Cisco Switching/Routing :: VTP Server / Domain Configured On 6509
May 14, 2012
In the following scenario, how will the 2950/2960/2960S series behave:
- VTP server/domain configured on a 6509
- A access switch (2960) currently configured in transparent mode with all VLAN it requires
Will the switch drop any traffick if we change it from transparent to client mode if the VTP server has the exact same vlans defined as the access switch had when it was in transparent mode?
View 9 Replies
ADVERTISEMENT
Apr 1, 2012
We have a working PBR route map on a 6509 switch and a 3750 switch, each in different locations.On both devices, the route-map is configured to match on one of multiple ACLs, then set the next hop to a directly-connected IP address, like so: [code]
When copying in the ACL contents for "ACL20", they were accidentally copied in to the ACL1 list, and ACL20 was never created. Shortly after this was done, the next hop router went unreachable in both locations. Pings failed and the 6509 and 3750 each lost the EIGRP adjacency to the 1.1.1.5 router. After troubleshooting, I removed "match ip address ACL20" and connectivity returned.
My question is...if a PBR route-map tries to match on a non-existent ACL, what happens? Does it mark the next hop unreachable (even though it's directly connected) or does it match for ALL traffic and send *everything* there (thus, making it appear unreachable, as if a broadcast storm was happening)?
View 5 Replies
View Related
Mar 25, 2013
I have two switches 6509 one switch is confire with VTP domain ABC Other switch is configure with ABZ, At present the switch is configure with the L3 interface and one fiber cable is connected between two switches.I want to remove L3 configuration wants to make L2 etherchannel and wants to ceraeate Loop back will assing same ip both side.The OSPF is configure both side , i will not do any changes in the OSPF as L3 ip is advertise in OSPF.
View 1 Replies
View Related
Nov 21, 2011
I currently have a couple of 6509 chassis (router/switches) with the following hardware blades:
x3 48 ports
x1 NAM
x2 Sup720
Running 12.2(18)SXF3
I am keeping the four Sup720 modules and have purchased new versions of the others blades including two new 6509-E chassis?Can I take my stand-by Sup720 out of the production machine and insert it into the new chassis?
View 2 Replies
View Related
Nov 21, 2011
I currently have a couple of 6509 chassis (router/switches) with the following hardware blades:
x3 48 ports
x1 NAM
x2 Sup720
Running 12.2(18)SXF3.I am keeping the four Sup720 modules and have purchased new versions of the others blades including two new 6509-E chassis. Can I take my stand-by Sup720 out of the production machine and insert it into the new chassis?
View 2 Replies
View Related
Apr 4, 2011
we have a cat6509 with FWSM. We pass to the FWSM several VLANs. AllL3 is assigned to the FWs.In the Cat6500 log we have received this message %SVCLC-5-FWTRUNK: Firewalled VLANs configured on trunks ,when we configure 2 vlans in a trunk to an ESX server (these 2 VLANs are alreadyassigned to the FWSM).Idea is to share an interface to a ESX server with several VLANs, some of them are assigned also to FWSM.
View 1 Replies
View Related
Feb 19, 2012
I have a few 3560E running Ver 12.2(50)se2. Can these boxes be configured to run VRF. I see a "sho IP VRF" option, but I do not see it available when under config t. Do I need to do a IOS upgrade to be able to configure VRF?
View 7 Replies
View Related
Mar 5, 2013
I have an 2960S all configured, with vlans, ports configurations and others.Now, I bought other 2960S and two stack modules to create a stack with these 2 switches.We call:
-Switch1 (I have configured and in production)
-Switch2 (New switch, no configured)
Can I connect these two switches in stack without lost the configuration of my Switch1 and no turn-off this switch? Does not stop the users access?
View 1 Replies
View Related
Feb 14, 2012
I've created the VLAN on the Database but it tells me that there are no VLANs configured when i issue the command. Both VLAN 110 and 111 status are down, down.. Below is my config:
Building configuration...
Current configuration : 15817 bytes!upgrade fpd autoversion 12.2service timestamps debug uptimeservice timestamps log uptimeno service password-encryptionservice counters max age 10!hostname Router!!no aaa new-modelip subnet-zero!!!ipv6 mfib hardware-switching replication-mode ingressvtp domain Marinersvtp mode transparentmls ip multicast flow-stat-timer 9no mls flow ipno mls flow ipv6no mls acl tcam share-globalmls cef error action freezeno scripting tcl initno scripting tcl encdir!!! !!!!!!!redundancymode ssomain-cpu auto-sync running-configspanning-tree mode pvstno spanning-tree optimize bpdu transmissiondiagnostic cns publish cisco.cns.device.diag_resultsdiagnostic cns subscribe cisco.cns.device.diag_commands!vlan internal allocation policy ascendingvlan access-log ratelimit 2000!vlan 110name Data!vlan 111name Voice!vlan 112name Video!------------Output
[code]....
View 4 Replies
View Related
Feb 10, 2013
I'm working on my CCNA. I purchased an old router 2610 with two ethernet ports. I configured the IP addresses on the interfaces and added the default gateway. I configured NAT to go out my ATT DSL router to the internet. With the 2610, I'm able to ping the back end or internal DSL router, but I can't ping the front end, external router, or out to any internet site such as google.
View 10 Replies
View Related
Aug 21, 2011
I have cisco 881 and configured with http access, but when i try to open in browser it's shows blank page. Is the Cisco 881 supports GUI ?
View 3 Replies
View Related
Sep 10, 2009
I am trying to figure out what is heat dissipation of a C6509-E configured as follows:
1 x WS-C6509-E-FAN
1 x VS-S720-10G-3C
1 x VS-F6K-PFC3C
8 x WS-X6748-GE-TX
8 x WS-F6700-DFC3C
2 x WS-CAC-6000W
I have tried two ways: 1) the power calculator and 2) manual calculation using the C6500 installation guide.
1) The power calculator says 13630 BTU/h
2) Manual calculation says: [code]
The there should be also the two PS in the picture, and the new total should be: [code] Well, 62711 BTU/h looks quite a bit too much and I think that the heat dissipation of the power supply should't be considered in the calculation.Isn't it an item that takes power from the grid and that generates heat according to its efficiency as the other modules?
View 2 Replies
View Related
Feb 24, 2013
Trying to apply this config to a 2900 router and getting this error message. [code] This works ok in in a 2800 router using 12.4(25d) spservices IOS
Not working on 2911 using 15.2(3)T2 ipbase image.
View 3 Replies
View Related
Jan 11, 2012
We are trying to test multicast between VRFs configured on Nexus 7Ks. Two Nexus 7Ks are configured for VPC. Multicast Server is in one VRF where as Receiver is in another VRF. The two VRFs are connected to each other via Checkpoint Firewall (Active/Active cluster in unicast mode). All routes have been established and connectivity tested between multicast server and receiver using ICMP.Using, windows mcast.exe multicast stream is generated from server (in one VRF) intended to be received by receiver (in second VRF). Every time, only one multicast packet is received by the receiver and rest all packets are being dropped. Server and Receiver are VirtualMachines configured on VMWaresame chassis which is connected to two Nexus 5Ks (VPC configured).
View 1 Replies
View Related
Feb 23, 2012
I have a switch that I have configured for jumbo packets, but they don't seem to be functioning. I have set system mtu jumbo 9000. The hosts are connected via 2x EtherChannel links. The hosts are jumbo frame enabled, and can ping their own local address using jumbo packets & do-not-fragment flags on the pings. They cannot, however, ping each other or the switch that way - it always says that the packet requires fragmentation. I know the attached machines (they're all VMs) and virtual switches support jumbos because I can ping within the virtual interfaces of the VMs. It's just traffic that goes over the switch that fragments.The switch is a WS-2960G-48TC. Here are the various outputs, with a section of config at the end.
hrnacancwtdevs3#show system mtu
System MTU size is 1500 bytes
System Jumbo MTU size is 9000 bytes
System Alternate MTU size is 1500 bytes
Routing MTU size is 1500 bytes
[code]....
View 3 Replies
View Related
Sep 27, 2012
how my switches are configured, a cisco 3750 and a cisco 4506.[code] i can ping the gateway from the 3750 however cannot get anything past that or enything to it.
View 12 Replies
View Related
Aug 19, 2012
I have two Cisco 4506's running cat4500-ipbase-mz.122-50.SG3.bin. Periodically, when attaching a new workstation to these switches the Mac Address of the device disappears off the port when the device is connected or the port is configured. The only way to correct the issue is to do a hardware reset on the blade or reboot the switch. After resetting the blade or rebooting the switch the devices will start showing up on the port and connect. This does not effect devices that are already connected to the switch, just newly added devices
Both switches are populated with WS-X4148-RJ45, WS-X4148-RJ45V and WS-X4248-RJ45V blades. It doesn't matter which blade the new device is being connected to. I believe that this may be a "Bug" but have been unable to locate one.
View 3 Replies
View Related
Feb 18, 2013
I configured port security on my 2960 switches with the following commands: [code]
The problem is that when I should change someone's PC, first I disable port-secirity, then I clear all the mac addresses learned on the interface, then I plug the new PC and enable port-security. The new PC couldn't connect to the network and it's mac address has not be learned on the interface. Why?Which commands should I use to clear an old mac address and enable port-security with the new mac address.
View 4 Replies
View Related
Apr 23, 2012
I would like to know how many port channel can i configured in the switch 3750 X ? and if there is a limitation by IOS ?
View 4 Replies
View Related
Mar 21, 2013
I have configured Cisco 1841 router PAT buts its not worked, find the below configuration details,
In LAN interface
Interface gigabit Ethernet 0/0
no shutdown
[code]......
Similarly I have configured static and dynamic nat but its not works in my customer place.
View 18 Replies
View Related
Jan 10, 2013
i've been using a VPN to connect to my home network from elsewhere for a few months. It's set up as follows:
PPTP
Maximum Strength Encryption
EAP-MSCHAP-v2 Authentication
Now I find out that MSCHAPv2 authentication has been broken and is no longer considered secure (even by Microsoft), so I want to change the protocol I'm using to make it secure.
However, I've spent 3 hours now researching this and I cannot for the life of me figure out how to use a better protocol on my Windows Server 2012 home server. I've tried setting up PEAP authentication (still PPTP) a la Microsoft's recommendation document, but it requires a certificate. I've created a self-signed certificate but it seems I can't issue certificates (via this method) without being a member of a domain, so I'm stuck. I can't even get started with L2TP since I can't find the option for it.
My question is this: Is there a way to setup a secure VPN server using Windows Server 2012 without a domain? If so, how do I do this?
View 1 Replies
View Related
May 23, 2012
I has a issue about etherchannel beetwen 02 Catalyst 6500 switch, i need your comment about it. if you had any similar experience:
1.- On Catalyst Switch 6500-1: I configured interface port-channel 4 and associated it to G6/29 and G6/30 interface Port-channel4description IUU1_Gn1_HLIMSGSN01_Port_channel_6_29_6_30switchportswitchport trunk encapsulation dot1qswitchport trunk allowed vlan 406,408switchport mode trunkswitchport nonegotiatelogging event link-statusload-interval 30mls qos vlan-basedmls qos trust dscp!
2.- On Catalyst Switch 6500-2: I configured interface port-channel 4 and associated it to G6/29 and G6/30
interface Port-channel4
description IUU2_Gn2_HLIMSGSN01_Port_channel_6_29_6_30
switchport
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 407,409
[code]....
and i see output "show interface Po4A" up up on switch-1, "show interface Po4B" up up on switch-2
5.- In the show running-config not appear configured Po4A and Po4B. it only show on outputs
6.- Po4A and Po4 was not configured on neither switches, my question is why appear Po4A and Po4B on switch-1 and switch-2 respectively? and why Po4 appear in down down.
7.- I solved this issue by shutdown and not shutdown to the interfaces on both routers, currently all is OK.
View 4 Replies
View Related
Sep 3, 2012
We have a DHCP SERVER implemented in a cisco router 2610.This router is connected to a switch cisco 2960 configured as DHCP SNOOPING. At the switch appear the next log message: [code] The ip address: 10.100.200.1 belongs to DHCP SERVER configured at router cisco 2610. What to do so these log messages does not appear any more? Do I need to do some configuration changes at some switch or router?
View 11 Replies
View Related
Apr 9, 2013
I can't find anywhere whether it is possible to create a vPC domain with 2 Nexus 5548UP switches, where only 1 Nexus 5548UP has a L3 daughter card.
View 3 Replies
View Related
Sep 28, 2012
I am trying to join a Cisco Catalyst 3560X-24T-L to an existing VTP domain, my question is what configurations should I do to this switch?I have already gave it a hostname, setup passwords, enabled telnet, created a management address on port g0/24.I would like it to be on VLAN 13, is this done from my server switch, or done on the new switch?
View 10 Replies
View Related
Mar 30, 2013
i am not able to add new 3750G switch into existing domain even after the domain name is correct and unable to authenticate with tacacs.
View 5 Replies
View Related
Feb 8, 2011
A question concerning the use of REP for IE-3000-4TC switches:
In figure 14 of REP pdf URL can you explain why this creates a loop in the system? From the document, I thought REP and RSTP could talk to each other so why does this create a loop if they are exchanging information between each other? Also, if, in figure 14, the two switches in the STP domain that connect to the REP ring, were also connected to each other, would there still be a loop in the system?
Also, what is the recommended max diameter a REP ring should be. I thought I read some place 130 nodes is ok, but I'm looking to confirm this.
View 3 Replies
View Related
Jan 25, 2012
I recently bought SG-300 28P to create the VLAN. My network hs 3 subnet 192.168.1.0, 192.168.2.0 and 192.168.3.0.My main net work is 192.168.1.0. I want to divide it to VLAN to eliminate the boardcast storm; especially from the domain 192.168.3.0
But I want all the devices from 192.168.1.0 to access other subnet.
View 4 Replies
View Related
Jan 11, 2012
we've had an issue with our network, we have 2 6509 connected with redundancy, which are connected with 2 x 4900 Switches, from which are connected to a ESX Chassis for visualization, the thing is that the ESX stopped working, and the 4900 switches, and the main core were suffering from overload, they hang on it very well, in order to stop the overload, one of the links to the ESX Chassis were disconnected from one of the 4900 switches. The CPU usage from the 4900 and the core(6509) went down below 40%, and then they started to migrate the virtual servers from the chassis to another 2 chassis that were added right after. They were actually working well, but suddenly the 6509 changed to the other supervisor after everything was OK. We were wondering what could have been the cause of this, maybe the virtual servers migrations, maybe the overload from the ESX ? We also had a few question, is there any need to reload the cores every few months as a planned task ? Because the cores have been up for more than 1 year. And also is there any kind of of tool to monitor the CPU status, or the status overall from the cores or the switches ?
View 3 Replies
View Related
May 2, 2013
I have a Nexus 7000 Core Switch , and i need to allow the domain controller ip 10.x.x.x for DHCP relay on switch.
View 2 Replies
View Related
Jul 22, 2012
I´ve a little problem with the aaa authentication over RADIUS with a Cisco 3560G-48PS - IOS 12.2(58)SE2. When I try to log in to the Switch per Telnet, it didn`t works and my windows domain account is locked. Here the aaa config:
aaa new-model
aaa authentication login default local group radius
aaa authorization config-commands
[Code].....
View 1 Replies
View Related
Apr 11, 2012
The have around 80 staff and I think the current infrastructure is overkill for the size of the company. The current kit is old and they have no GB ethernet ports. They currently have:-
Core Switch:
1x Cisco c6509with a 48 port fast ethernet module (WS-X6248-RJ-45)
and an 8 port fibre module (WS-X6408A-GBIC)
I'm looking to replace this with something with 72 ethernet ports and 8 fibre ports
Access Switches:
2x 3500Replacement needs at least 48 ports and 2 fibre modules each
and 2x 5500Replacement needs at least 72 ports and 2 fibre modules each.
View 13 Replies
View Related
Feb 26, 2012
If client gateway = 192.168.64.9 then next-hop = 192.168.64.8 else use default-route 0.0.0.0
I know it's possible to do a route-map match ip-address ACL list. But is it possible to match on gateway?
Some info about hardware and config:
6509-E in VSS (IOS 12.2(17r)SX5) withVS-S720-10G supervisor.
All routes are static, IP for 192.168.64.9 is on SVI vlan.
View 3 Replies
View Related