my question is:
Q1> Is there any way to use Multicasting without turning off IGMP Snooping on Switch side?
Q2> If 'yes', how can we configure the switch for Multicasting ?
Oracle uses 230.0.1.0 & 224.0.0.251 IPs with 42000 range port for Multicasting communication.
i have a campus network with 2 core Cat6500 and multiple 4500 series distribution switches plus 2960 series access switches,we have deployed IPTV system in the network but currently 50 TVs are working through sattelite stream from streaming server Cisco's DCM 9900.we are planning to add more 300 TVs in the network and i am wondering that when all of them will be deployed then what will happen for switches cpu utilizations when all the Tvs will be running on the same time with different different channels.
If I monitor a trunkport on the rootbridge in both directions I get Duplicate Multicast Packets on the perticular VLAN. The first guess is, that this is worked as designed and not a IOS Bug (Platform CAT6500 SUP720 IOS 12.2(33)SXI9 ) Until know I only found an old Cisco press link from 2002 with this subject.
I have a 2x Cisco 3750G switches (Stacked) that are part of an IP Video Surveillance System .All network is set to 1 VLAN (VLAN 1 default).The Cisco SWs ( Core ) are configured with IGMP Querier + Snooping .Connected to the Cisco SWs are 4 Fiber Rings(Loops) for redundancy . RSTP and IGMP Snooping are enabled on all the network SWs .Network Architecture Figure :
When all Fiber Rings (Loops ) are connected , the Cisco and Ring SWs spanning-tree tables show the blocked and forwarding ports properly .I am able to connect all my IP Cams + Encoders to the Ring SWs and connect my Servers + WorkStations to the Cisco SWs to record and view the multicast ip streams .All streams from Rings 1 ,3 and 4 are getting normally to the Servers + WorkStations through multicast ( IGMP Snooping are filled correctly on the Cisco and non-Cisco SWs ) . All multicast streams are joined normally except for Ring 2 .The Multicast streams passing through Ring 2 will operate normally for around 2 hours then after that the Fiber SWs begin to flood their multicast traffic causing the cams on the same switch to drop off the network .
I checked the Configuration of all the SWs on Ring 2 but all are are the same .
What is weird is that I have to set all the streams to unicast to stop the flooding just on Ring 2 (All other rings are not affected ) then after some time if I enabled a video multicast stream on one of the SWs of the Ring it will be streamed properly to the Servers + WorkStations ( All IGMP tables along the way will be filled properly ) then again after 2 hours or so , the flooding will start again suddenly and all IGMP table entries for the SW on Ring2 will be empty . No problem occurs on the other Rings which have more multicast streams .
I am trying to bridge the traffic(including different vlan traffic) from rtrA to rtrB using "bridge-group" functionality.I achived the same using a 7200 using the below configuration. [code] When I tried the same using 7600 router ping failed between rtrA and rtrB. Then from the documents it seems "bridge irb" is not supported in 7600.Is there any other way we can achieve the same fuctionality ( eg: using switchport also fine) ?
I´m looking for an IOS on a 7609 SUP720/MSF3 that supports the NAT-PT feature (IPv4 to IPv6 translation). I searched on the Cisco Feature Navigator but the tool didn´t show up any IOS for the 760x platforms. I only got the feature "NAT-PT: Support for Overload (PAT)" with IOS 15.xS train.
I've been looking into IGMP snooping and have read that a L2 switch will forward multicast traffic to all ports connected to an interested receiver AND all mrouter ports. In a L2 'V' topology this results in all multicast traffic routed onto a VLAN being forwarded to the 2nd distribution switch. My question is how should a 6500 Sup720 deal with this unwanted multicast traffic? Both a Local SPAN of the RP and a Netdr capture suggest that this traffic is punted to the RP and ultimately dropped. Is this expected behavior or should the traffic be dropped in H/W?
3750 Stack (Voice gateway for phones configured on the 3750 and has a VPC nexus) + + + + + + (Nexus5596) ++++++++++ (Nexus5596) (Gateway for all other vlan like PC / servers / etc) + + + + + + 3750x access layer (VPC to Nexus) [CODE].....
A customer wants to upgrade an IOS Base (cat4500-ipbasek9-mz.122-25.SG4.bin) of a WS-C4507R Cisco, for a IOS that have a enterprices functionalities.We install an IOS cat4500e-entservicesk9-mz.122-53.SG5.bin, but we had the following results:
config-register = 0x2102 Autobooting specified file using Variable BOOT ..... Current BOOT file is --- bootflash: cat4500e-entservicesk9-mz.122-53.SG5.bin
I have received a sup720-3B from Cisco with an internal 512MB flash(sup-bootdisk). I want to verify what IOS image is on the disk and do not have an spare 6509 chasis. Can I remove the 512 MB flash disk and insert it to my disk0: on my production 6509 with the sup32 that the 720 will repplace and view what is on the disk without corrupting?
