Any issues with SXJ and source specific multicast? We upgraded our core from SXI6 to SXJ2 and multicast stopped working for all but our L3 links.Our L2/L3 links stopped working and the only thing that has changed is the IOS version. All the configurations are still valid etc. Currently have a call open with TAC.
View 7 Replies
I upgraded my 6509-Es (sup720s) to 122-33.SXJ3 and now the banner command can not end when I include the ^ at the end. It seems to be stuck in text edit mode IE and usually hitting enter following that brings me back to command but it doesn't do anything but bring me to the next line.
View 4 Replies View RelatedI have an environment where i have two nexus 7010 switches, along with 2 nexus 5510's. I need to run OSPF as a layer 3 routing protocol between the vpc peer links. I have 1 link being used as a keep alive link, and 3 other links being used as a VpC link.
1) Is it best to configure a separate Vpc VLAN i.e 1010
2) Is it best to configure a vrf context keep-alive
3) just have the management address as the peer ip's.
i have a linksis WRT120N and had to call someone to fix it up to the net modem when i got it but i have upgraded the speed of my net from 256KB to 1MB and now facing the same problem.when i call the net provide they said they dont support 3rd party stuff but told me itd because of conflict between router and modem.
View 1 Replies View RelatedChecking the logs we have seen the following messages:
%SPANTREE-3-PRESTD_NEIGH: pre-standard MST interaction not configured (Port-channel3). Please, configure: 'spanning-tree mst pre-standard' on ports connected to MST pre-standard switches.
%LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet1/0/1, changed state to down
%LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet2/0/1, changed state to down
%LINEPROTO-5-UPDOWN: Line protocol on Interface Port-channel3, changed state to down
%LINK-3-UPDOWN: Interface Port-channel3, changed state to down
%LINK-3-UPDOWN: Interface GigabitEthernet1/0/1, changed state to down
%LINK-3-UPDOWN: Interface GigabitEthernet2/0/1, changed state to down
When this happened, the interface that was actually blocked by STP didn't come to forwarding state, and as a result this switch became isolated.This switch is connected to a switch that runs standard MST, and to some switches that run PVST but have bpdufilter enabled as we don't want them to participate on the STP. It is a 3750 switch with software version 12.2(55)SE5.
As far as I knew, when a MST pre-standard BPDU was received, the interface was able to receive more pre-standard BPDUs, but I didn't know it would turn the link down. Why the links went down, and if there is any way we can configure those links to accept only MST standard BPDUs.
I would also like to know if there is any chance a switch running PVST can send a MST pre-standard BPDU if it has a software version 12.2(25)SEE3.
I am working in a environment that is classed as collapssed Layer 3 environment. We have a core 6500 with routed links to 3560's which are access switches.
We have layer 3 vlans on the access switches, one for data one for voice.On the layer 3 vlans we have ip helper addresses that are used for DHCP. The DHCP servers are located on the 6500.
I recently had a incident where someone plugged a netgear router into a desk point because they thought they could use it for a switch. This router then started to dish out IP addresses to people in the morning for those who came in and docked their laptops. 99% of people weren't affected because they have desktop PC's are their leases hadn't expired.
Now we have bpduguard, bpdufilter to prevent people from plugging in switches that send out BPDU's. However this doesn't prevent the above senario where someone plugs a router or a 'dumb' switch that doesn't send BPDU's.Because of the above senario I started looking at DHCP Snooping, but I am unsure on a couple of things.
With the topology of our network I understand that I don't need to configure IP DHCP Snooping Trust on the L3 uplinks to our core switch. From what I understand I just need to enable IP DHCP Snooping globaly and then on the VLAN's on the access switch (because of the L3 topology VLAN's are local to the access switches). Only if I had L2 uplinks to the core would I need to configure IP DHCP Snooping Trust on the trunk links.
is it possible to connect one Cisco Nexus 2000 fabric extender to two Cisco Nexus 5000 and use one link on the first side and two links on the other side?
View 3 Replies View RelatedWe have Cisco 4948 switches running in production. We want to moniter the trunk link through SNMP.If trunk link fails SNMP need to send notification to server.
View 1 Replies View RelatedI am still working on the design of my big project and always that you think that every thing is solve, appears a details.We need to deploy a fiber links to some buildings that will have access switches connected to the Core. I have been reading about ethernet ring topologies and quite differents to the hierarchical model because of the using of Ressilent Ethernet Protocol instead of STP or RSTP.My question is which of the next to scheme will be the best?
1.- Deployment an ethernet fiber ring topology with REP? Consider that the edge Switch of this ring will be my Core and this one is connected to my distribution switches in a hierarchical topology. In this situation, Acces Switch 1-A is connected to Acces switch 1-B, Access Switch 1-B to 1-C and Switch 1-C to the Core. Feel fre to recomend me wich switches and considerations are the best. We conssider 1 Catalyst 6506 Chasis for the Core and catalyst c2960s-48-TDL for acces, maybe the 3750x series. Each Acces node in the ring topology will have a maximun of 50 end devices.
2.- Deployment a Fiber ring but not connecting each switch with the next. In this case we want to ensure redundancy to the core wih equal costs path, but because of the ring each switch won´t have equal length link to the core. In this situation, Acces Switch 1-A is not connected to Acces Switch 1-B is connected directly to the core but the fiber cable will take the route to Access Switch 1-B, to Acces Switch 1-C and finnally to The Core Switch. This apply to the other to Switches. Note now that Acces Switch 1-A will have a 281 Ft link to the core and a second 1612Ft. link to the core. Here comes the question this differents lenght will negative affect RPVSTP ? or It doesn´t matter? Can i setup an etherchannel/load balance in this situation?
I have 2 links to 2 different departments switch with an up link of 10mb. I want to guarantee that both departments get at least 5mb, but can use part of the other 5mb that not in use. Is this possible?
View 3 Replies View RelatedI've been having a debate with a colleague about QOS COS values. My colleague says I need to use COS values across layer 2 trunk links between access layer switches and core switches. My argument is if phones are marking packets with DSCP values I don't need to be concerned with Cos.The reason I ask is we're implementing a new phone system, the ip phones will mark RTP traffic wih dscp value EF and Call signaling with DSCP value of CS3. If my understanding is correct I can trust the dscp values of the phones. We are using Cisco 4507 switches which I believe automatically trust dscp values so I would just need a class-map to match the dscp values and apply the output policy map on the egress interfaces as follows? [code]
View 3 Replies View RelatedIn a site we currently have 1 BT provided ADSL link which is currently terminated using their device which I believe is some kind of 2wire device, which is extremely slow due to distance from the Exchange (4Mbps)...We have a growing number of users here and want to install a second ADSL line from BT to give them increased performance.
We have a Cisco 2800 sat not doing much so I was wondering if I could use this to load balance the link? I know BT do not support MPPP so therefore the maximum any user can get will be the speed of a single link (4Mbps)...But basically how can this be done..
Can I leave the two BT routers in place and place the Cisco 2800 behind them, or do I need to purchase two ADSL modules for the 2800 and terminate the connection there?Also once done, what do I need to do regarding actually setting up the load balancing? I have seen this:
[URL]
But am unsure as to how relevant it is? I am not sure I understand what the ACL's are being used for? I just want all users on the LAN to load balance out...
Also I am unsure of this statement:You potentially need to add policy-based routing for specific traffic to ensure that it always uses one ISP connection. Examples of traffic that require this behavior include IPSec VPN clients, VoIP handsets, and any other traffic that use only one of the ISP-connection options to prefer the same IP address, higher speed, or lower latency on the connection.I do not understand why a established session such as a VPN client, would ever traverse the second ISP connection anyway?
WE got our ESXi servers recently moved from a 6513 to nexus 2000 FEXs uplinked to a nexus 5000s basically we have enhanced vPC and nics goin to 2 different FEXs and they uplink to 2 nexus 5000.
the Vswitch for VMs is setup in a VPC. Question is do the traffic from each vm going in/out of these nics in a vpc actually use both physical links? How can i tell from the switch?
I have a 4 port etherchannel configured to talk to a 4 port etherchannel on NETAPP server. The NETAPP server seems to be distributing traffic across all the links. The 4507 does not. It appears that traffic is going across only 2 of the for links. [code]
View 6 Replies View RelatedI currently have Nexus 5596 pair with VPC peer link Po1 between them. My goal is to connect our new Nexus 7Ks to the 5K's using Fabric Path. My question is during this inital setup with the 7K's. Can I use the same port channel number on the 7K's as I did the 5K's? Is the port channel locally significat?
View 2 Replies View RelatedI have two Core 6509E SUP2T configued as VSS and has two 48 ports fiber blades. I have two 3750s, I have two gig on each 3750 port-channle to po1 and connected to both the core, one link to each core.Now, I was asked ot add two more links on each 3750 switch to make it a total of 4 gigs on each 3750s (all 4 gig ports/uplinks will be in used an dtwo links to core one an dtwo links to core 2).when i added two additional links on 3750s and bundled them to po1, I created another port channel on core and bundeled the additional two gigs on each core to accomodate for the two additional links (ports on core switches are not consequtives).
adding these two additional ports makes the 3750 switches flap between managemnet vlan and po1.now, i am not sure if I must have added the two additional links on the core to teh current port-channel or core!? I have created another port-channel on core to accomodate for this currently!?
We were going to create a 2 port, layer 3 etherchannel between a 1002 router and a 3750X layer 3 core switch. We wanted to create bunled link between them but, now we are going to be putting a Riverbed device between the router and core switch. Because of this, would it be best to abandon the idea of creating a layer 3 etherchannel and just have 2 links from the router and core switch and have traffic load balance between the 2 links?The Riverbed will have 2 connections into it from the Core switch and 2 connections into it from the 1002 router. I was hoping to keep the layer 3 etherchannel but, do you think it would be best to create 2, /29 nets and have the router/Riverbed and Core Switch/Riverbed load balance.
View 5 Replies View RelatedCurrent Situation:We are able to reach server IP -10.203.206.40 from our 4948 switch vlan 10.30.1.0/24 through the Layer 3 interface between 4506 and 4948.
Requirements
==========
1) Now we would like to add one more L3 interface between 4506 & 4948 for redundancy purpose.
2) Make available Vlan 540 in 4948 from 4506... need to create two trunk links between 4506 & 4948 and allow vlan 540.
Trying to get the peer links to work and have them in interfaces E1/1-4 . When i do a show int status it looks like this and says sfp invalid. I see this on both sides. These same model gbics work fine attached to a FEX on these boxes.
Eth1/1 vpc peer link to T sfpInvali trunk full 10G Fabric Exte
Eth1/2 vpc peer link to T sfpInvali trunk full 10G Fabric Exte
Eth1/3 vpc peer link to T sfpInvali trunk full 10G Fabric Exte
Eth1/4 vpc peer link to T sfpInvali trunk full 10G Fabric Exte
Gbic in ports are this.
Ethernet1/1-4
transceiver is present
type is Fabric Extender Transceiver
name is CISCO-FINISAR
part number is FTLX8570D3BCL-C1
[code]....
we have multiple Video production networks, with Video servers (AVID Unity ISIS) connected by 10GE fiber links to 4948-10GE switches. On almost every of these switches, I see more or less "Sequence-Err" interface errors. We do not currently have a known problem because this, and no other errors are seen. But I would like to understand the error, and therefore I would like to find out, what a sequence error means, what the cause is, and what the impact (to a frame) is?
By the way, it is well-known that the ISIS Video server does generate very excessive UDP data bursts. Maybe this matters? On Cisco doc I did not find an answer. The document "Troubleshooting Switch Port and Interface Problems" does unfortunately not refer to "sequence-err".
Here is an example output:
WS-C4948-10GE#sh int t1/49
TenGigabitEthernet1/49 is up, line protocol is up (connected)
[code].....
I have two stacks 3750X on two different sites with two links L_2_L, and I want to configure the port channel to aggregate the two links.
Site A Site B
3750X -A1 --------------------------------------( )--------------------------------------- 3750X -B1
( L-2-L )
3750X -A2 --------------------------------------( )--------------------------------------- 3750X -B2
Below the configuration that I have put the two stacks.
site A
interface Port-channel5
description Etherchannel group entre le stack 3750X-A et Switch Lan_2_Lan
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 11,12,999
switchport mode trunk
switchport nonegotiate
speed 100
But the problem is only one link is Bundeled in channel group, see below
Group Port-channel Protocol Ports
------+-------------+-----------+-----------------------------------------------
5 Po5(SU) LACP Gi1/0/15(I) Gi2/0/15(P)
We are experiencing two of our layer 3 switches (3560 PoE and 3750 PoE) switches giving us problems with giving power to IP phones. These switches have an embedded PoE module and would previously give power to all IP phones on all its ports. Now all of a sudden over the past few months 6 of these ports have stopped powering phones. The phones are the same ie. 7911 and they take less than 15.4 W. We believe that the PoE module has started malfunctioning and has stopped giving power to all the ports. The port 'grants' power and then removes it. Below is a link showing all the messaged we receive on the terminal session. It is NOT a hardware fault with the PoE: [code]
View 2 Replies View RelatedI am setting up a Cisco 1941 series router for our department in Denmark. As we quickly relised we had to reset the router to it's defult settings. As we comunicated with the router thorugh HyperTerminal, the router asked me to restart. After we did so the router only sends encrypted messages wich is unreadable. We neither get any respons in the terminal when we try to write commands back to the router.We have tried to use different terminal programs as well as the USB port on the router.
View 4 Replies View RelatedMy internet stopped working all of the sudden on my 2nd computer my 1st computer works fine (using atm) my 2nd computer stopped working all of the sudden it worked fine for about 2 years but the internet just went off for some reason it shows a computer with a yellow triangle with a black exclamation point on the bottom right corner it says connected but with limited connectivity ive tryed everything i know it is a windows XP i even bought a new internet cable today and the computer still does not work im new to these forums.
View 1 Replies View RelatedI've had 1 to 1 NAT setup for years now with no issues and the other day it simply stopped working. Rebooted everything, had ISP clear arp on their cable modem yet nothing going. As soon as I remove the 1 to 1 NAT on the router the PC has internet access. Add the 1 to 1 back and no out going internet. The configuration is pretty basic and has not changed.Thinking it could be a hardware issue I swapped it out with another RV042 I have with the exact config, same thing 1 to 1 NATs have no internet access. Upgraded one of the RV042 firmware to Firmware Version: 1.3.13.02-tm, had cable modem replaced, spent numerous calls with ISP. nada
I have found one interesting thing however, any internal machine which is set to dhp works fine, and static ip that does not have a 1 to 1 nat works fine and the last ip in the 1 to 1 nat range works fine. If I extend the range it is always only the last ip that works. Even if I add 1 to 1 nats one line at a time, it is always the last entry that works..
I was installing a IIS server to our client and created access - rules for http server and port translations. After that i noticed i lost local lan access trough vpn. Anyconnect and ipsec vpn. No other changes made to asa than those access-rules and nat changes. I'm trying to find out what is wrong, vpn connects okay, i can ping ASA but nothing else on inside network (for example dns server). Dns is not either working. When i ping local server, i can see in log.
View 8 Replies View RelatedI can no longer SSH to a primary active firewall. It had all of a sudden stopped working. However I am able to SSH to the secondary standby firewall without any problems. I did try to regenerate the RSA key on the primary fw, but still unable to connect. The only way I can connect to it is by using telnet.
I ran the "show asp table socket" command and I'm seeing port 22 listening on the primary IP address (not the standby), foreign address is 0.0.0.0:*. I did a packet capture on port 22 on the inside inside, seeing my request hit the fw and then right away a reset back from the fw.
version 8.2.(5)
model ASA5520
I'm hitting a bug in the software version I'm running? Or what else can I check before rebooting the primary fw?
it stopped booting up and now i cant talk to it.
View 5 Replies View RelatedI have tried a lot of drivers and even tried installing Vista 64 bit drivers (something that worked for someone in some thread), but it won't work.The adapter is recognized by the computer, but the smart wizard won't launch.
[code]...
My router has been working for close to 4 years now with minor problems, just stopped yesterday, All my PCs lost wifi access and then when I looked at my Linksys WRT300N only the 4 Ethernet port lights were on. Unplugged plugged it again, I connected one of the PCs to the one of the Ethernet port, the PC is reporting that there is nothing connected to the other side. It's been 4 years already, I do have a Linksys wireless G router even older than this which is till working. I guess its spoiled, I don't mind replacing it
View 4 Replies View RelatedI have been using a d-link router for some time now and since yesterday it has stopped working ( I have an orange 'world' light on all the time) After looking around this site I have tried resetting etc and nothing works. If I plug the ethernet cable into the modem I can get on the internet if I plug the cable into the router then nothing. These are the details I got from the config all when I plugged the ethernet into the router.
View 3 Replies View RelatedRandomly my router stopped working in the middle of the night. I didn't think the issue was with the router so i called the Tech Support people from Brighthouse and they told me to connect directly to the modem so i did that and I had internet. But why would my router randomly stop working, I've had this Linksys Dual N bound router for a year and never had a problem with it. I want to think that its the internet providers fault but I guess I really don't know.
View 2 Replies View RelatedI have a toshiba satellite laptop (windows 7) with wireless on-board and an ethernet cable port. Up until last night, both worked flawlessly since I bought the computer a few years ago.
Now, the wireless still works in three different locations I have tried (i.e. three different networks), but the ethernet cable will not work. I thought it was the ethernet connection on the mobo at first, but then after acquiring a USB-NIC connection, I found I had the exact same problem... I can't connect to my router or even direct to the DSL modem using a ethernet cable. I know my system is good since all my other computers (7) work with wired connections, and my laptop doesn't work on other cables on which other computers do. Essentially, it appears that my computer has lost the ability to get an i.p. address using an ethernet cable of any kind. Both the onboard card and the usb-nic cable tell me they are 'working correctly' in the systems/devices/network adapters section. I have tried disabling one while trying the other. I have tried disabling the wireless while trying either, and still nothing.
