I need the conception of the local network for my company. I have seen the sg300 switch that can be good for me (excuse my bad english, i am french). I have 12 servers (database + file servers) that i want to plug on the sg300 20 ports. I want to plug on it 3 switch sg300 52 ports that contains ipphone, desktops and printers. (about 70 users)
View 4 RepliesI just purchased an SG300-10 (negular, non-POE) and planning on using it with no special configuratinos initially. Longer term, will be using VLAN and QOS for VOIP.What I would like to know is if ports 9 & 10 can be used as standard copper cat5e ports, or are they only useful for special purposes? When I hookup my router/firewall to port 1 it all appears to work. If I hook it up to 9 or 10, the port lights do not come on and it doesn't work. I read that ports 9 & 10 don't have POE on the POE switch, but I assumed that all 10 ports would function with cat5e?
View 1 Replies View RelatedI'm looking for feedback and constructive criticism on our network redesign project for our company.We are currently on a 192.168.1.x/24 and running out of addresses. We are looking to move to the following design and implement VLANs as well for segregation and security. We are probably going to use a few SG300s for switches. [code]
View 4 Replies View RelatedI have spent several days tearing my hair out trying to properly configure our small business switch (SG300-10p) for voice. The phones are a relatively new addition and will replace old POTS phones.Our network consists of a 1941 ISR router, the SG300-10P switch, a mac server (handing DHCP, DNS, AFP), 4 client desktops and 4 SGA525G2 IP phones. The router, server, desktops and phones all have their own connection to the switch and the second data ports on the back of the IP phones are not used. We do not have any unified comms devices for voice. Our VOIP solution is hosted by a local SIP provider, and each phone independently registers with the provider's SIP proxy over the internet.
Left almost to it’s own devices (or presumably flat, default settings on VLAN 1), this whole setup works just great. We can TFTP files, make and receive calls, and do all the usual XML stuff. Calls are crystal clear. Even the localisation and directory works. However, I’ve been told several times that to ensure good quality on VOIP calls during periods of busy traffic, I should set up some form of QoS. A Voice VLAN on the switch, I was told, is the best way to do this as it automagically gives priority to the whole voice VLAN over the normal data VLAN.
I have followed instructions in numerous manuals, articles and guides, and have managed to create the Voice VLAN, both manually and automatically (I can watch Smartport detect the phones and see the Auto Voice VLAN add the ports to the VLAN as I connect them). The trouble is, as soon as this happens, the phones lose connectivity with the rest of the network, including the DNS server and the router, and therefore the internet, causing them to lose registration with the SIP service.
I tried adding the server and router ports to the Voice VLAN and tweaking every possible combination of tagged, untagged, excluded, trunk, access, general and PVID settings I can think of (by the way, I have no idea what any of those mean). The switch is in Layer 2 mode, but adding the port connected to the router to all the VLANs does not result in internet connectivity to the phones. I have told the phones to tag frames with the VLAN ID and told them not to. I have tried upgrading firmware and I have rebooted the switch so many times I'm tired of those wretched little flashing lights.
Nothing seems to work. And so I am stuck with everything on VLAN 1. My most recent thought is that the 1941 needs to know about the Voice VLAN (I checked CDP and it knows about the switch), but I’m reluctant to start messing with the router config when this is our production network, at least without knowing what I'm doing. I don’t even know if QoS applies when a Voice VLAN is not set up and we're on VLAN 1, some articles say yes, others say no. And when it is set up right, how does that priority transfer to the router? I’ve looked in the router manual and config options and found something called 802.1Q, but I have no idea what it is, how it works or even if it applies to our situation. Can I forgo VLANs altogether and use QoS some other way, perhaps?I have googled enough to cobble together our setup in IOS up until now. Ideally, I would still like to be able to ssh or https into each device (as I do now) for management, and I’ve read about setting up a another VLAN for config, monitoring etc, but I guess that would mean routing between VLANs in Layer 3.
it is possible to let cat3750 or 2960 ports which only allow machine on network which it use dhcp, not static ip? if so, how to configure it?
View 8 Replies View RelatedWe have a 2960 switch which is connected to the core via a VLAN trunk. We have disabled broadcast port suppression but, the 2960 is shutting is shutting 2 ports down on the network and this looks like excessive braodcast. How and why would the switch start dropping traffic when the default is don't do anything? It had to be rebooted to get the port active again
View 1 Replies View RelatedIs it possible to assign 2 ports to a vlan on this switch and have the 2 machines connected to those ports be able to see each other without having to go off of the switch? If so, how would it need to be setup on the switch?
View 4 Replies View RelatedI have to configure failover Active/Standby on my ASA 5510.I am wondering how i could do for the outside interface, i mean, actually the ASA1 outside interface is linked directly to our Internet router.So now if i have to add ASA2 connecting to that router i will need a switch between them.I have already a switch for DMZ & LAN.The thing is that i will have to allow 3 switchs ports to communicate with each others.
- 1 for ASA1--outside
- 1 for ASA2--outside
- 1 for Internet router
How could i isolate these 3 ports to make them communicate alone ? Should i use VLAN for that ?And if i use VLAN, will this require to make any change of configuration on my firewalls (ASA1 & ASA2) outside interface ?I am a bit lost with this, if i am correct i will not have to do some "vlan tagging" on the firewall itself ?
I recently set up a small photography business and am trying to get a Cisco 877 and Cisco SG300-10 switch to talk to each other.
What I want is for the Cisco 877 to handle the internet and the SG300-10 to handle the local network,
I have set up 2 vlans in trunk mode on the switch and want vlan2 to manage local traffic and vlan3 to handle the internet.
I have got the 877 connecting to the internet what I dont have, traffic going to vlan2 on the switch from the 877
Look at the running configs for the switch and the router and tell me how to get the vlan on the router to pass traffic to the switch. In a nutshell I am inserting the internet into the switch but am not sure how to progress. I have the c870-advipservicesk9 image file on the router.
Switch Config
interface gi2
description connection-to-data-vlan
exit
interface gi3
description connection-to-internet-vlan
exit
vlan database (code )
Is there an SG300 or SG500 that has all ports as SFP ports?
View 1 Replies View RelatedI just recently purchased an SG300 10 port switch. After reading through many of the threads here, I was finally able to get the different VLANs to route properly. However, I'm having a unique issue that I'm not sure if it's related to the switch or not. I currently have 2 VLANs configured on the switch.ports 1-4 are native vlan 1 (192.168.1.X) ports 5-7 are VLAN 10 192.168.10.X (Trunk Port with VLAN 1 tagged and VLAN 10 untagged)I have a Hyper-V server connected to both of these networks. The VMs are running on both VLANs on port 5. I have the following problem:When I have a domain controller VM on VLAN 10, I notice that many of the DC communications failed. I took a network trace and noticed that many of the RPC port ranges were failing. I am able to ping all of the hosts on VLAN1 and vice versa. My question is as follows:Does this switch have some type of security option that blocks high range ports? I can't seem to find the menu option indicating that this is the case. I have already set-up a NETBIOS UDP proxy, but this hasn't worked much. I still have problems connecting to machines on this VLAN range.
View 5 Replies View RelatedSo, I spent some time this weekend troubleshooting the issues I've had with the new SG300-28P switch and POE to many of my devices in the office. As a recap, I cannot utilize all of the 24 POE ports on the switch for POE purposes. Really only every other port [with a few odd combinations thrown in between]. In addition, the SG300-28P switch, on occasion, is sending POE to non-POE devices [e.g. my Ruckus Zone Director 1106].
Here are my POE devices [all 802.3 af-compliant]: 3 Ruckus 7982 access points1 Pakedge access point2 home-automation controllers2 Polycom voip phones I called Cisco support several times in regards to this problem, and they figured it was a hardware issue - a faulty switch. So, Cisco sent me a replacement SG300-28P, which I hooked up today. The exact problem still occurs. Default configuration [fresh out of the box]. No way I can land, for example, the 3 Ruckus 7982 AP's on ports 1, 2, and 3 [or ports 1,13, and 2]. I have to put them on ports 1, 3, and 5 in order for them to power up. In addition, I can't plug any other POE devices on the ports either between or below them. I had to skip another port bay. This is very odd behavior!! Two Cisco SG300-28P's in a row with the same problem.
However, I also had one of the new Cisco SG300-10P switches in my possession for a recent project of ours. I decided to hook up the same POE devices to this switch. ALL POE devices were recognized and worked! No need to skip a port. And it didn't matter what device was plugged in first or not. I am now convinced that it is either a hardware issue [bad power supply/transformer?] inside all of the SG300-28P switches, or a firmware issue.
Both of the SG300-28P switches were running firmware 1.1.2 [the latest on Cisco's website]. So, I decided to install an older firmware version on the SG300-28P switch that I'm returning [installed 1.1.1.8]. Here's what I found out. I could then plug 2 POE devices [e.g. two Ruckus AP's] in adjacent horizontal ports, but not three in a row. In addition, not all adjacent ports. It's funky. For example, I could plug an access point in ports 20 and 21, but not in 21 and 22. No rhyme or reason in how it worked. And I still couldn't plug an access point in adjacent vertical ports [e.g. ports 1 and 13]. BUT...
It's interesting that the same exact switch that would not initially allow 2 horizontally-adjacent POE ports to be utilized WOULD allow 2 horizontally-adjacent POE ports to be utilized when running a different firmware version. It's also interesting to note that when plugged into a "non-working" POE port, the SG300-28P would actually make a small whining noise. Very subtle noise; I could hear it when approx. 1ft away from the switch. The noise was not noticeable when ports were skipped [and POE actually worked]. Therefore, I believe that Cisco has some SG300-28P firmware bugs [at least in the last two versions of firmware] that is not truly allowing all 24 ports to utilize POE correctly. This problem does not exist with the SG300-10P switch.
In addition, I'd like to know when they think a solution could be created if it's firmware-related. If hardware-related, I don't think I'll be recommending any 28P switches in our projects. Perhaps just the regular SG300-28 with a separate SG300-10P. It's a shame because the SG300-28P is more of a bargain when compared to the two separate components.
I am currently having an issue with connecting a Catalyst 2960-S switch to a Small Business SG300 switch. When I connect them they are unable to form a link. When I do a show spanning-tree it says the mst link is in dispute.
View 1 Replies View RelatedEssentially, not all ports on our brand new SG300-28P switches provide Inline Power to our older 7900 series phones. I can connect the phone a couple ports down and it usually powers up, but not always. Often I can also connect an 802.3af device to one of the troublesome ports and it will received power, however I am noticing there are some ports that now refuse to supply PoE at all?
This is equipment that has been running perfectly fine for several years now, on C3524 PWR XL switches. I can also tell you that this is not isolated to one switch, but all 5 of our SG300 access switches. And, yes, the firmware has been updated to 1.1.2.0.
I recently purchased an SG300-10 switch. Is it possible to change the TCP port numbers for the administrative services on this device? For example, if I wanted to change the web admin port from being availble on port 80 to port 8080, or move the SSH port from 22 to 2022, how would I do this?
I've looked over the web admin interface, and the Security > TCP/UDP services option looks like what I want, but I see no way to change a service's listening port. Is this possible?
I want to know if the SG300-28P can support 24 ports with 15,4w per port at the same time.
View 3 Replies View RelatedI am trying to configure Cisco SG300-52 switch for the first time and stuck without CLI configuration option. The configuration can be done using GUI, however, configuring using CLI would be more comfortable (as I am used to work with CLI of other Cisco switches)..
I was able to lo gin to switch using SSH, but the CLI appears in MENU format and was not able to find any way to go to CLI mode.
As per some blogs, in SG300 switches CLI mode can be accessed using Ctrl + Z in Menu, which did not work either in my case.
Switch is running with latest firmware version Sx300 Firmware Version 1.2.7.76.
I have three Cisco SG300-28 switches. I setup a test lab environment with a core (server) switch in Layer 3 mode and the rest are (clients) in Layer 2 mode. As I understand, these switches doesn't support VTP, only GVRP. And GVRP works the same with VTP. Whenever you create VLANs on the core or main switch, other switches will learn from the core switch and no VLAN creation for the client switches will be made. (Hope I got it right. I guess GVRP is more complicated than VTP). I want to use GVRP to create VLANs on the main switch so that I won't be doing it all over on the other switches. The following is my (so far) configuration through CLI only:I haven't use the web GUI. My SW version is 1.1.2.0.
1. I already enabled the GVRP globally.
2. I configured GE 12 & GE 24 as TRUNK ports for the core switch that connects both switches, I also configured GE 12 ports for both the client switches. All other ports are in ACCESS mode. (I am connected to GE 2 port)
3. I enabled GVRP on the TRUNK ports only for all switches.
4. I allowed all vlans on the TRUNK ports. (#switchport trunk allowed vlan add all)
5. All TRUNK ports registration mode is NORMAL and dynamic vlan creation is enabled on all trunk and access ports.
6. I created 3 VLANs without configuring its IP Addresses:
-vlan 2 = MGT
-vlan 3 = IT
-vlan 4 = MKTG
I don't know if I missed something on the configuration or the connection.
1. Is it necessary to enable all switches to layer 3 mode? Or depends on the network setup? Does this affect the GVRP?
2. Does switching ports to TRUNK mode means they are already 802.1q ports by default? Because I can't configure TRUNK ports to 802.1q (#switchport encapsulation dot1q) config like other switches. [code]
try to configure QoS on a Cisco Small Business SG300 Switch. I followed the instruction on [URL] and configured one Port for tagging my Traffic from a Aastra IP Phone. Tagging works fine (i verified with wireshark).The problem is, that all traffic to a PC connected directly to the Aastra IP Phone is blocked. Is there a possibility to tag any other traffic to the port as a default?
View 1 Replies View RelatedWe are using the SG300 series switches, and have come across an issue where we need to block ARP broadcasts based on IP.
we have multiple computers, each with only one ethernet adapter, each adapter has two IPs configured, 10.10.10.x and 192.168.0.100.All machines have the same 192.168.0.100 address (Used for applications/hardware running locally to that machine and this IP cannot be changed).
When the machines are connected to the network, ARP is advertising BOTH the 10.10.10.x address and the 192.168.0.100 address.
As all machines have the same 192 address we receive IP conflict notifications on each machine.
How can the ARP broadcasts for the 192 address range be blocked?
I'm looking to configure the QOS for VOIP on my network.I have a switch SG300 and several no Cisco VOIP phone. What are the parameters to be taken to implement the QOS?
What is the procedure for installing the QOS? I need to create a VLAN for the data and one for VOIP?I read in the quick start guide that there is auto-QOS for VOIP?This can be done from the GUI? what are the options to put?
I have an SG300, configured with several VLANs. I'm replacing a E3000 with the RV180, I've got it in the environment, but I can't seem to get to the internet from hosts on the SG300.
I have Port 4 on the RV180 connected to Port 20 on the SG300...Port 20 is in the native VLAN (VLAN1) and VLAN1 is configured as a trunk. I'm relatively new to networking so I'm not sure where to start troubleshooting. I have the default route on the switch and I have the static routes for the VLANs on the router, should I be using tagging someplace?
I have a new redundant network with two cores C1 and C2 and five access switches A1 to A5. They are all Cisco SG300 switches. I have noticed there are too many STP messages emanating from one host which has a MAC address which cannot be traced on the network. In the redundant network, I made C1 the root bridge by giving it a priority of 4096 and C2 has been given a priority of 8192 so that it is the secondary root bridge in the network. I have left all other STP settings to default on the rest of the switches in the network.
The problem is that one host is advertising a RST root bridge all the time. Now it has a mac address which is different from the mac address of the root bridge itself and i cannot trace this mac address on the network. Look at the snapshot of Wireshark output in the attach.The source MAC address which is the host advertising all the time is 1c:df:0f:34:db and the root bridge is 1c:df:0f:bb:34:c4.
Why would the root bridge be resetted all the time?I've also noticed that one port in a LAG configuration on one of the access switches is flapping up and down all the time.I tried to troubleshoot this problem. It is not the cable. It would be something else. What could cause this flapping of the port?Could it be related to STP?
On the other Core switch C2 I can see a LAG status switching between forwarding and blocking all the time. What could make the LAG status to flap from forwarding to blocking and back all the time like this?
We had a number of Linksys SRW2048 / SRW2024 switches that had the "bloated capacitor issue" or "bad capacitor issue".These units would basically disconnect/connect their ports.Applications would sometimes crash on workstations.These were all located at different client sites.These were replaced under warranty with the SG300-52 units.When we implemented the SG300-52 units at several sites we noticed the the logs showed disconnect/ connects.We were not seeing apps crash.Support advised they were not aware of any issues.We did a firmware update that was available that made no difference. (1.1.0.73)6 months have now passed.
We noticed at our site very poor throughput one night doing a very heavy file copy data transfer between two computers.It actually ground all other computers on the network to a halt.We inspected the switch.It had "all lights flashing".We thought this strange and shutdown the whole system. Problem still existed.Power cycled the switch. Problem still existed.Noticed their was a new firmware update. (1.1.2.0)We implemented this.The lights on the switch stopped "all lights flashing".Throughput was back to normal. (ie didnt grind all other computers to a halt)
We then had a second site complain of similar issues.Heavy throughput between two computers bought all other computers to a grinding halt.Lights were "all flashing" on switch.Workstation would disconnect/connect in a loop during heavy file copy.We implemented the firmware update thinking this would solve the issue.It now still has the issue of disconnect/connect however and apps sometime crash.We have now replaced the switch with a HP 2510-48G.This is working properly.I have now since been to other sites that also have these SG300 switches and notice the "all flashing lights".
I have a cisco L2 SG300-10p Managed switch . I want to configure one port as a turn but cant find the command Encapsulation dot1q . Its a poe switch i want to use for both internet and voip in separate vlans.
View 1 Replies View Relatedit says that the cisco sg300-28 managed switch default system mode is Layer 2. but i want to change it to layer 3.
i can't get inside the "Console Interface Main Menu" where the switching from L2 to L3 will be done.
I have done the ff:
1. Upgraded firmware to 1.1.2.0 (latest)
2. Reset the switch to factory defaults.
3. The guide stated that in order to perform telnet to the switch, you need to enable it. So I logged in first in to the web GUI and enable telnet service.
4. I can now start telnet on the switch but I can't see the "Switch main menu".
All I can see are these lines from telnet:
User Name:cisco
Password:******
switchd5928c#
I just want to know how to get into the console interface main menu where these lines should appear so that i can change the system mode:
• System Configuration Menu
• Port Status
• Port Configuration
• System Mode
• Help
• Logout
Can a Cisco SG300-10P switch power a Cisco SG200-08 switch over POE? Or an SG200-08P power an SG200-08 via POE? I have an area where I'd like to put a small switch, but would like to avoid having to have electrical power run to it. Or will the SG300 and SG200 POE switches only power endpoint devices such as cameras and IP phones?
View 4 Replies View RelatedA client of ours has installed an SG300-24P switch and would like to setup a LAG between the SG300 and the 3560 switch we manage for them. They would like the LAG to also pass the voice and two data VLANs currently in use; 5, 10, and 100 respectively. I configured the two ports as an Etherchannel with trunking on the logical port, but no luck. I reconfigured as follows:
interface GigabitEthernet0/1
switchport trunk encapsulation dot1q
switchport mode trunk
channel-group 1 mode active
end
[code]....
I see no output when I do show lacp nei. At this point the client is looking to use for the configurations to use as he does not know how to setup the SG300 and it is a switch I have never dealt with. I have found some configurations that I believe would allow a single VLAN across, but nothing I believe will allow the LAG to pass all the VLAN's.
I am having trouble with my Cisco SG300 switch big time. I have two servers with IP addresses 10.17.0.11 and 10.17.0.29 sitting on the same switch which is a Cisco SG300. I initiate a file transfer from 10.17.0.11 to 10.17.0.29. I could see lots of Dup Acks and retransmissions which means something is wrong in the connection. Further, I could see the session initiation a bit bizarre. I could see two SYN packets sent from 10.17.0.11 to 10.17.0.29 and also two SYN ACK packets returned by 10.17.0.29. The switch forms part of a network but since both the servers are sitting on the same switch I suppose the rest of the network doesn't come into play when one server talks to the other.
See also the number of Dup Acks and retransmissions. The two switch ports connecting the servers have speed and duplex set to auto negotiate, flow control is enabled. What could cause this sort of problem?Could it be any setting on the switch or the servers' NICs?Or could it be a bad switch that causes this?
I have an sg300-10 unit. I have recently swapped it into my LAN network to replace an aging switch that was exhibiting problems.
The SG300 is reporting near constant 100% cpu load with 11pps input. there are only 3-4 active ports on the switch at a given time. One of those ports does lead to my router and another switch with another half dozen devices.
By itself this doesn't concern me overly much, but I have found that the SG300 is occasionally freezing up for about 20 minutes then restarting. Syslog and SNMP traps don't appear to provide any hints as to what is going on.
I have tied my switch into my monitoring system (packettrap MSP, so if there is something I should be watching that I am not, that would be good to know). I am still troubleshooting getting all the monitoring functions working as well.
So, I have some questions there as well, which OID should I be monitoring for CPU utilization?
I am trying to setup VLAN's in the company I work for and I am almost there but missing the part when the internet works.I have an SG300 as a L3 Router IP 192.168.0.93.I have created VLAN20 and VLAN40 Assigned VLAN20 192.168.2.1 and VLAN40 192.168.4.1
The static routes have been created and a default router going to the Sonicwall firewall at 192.168.0.1.Port 24 is configured as Untagged VLAN1, Untagged VLAN20 and VLAN40 in trunk mode and going to the Sonicwall NSA 2400. [code]
Working to move all 192.168.0.x network off of VLAN1 and move it a management switch.I have DHCP helper on pointing to the DHCP server.Both VLAN's once the DHCP server is configured to Gateway 192.168.0.93 can get an IP from the correct subnet either 192.168.2.x or 192.168.4.x
All PC's are getting a GW IP of 192.168.2.1 pr 192.168.4.1.All test PC's on both VLAN's can ping each other and any server with the correct GW.When I try to ping google.com or open a web page and try google.com it times out.
I'm trying to examine the ARP table on specific phy ports on a SG300 switch. The Cisco CLI guide shows this syntax:
show arp [ip-address ip-address] [mac-address mac-address] [interface-id]
Using the CLI and the "?" key to get assistance, I'm not successful:
switch3#show arp
configuration Display ARP related configuration
ip-address Filter ARP show by IP
mac-address Filter ARP show by MAC
[Code]...
I don't have http server enabled, I prefer SSH and CLI to do my work.
I have a Cisco SG300 switch on which trunks are configured. I have a server which sits on the switch via a trunk link of four network cables (4 Gbps total)on which LACP is enabled. I'm having trouble connecting to the server using VNC from a computer on the network. It doesn't happen all the time though, it's just random.
On looking at the logs of the switch, I saw something unusual. The trunk that connects the switch to the server is constantly removing all the member ports and adding them back again after a few minutes interval. That causes the trunk link to flip on and off all the time. What could be the reason that's causing it to happen? I know it could be the network cable but I'm using brand new cables and the server also is brand new.