Cisco Switching/Routing :: Impact Of Deleting And Creation Of SVI Interface On PBR 6513
Apr 22, 2013
I have a query regarding the deletion and creation of one of my SVI interface on 6513 ,The reason behind it as follows.My traffic get to Internet in this manner
proxy(external int.)[IP:192.168.1.30] --> Gi0/9[6513 in VLAN 170] --> SVI VLAN 170[IP:192.168.1.10] --> Gi0/10[In VLAN 170] -->ASR[IP:192.168.1.20],I need to assign this VLAN ie 170 to my inside interface of firewall but it was mentioned in books like this "Assign the VLAN for the FWSM before it is applied to the MultilayerSwitch Feature Card (MSFC)." so I am thinking the following steps to assign VLAN 170 to firewall group first before creating SVI Interface for it
1.Remove all currently assign ie Gi 0/9 & Gi0/10 interfaces from this VLAN and then delete this VLAN.
2.Create the same SVI ie VLAN 170[IP:192.168.1.10] by this way the issue can be resolved.
As in part of my configuration PBR is define like this .
interface Vlan170
description "PUBLIC IP VLAN"
ip address 192.168.1.20. 255.255.255.0
ip policy route-map NAT
route-map NAT permit 10
match ip address 101
set ip next-hop 192.168.1.10
I need to clearify what impact it may have on PBR part if I delete and create the VLAN 170.Will the traffic move to the inside interface of FWSM.
View 0 Replies
ADVERTISEMENT
Feb 20, 2012
How much is the limit for the creation of PortChanel in a Core Switch 6509 and 6513?Is there a limitation byu hardware?
View 7 Replies
View Related
Feb 25, 2012
We have a Cisco 6513 Switch. During some parts of the day it is having large amounts of transmit discards on a certain interface because of the amount of data we are pushing. We have determined it is a link problem and not a problem with the switch. The link cannot handle the amount of packets the switch is pushing out. I was wondering if there is a way to create a buffer or a way to regulate the maximum amount of packets that can leave that interface without losing any packets?
View 5 Replies
View Related
Nov 12, 2012
I have created 5 new 2 Gig port channels on a 6513 WS-X6516A-GBIC blade connecting to 5 4510R+E switches. 3 of the 5 Port-channels show up/up. 2 show down/down. However, for the 2 showing down, a duplicate Po interface was created with an "A" appended to the name that shows up/up. E.g:
Port-channel26 unassigned YES unset down down
Port-channel26A unassigned YES unset up up
Each of the 4510s has a second 2Gig PO to another 6513 with an identical config and all of those come up fine.
View 2 Replies
View Related
Oct 29, 2012
we have a chassis 6513-E and a module WS-X6748-GE-TX, I'd like to know if could I put this module in any slot, since the documentation from Cisco says that any slot from a chassis 6500-E Series can support this module. And then in the documentation of WS-X6748-GE-TX says that this module is not compatible in the slots 1-8 of the 6513 chassis, only from 9th to 13th slots, in those slots from the 6513-E we already have 4x WS-X6748-GE-TX, and we'd like to know if could we put the module in the rest of the slots. The 6513, and 6513-E is kind of confusing.
View 4 Replies
View Related
Jul 26, 2012
Adding a vlan 820 to existing port channel trunk which currently allows many vlans. What is the best way to add vlan820 with least impact to network. Portchannels from 6513 core with IOS to Nexus 5k,Copy existing vlans, add 820 and paste under: switchport trunk allowed vlan 1,2,5,12,20,820
View 6 Replies
View Related
Apr 4, 2012
We plan to implement a large number of ACL on our Distribution switch which is a HSRP pair of 6509C switches running on sup-bootflash:s72033-psv-mz.122-18.SXD3.bin WE need to divide the Network in three layers
unsecure layer
Proxy layer
Secure layer
We have approximately 250 vlans on the our distribution switches and plan to implement 15 ACL on different vlans Each ACL can contain upto 30 lines or less.
basic ACL example we will be applying on different vlan
vlan 200
ip access-group test123 in
My question is Can these ACL on a vlan can have a massive impact on the 6509 CPU ?
View 1 Replies
View Related
Mar 4, 2013
I am running HSRP on three 4506 switches..S1(active) S2( standby) and S3(listen)..S1 is active for all the vlansRight now, I wanted to make S3 active for two vlans: vlan 10 and 19What would be the impact to the end hosts?Also, can you tell me why the arp is not syncing for all the three devices? [code]
View 4 Replies
View Related
Sep 13, 2012
I wanted to know if there is a way of upgrading the IOS on a stack of 6 - 8 3750's with minimal impact at reload. Is there a way to reload one member at a time?
View 3 Replies
View Related
Jan 31, 2012
Well I have been back and forth on this a while now...I have a 6513E chassis that is getting prepped for prod. I am currently testing sso functionality and I can only get it to work using the following images on both Sup Cards.
s72033-adventerprise_wan-mz.122-33.SXI5.bin
If I try any other image, smaller or bigger in size...it forces my Sup card in mod 8 to recycle " proxy request from peer ". I have tried K9 images and non K9 images. Here is an output from sh redundancy.
Redundant System Information : Available system up time = 4 minutes Switch overs system experienced = 0 Standby failures = 0 Last switchover reason = none [code]...
View 2 Replies
View Related
Jul 31, 2012
I have a new 6513 with 2 sup32's with IOS. This chassis will replace a working 6513 with 2 sup2's with CatOS.I need to pull the running config from the CatOS chassis and make it work on the IOS chassis. i can do this manually but was wondering if there are any trade secrets on doing this.
View 3 Replies
View Related
Nov 21, 2011
I am replacing a faulty sup720 on a 6513. It s the backup/hot not the active sup. It has the same IOS on it. Is it correct that all I need to do is remove the faulty and replace it with the new sup and do a wr mem? Fromwat I have read their should be no down time all connectivity should remain stable?
View 6 Replies
View Related
Aug 9, 2012
I have a 6513 with redundant sup 720-3B's that I cannot get onto. In short, one of the power supplies failed, it still passes traffic but I can't console or ssh to the box. Other than the two sup 720's, I have a 4 port 10gig card, a 16 port GBIC Card and an IDS module. I have tried removing the 10Gig, IDS and one of the sup's but still don't get anything on the console. I have rebooted the entire chassis and don't get anything on my console while booting. I have tried changing the speed of my terminal to every setting available incase someone has changed it at some stage but to no avail. I have tried swapping sup's, using only one at a time in the chassis but not getting anything. Is there anything else I can try to get onto this chassis? The power supply is a 3000w with a 32amp input. The failed power supply had tripped a switch, when i brought it back up, the power supply came out but the output failed LED is on. My #questions are, is there anything else I can do to try get onto the console, and is the power supply goosed when the RED LED is lit? I have reseated the power supply also but the same result.
View 2 Replies
View Related
Apr 18, 2013
Are there any EOL notices out for the Catalyst 6513, 6509 etc E chassis? I cant find anything on the internet for the E variant, so assume this hasn't had a notice published yet.
View 2 Replies
View Related
Mar 10, 2013
My question is regarding VSS configuration on Cisco 6513 switches. My understanding is that the hardware and software configuration on the devices must be exactly the same for the VSS to function correctly. Do the Bootstrap versions also have to be identical?
The production switch is running Bootstrap Version 12.2(17r)SX5, while the new switch is running Bootstrap Version 12.2(17r)SX7.
View 3 Replies
View Related
May 16, 2012
I was working on adding a Cisco 6513 to TACACS but ran into trouble. While I work on the issue offline (recreate and test another switch), I wanted to place this switch on radius temporarily.
For some reason i cant undo/delete the AAA commands in order to point to my radius server. Below was done via console: [code]
I disabled my telemetry port on the Cisco 6513 as a precaution. The IOS im using is "s72033-advipservicesk9_wan-mz.122-33.SXI5.bin".how to remove the AAA authentication statement. Hope its not intrusive cause i have a customer on the box.
View 8 Replies
View Related
Aug 24, 2012
i have a cisco Netowtk Analysis module installed on a 6513 core switch which is NAM-1, the version on the NAM is 5.1 and we need to upgrade to the latest version which is 5.1(2)
View 1 Replies
View Related
Jul 12, 2012
I have a need to capture some traffic but my core 6513's are already using the limit of 2 span sessions. I can't edit any of the sessions either because I want to source traffic from vlans and you can only do one or the other. Is using a VACL with 'switchport capture' on the destination interface an option ? E.g. I want to source traffic from vlan 10,20,30,40 and send the all to interface Gi10/10 ? Is there any caveats ? I dont need to be too granular with the ACL's but just capture all traffic in those vlans.
View 2 Replies
View Related
Apr 28, 2012
We have Communication Media Module (WS-SVC-CMM) mounted on 6513 switch. It went down twice and we brought it up by applying "power enable module".
View 4 Replies
View Related
Mar 20, 2013
Need your expert input in sorting out the below problem.I have a cisco 6513 switch which is going into SP mode after a reboot whci i have done during BCP activity in my organization.Below are the log for your reference.
Code...
View 1 Replies
View Related
May 9, 2012
i have a Cisco 6513 it is used one, i have tryed to boot it but it did not work, it alwayes go to rommon mode and i am not able to know what is the issue,
when it boot i get the below outpot from the switch.
System Bootstrap, Version 8.1(3)
Copyright (c) 1994-2004 by cisco Systems, Inc.
Testing lower main memory - data equals address
[Code].....
View 3 Replies
View Related
Jun 4, 2012
I am getting conflicting info about this, and need to get confirmations.Is the older 6513 (non E) model compatible with WS-X6407-10GE blade?The switch we're getting this for have WS-SUP720-3B, 6000W power supply, and WS-C6K-13SLT-FAN2.From what I read they are compatible if entered in slot 9-13, but I also heard that 10GE modules are not compatible with the non E chassis.
View 1 Replies
View Related
Feb 24, 2012
We have 2 6513's that are linked via 2 10 gig interfaces, using an LACP channel.I received an alert this aft stating that the far 6513 was unreachable and the port channel int PO3 had gone down, the 2 10 gig interfaces had also gone down on either side. 5 mins later PO3 had resestablished itself and has been fine since. [code]
View 4 Replies
View Related
Jul 11, 2011
We have a pair of 6513s and upgraded the IOS version to 12.2(33)SXI4a. After the upgrade we noticed VTP Pruning was disabled: [code] Is there any effect to production we need to to consider when re-enabling? (In other words, do we need to wait until a maintenance window to enable?)Also, we are using VTP v2 (and v1...) on our VTP Client 3560 access switches.
View 2 Replies
View Related
May 8, 2013
I have just buy a 10G card for Cat 6513, these are information: PDCMSFC-1>sh module
Mod Ports Card Type Model Serial No.
--- ----- -------------------------------------- ------------------ -----------
2 16 SFM-capable 16 port 1000mb GBIC WS-X6516A-GBIC SAL08373Z37
7 2 Supervisor Engine 720 (Active) WS-SUP720-BASE SAD08330322
Mod Sub-Module Model Serial Hw Status
--- --------------------------- ------------------ ------------ ------- -------
7 Policy Feature Card 3 WS-F6K-PFC3A SAD083207AL 2.4 Ok
7 MSFC3 Daughterboard WS-SUP720 SAD0832037Y 2.3 Ok
About card: WS-X6716-10G-3C
When I install this card on Cat 6513, has a message: " fan tray no support"
View 5 Replies
View Related
Aug 1, 2007
I am running a network comprising of Catalyst 6513's with SUP7203B's. at present we have 800 VLAN's as we make use of a VLAN per access layer switch model.
I know have a problem that as soon as I enable multicast routing my SUP720's CPU runs at 100% and the system goes into a slowdown.where I can find information on the scalability of Multicast?
View 15 Replies
View Related
Mar 29, 2012
We have a 6513 with about 8 switches in it. I installed a Intel Pro PT NIC in a Dell PE2850 and setup the Team setting which created a bridge in the network connections.
10 minutes later, every server connected on that 'blade' went down and rebooted.
This happened once before to another tech here (I didn't know at the time it would do this but after he saw it he pointed it out)
View 2 Replies
View Related
Jan 9, 2012
We currently run 1 Cisco 6509 (CatOS) for our production network. It has multiple vlans which feed distribution switches on each floor in 2 buildings. Essentially each floor is its own vlan. Each floor switch is connected back to the 6509 via fiber connections. We also have several production vlans that our VMware and AIX environments connect to.
I would like to phase out the the 6509 and replace it with a new 6513 chassis, sup720's etc. Currently it is sitting next to the 6509 in the rack. I need to limit downtime as much as possible but can get one shutdown window over a weekend. However I dont think it would be enough time to move all of the existing etherconnections etc etc
So I am looking to run them both at the same time and slowly migrate over to the 6513 over the next few months.My solution was to use the 6513 (IOS) in L2 mode only for now and trunk it back to the 6509 via 4 1 gig connections in a LACP config.
So the 6509 would still be handling all of the L3 routing for now.Once I had moved all of the fiber and ethernet connections over to the 6513, I would use the shutdown weekend to configure the 6513 for L3 and essentially turn off the 6509 at that point.
My questions are
- Is there a better way to do this ?
- By trunking the 6513 to the 6509 do I need to worry about any loop issues ?
- I am aware of the oversubscription issue for the port channel and have spread the 4 interfaces over the different groups of asics.
View 6 Replies
View Related
Nov 15, 2011
I am unable to find a sample config that doesnt use autoqos.
I need to enable QOS on a 6513 that I am using as a access switch.( loaded with WS-X6148-45AF). I am running SUP2MFSC2 with IOS and autoqos is not supported.
Below is my IOS version and my requirements.
Requirements:
Trust CoS and DiffServ Value coming from Avaya equipments
DiffServ=46 for Audio and DiffServ=26 for Signaling
CoS=5 for Audio and CoS=3 for Signaling
I am running the following IOS:
IOS (tm) s222_rp Software (s222_rp-IPSERVICESK9_WAN-M), Version 12.2(18)SXF17b, RELEASE SOFTWARE (fc1)
Sample Port config:( Vlan 709 = Data,Vlan 809=VOIP)
View 2 Replies
View Related
Sep 3, 2012
I am working on Multicast scenario, There is one 6513E switch one 2960 switch. Two VRF's are configured in core switch (6513) IPTV-SRV and Villa-VRF IPTV-SRV vrf has IPTV server and Villa-VRF has IPTV i.e. client.
V LAN 30 is mapped to IPTV-SRV vrf with subnet address 192.168.30.0/24
V LAN 12 is mapped to Villa-VRF with sub net address 192.168.12.0/24
I did the following configuration for VRF but its not working . i am not an expert in multicast design but seems i did most of the configs.
ip vrf IPTV-SRV
rd 30:1
mdt default 232.1.1.1
route-target export 30:1
route-target import 10:1
[code]...
View 3 Replies
View Related
May 27, 2013
I am looking for any assistance with an issue I am having. Within my network, I have two Net App enclaves that replicate with each other. These hang off of separate switches, one at our primary site and one off of our secondary site, just a few miles away. I can replicate from the primary site to the secondary site at 8GB per minute. From the secondary site back to the primary site, however, the replication passes at about 17MB per minute.
The configuration is exactly the same on both ends. The primary Net App enclave hangs off of a 6513 switch and the secondary Net App enclave hangs off of a Nexus5000. Trace routes and pings all show correct paths and connectivity. I have troubleshoot this for a few days and I have been unable to figure out what is causing the replication issues. The fact that this is bi-directional traffic and I am having problems one way is really throwing me off. There are no ACLs or firewalls present between the two switches.
View 1 Replies
View Related
Apr 22, 2013
Actually I am new to this ASR , in my environment my 6513 is connected ASR , I want to know how can we access and configure VLAN on Gigabit interface which is connected to 6513.
View 9 Replies
View Related
Jan 18, 2012
Ask this question, if someone came across a 6513, one of the RJ45 ports are constantly falling.The question is how to disable logging on a specific portno logging event link-status does not work.
View 1 Replies
View Related