Cisco Switching/Routing :: Configure Egress Netflow In 6500 (VSS) With VS-S720-10G Supervisor?
Jun 9, 2013
I'm trying to configure a egress netflow in a 6500 (VSS) with VS-S720-10G supervisor. I foud some old posts and understood that netflow wasn't supported on 6500 but i found a new document and it seems that netflow is supported in Supervisor Engine 2T:[URL] Does the netflow still not supported in VS-S720-10G? It's weird because the command is supported:
#sh run int vlan 4
Building configuration...
Current configuration : 353 bytes
!
interface Vlan4
ip address X.X.X.X 255.255.0.0
[cod]....
View 1 Replies
ADVERTISEMENT
Feb 15, 2012
Problem: My traffic coming inbound appears to be marked but is not marked when egressing.
Setup:
Ingress from encoder G3/9->> Egress G8/1Default DSCP/COS map table (DSCP 24 is COS3)
Cos-dscp map:
cos: 0 1 2 3 4 5 6 7
------------------------------------
dscp: 0 8 16 24 32 40 48 56
1. Any reason COS 3 is not marked outbound on this traffic? I'm determining this by doing a wireshark off of interface g8/1. The traffic appears to be marked on the ingress correctly but does not maintain its mark on the egress. I can confirm this with equipment on other Ethernet links in produciton as well as my test port listed in the config below with wireshark.
FYI: Unfortunately with my cards in the 6509 I cannot port mirror and see outbound multicast (determined through a TAC case). Because the STB does not understand tagged traffic I setup the native vlan for it to function. To see the multicast with tags I temporarily remove the native command and do the wireshark to see the multicast. It still shows a COS setting of 0. I will try to attach a capture of a multicast packet.
interface GigabitEthernet3/9 description Mulicast Encoder
switchport
switchport access vlan 962
switchport mode access
logging event link-status
load-interval 30
View 2 Replies
View Related
Jan 24, 2012
I have catalyst 6500s with two VS-S720-10Gs, one is in Active and one is in Hot state. Both Sup cards have two 10G uplink ports. How does the traffic forwarding works in this case on the uplink ports? Do these uplink ports actively forward traffic or it is only the uplinks ports on Active that forward traffic? I see CDP neighbors on both Active and Hot SUPs uplinks ports - it indicates that packets are flowing on both cards.
I want all uplink ports on both SUPs to actively forward traffic. Does it work? What is the config for this?
View 1 Replies
View Related
Feb 3, 2010
We've been mocking up a test lab to test VSS on two 6500's. Each 6500 has one sup720 and a 6708-10ge blade and we've established the two 10ge links between the two chassis; the first from the each chassis' sup and the second from each 6708.My question is, what happens when the supervisor fails on one of the chassis?
View 10 Replies
View Related
Apr 30, 2013
I need to configure QoS (voice and video) for Catalyst 6500 series switches with Supervisor 2T modules and DFC4 linecards.
Is this radically different from what we do int he Sup32 and 720s? I was looking at some templates online, such as
[URL]
But I don't see anything for the new Supervisor 2T?
View 3 Replies
View Related
Sep 21, 2012
1. We now have SupA & SupB in the chassis, due to some mistake we have same IOS version but different feature set on them, although we configured redundancy mode sso, in the "show redundancy" we see Operating Redundancy Mode = rpr due to Software mismat, we now need to fix them as same feature set image, if I use "copy sup-bootdisk0:/xxxx slavesup-bootdisk0:/xxx", then write memory, does this cause any service/network interuption?
Available system uptime = 1 year, 1 week, 4 days, 9 hours, 21 minutes
Switchovers system experienced = 2
Standby failures = 0
Last switchover reason = active unit removed
[code]....
2. We did a failover test with this status, found that if we triggered supervisor failover, all modules will reload thus the services if interupped. How about after we make the Operating Redundancy Mode as sso, will this behaviour shows again? Or a stateful failover will happens, then modules no need reload?
3. We are using OSPF as our L3 routing protocol, after reference to the configuration, nsf should be enabled, we want to ask in the OSPF-domain nsf should be configured in all OSPF-enabled router or only 6500 which have dual-sup?
4. We also found that the interfaces(3 * Gig & 2 * TenG) in Standby supervisor cannot be use even enabled & configured, is it because we are running rpr mode now or will be the same even change to sso? Before customer have some older supervisor in 6500 non-e chassis, and they can use the standby supervisor interfaces as traffic forwarding, they use rpr-plus mode before, how about in sso mode?
View 6 Replies
View Related
Oct 30, 2011
I have a Cisco 6500 series switch with VS-C6509E-S720-10G ,I have two redundant supervisors between two chassis on the LAN with no add-on line cards ?
I need to know if I can use the redundant supervisor 10 Gb uplinks to form a layer-2 Port channel between the two 6500 switches as i do not want to use want to keep the port idle additionally I need more bandwidth between the two switches for my server farm?
View 1 Replies
View Related
Apr 22, 2012
I have a question. I have a 6500 with two supervosrs and they both have CATOS. One of them failed and I need to replace. As long as the hardware is the same does the CATOS have to be indentical or can this be different.
View 4 Replies
View Related
Mar 13, 2012
I have a problem with the 6500 not exporting netflow data. They are not exported due to no fib.I have read somewhere that this has something to do with VRF. VRF are running on the router.ip flow ingress has been applied to desired ip int.Is there anything I could do to make it export netflow data?
VSS-core-XXX-rs1#sh ip flow export
Flow export v5 is enabled for main cache
Export source and destination details :
VRF ID : Default
Source(1) xxx.xxx.83.253 (Unknown)
[code]....
View 7 Replies
View Related
Feb 12, 2013
Q. Does the Supervisor 720 support all existing Cisco Catalyst 6500 series interface and services module, protecting customer investments?
View 1 Replies
View Related
Oct 26, 2011
We bought Cisco sup engine WS-SUP32-GE-3B for 6500 switches 2 nos for redundancy. I have connected 6 systems on each sup engine ports. How to clarify whether both sup engine will forward the data while one is Master and other is standby?
View 4 Replies
View Related
Nov 27, 2011
We are getting log messages like
%EARL-DFC4-4-NF_USAGE: Current Netflow Table Utilization is 95%
%EARL-DFC4-4-NF_USAGE: Current Netflow Table Utilization is 99%
What this messages really means and how to get rid of these messages. We are using IOS version 12.2(33)SXJ in Catalyst 6500.
View 3 Replies
View Related
Jun 5, 2012
I tried to configure netflow without success.
Setup is the following.
Cisco Catalyst 6509 with Sup720-10GE IOS 12.2(33)SHX7. There are around 30 L3 vlans configured on the switch. I'm only interested for the traffic on one L3 vlan which is the connection to wan cloud.
I wanna see only the traffic that goes to and come from the wan. On other Catalyst where I have routed interfaces i successfully configured netflow. I read a lot in the forums and documentations but i didn't find the right one.
View 1 Replies
View Related
Oct 1, 2012
I have configured the VSS in two cisco 6509-E series with only one supervisor engine, but if i configured with two supervisor engine. it is going to common mode. One supervisor engine is 3c and 3cxl.
View 2 Replies
View Related
Jun 4, 2012
It is possible to configure the IOS NetFlow 122-58.SE2 in a Catalyst 3560?
View 5 Replies
View Related
Aug 17, 2011
when using egress netflow (v9) and output marking.
The topologie : Server <-----> R1 1>-----<1 R2 2>----<2 R3
R2 is a 7200 with c7200p-adventerprisek9-mz.124-15.T11.bin What I'm doing :- R2 forwards ping packets from Server to R3. When they arrive on R2, icmp packets are marked with CS3
- I change the DSCP to CS4 on R2 before forwarding packet to R3. I'm using for that an output service-policy on the R2-2 interface like this : interface ATM2/0.36 point-to-point
ip address 192.168.1.1 255.255.255.252
ip flow ingress
ip flow egress
[Code]....
View 3 Replies
View Related
Mar 13, 2012
Any major difrrence between Netflow v/s Netflow-Lite?
I am trying to understand if Cisco 4948E can do the same job as Cisco 4500E or not and difference between Netflow v/s Netflow-Lite will work for me to select correct product.
View 2 Replies
View Related
Mar 16, 2012
i have a question regarding egress queuing on cat6500 modules. e.g. WS-X 6704 has 1p7q4t is egress-modell. my goal is to limit the priority queue to 15% of the available bandwidth. i can put weights on the wrr-queues and limit their ressources: "wrr-queue bandwidth 50 20 15 0 0 0 0." but this isn´t possible for the priority-queue. only available command is "priority-queue queue-limit 15" but this only restricts the buffer to 15%.
at the end of the day i want to prevent that the wrr-queues don´t have remaining bandwidth when the priority-queue is saturated.
is there an easy way to restrict the bandwidth of the priority queue or do i have to implement additionally some kind of policing?
View 5 Replies
View Related
Jan 3, 2012
I have a Cisco 6500 router at my POP site and I have a Cisco 2811 at the tail site. I have to bond 3 city to city T1s to make a 4.5Mg pipe between the 2 ends. How do I configure the routers to make this happen? This is a configuration example for a single T1:
POP end on 6500:
interface Serial1/0/1:0
ip address 10.125.1.1 255.255.255.248
Tail site on 2811:
interface Serial0/2/0
ip address 10.125.1.6 255.255.255.248
View 3 Replies
View Related
Dec 3, 2011
we purchase only Cisco Supervisor Engine VS-S720-10G and use it in our old C6509-E chassis.Now the supervisor engine was dead,(means not working and no LED's are ON). How can i claim the RMA from cisco?
We purchase from one of our partner. We send it to them,they are not able to find the Serial number from the Supervisor Engine module (Because lot of serial numbers are on the board). Also the customer through the catoon.
Now how we can know which is exact serial number of sup? How to get RMA from the Cisco on which serial number?
View 4 Replies
View Related
Dec 7, 2011
Is it possible to configure the switchports on a 6500 linecard before it has been inserted?
So for example, I have a 6509 with slot 9 free. I'm going to install a 48 port line card. Is it possible to configure those 48 ports before the card is inserted?
View 2 Replies
View Related
Jan 29, 2012
We have Nexus 7k running as my core with a 6500 manageing my server farm and IP services servers (call manager, IPTV ...)My edge switch are 4500s. We currently have RIP2 running between and the switchs and each 4500 is managing its own VLANs.The IPTV uses IGMP snooping and multicasting to broadcast the video feed. The problem that came up is that the we cannot configure a gatewar for the setup boxs for the IPTV system. They will only work on a single VLAN and they are spread all over the network.Can we configure only this VLAN to be propagated over our RIP network???
View 2 Replies
View Related
Feb 12, 2013
Setting up NTP. Currently the source for NTP within our network is our core 6500.Currently the NTP source for the 6500 are internet based NTP Servers. I would like to configure the 6500 to respond to NTP messages as the NTP Master. However will the 6500's source remain as the internet based NTP Servers?? In other words if the 6500is configured to be NTP Master, where would it get it's time from?
View 5 Replies
View Related
Feb 7, 2012
We are upgrading two standalone 6509E chassis to a VSS system with new VS-S720-10G-3C cards. The 6509's have WS-X6748-GE-TX card with DFC3B daughter cards (see below). The compatablity matrix (see below) states that 67xx cards are supported but it goes on to state DFC3C or DFC3CXL cards are needed. So does this mean that the existing WS-X6748-GE-TX cards have to be upgraded or will they be supported?
Core #1Mod Ports Card Type Model Serial No.--- ----- -------------------------------------- ------------------ ----------- 1 48 CEF720 48 port 1000mb SFP WS-X6748-SFP SAL 2 4 CEF720 4 port 10-Gigabit Ethernet WS-X6704-10GE SAD 5 2 Supervisor Engine 720 (Active) WS-SUP720-3B SAL 6 2 Supervisor Engine 720 (Hot) WS-SUP720-3B SAL 7 48 CEF720 48 port 10/100/1000mb Ethernet WS-X6748-GE-TX SAL 8 48 CEF720 48 port 10/100/1000mb Ethernet WS-X6748-GE-TX SAL
[code]....
View 3 Replies
View Related
Oct 26, 2011
I got a new VS-S720-10G it had 122-33.SXH8b on there. I had to downgrade it to 12.2.33.SXI1 to match our other switches. I installed the file I use in all the other switches, s72033-adventerprisek9_wan-mz.122-33.SXI1.bin but the Sup is now is only booting up only to ROMMON mode.
Initializing ATA monitor library...
Self extracting the image... [OK]
Self decompressing the image : #################################################
################################################################################
################################################################ [OK]
%SYSTEM-1-INITFAIL: Network boot is not supported.
System Bootstrap, Version 8.5(4)
Copyright (c) 1994-2009 by cisco Systems, Inc.
Cat6k-Sup720/SP processor with 1048576 Kbytes of main memory
[code]....
How do I get the older version of IOS to load up?
View 5 Replies
View Related
Jan 22, 2013
We have 7 interfaces with rj45 connections.. all around 100Mbit per connection .. most likely in the future we will need a couple more interfaces.. i was thinking it would be better to take a WS-X6516-GE-TX card then a FE card as for example a WS-X6148-RJ-45 .Now we want to implement a 7606 with a SUP720-3BXL with 1GB dram for the RP(MSFC3)... so enough memory to support the 2x a FULL BGP table to two peers.
Q : Does the SUP720-3BXL work well with two peers sending the FULL BGP table ?
Q : And does that also work with a WS-X6516-GE-TX connected to the two peers sending the FULL BGP table ? .. or is it better to take a 6724 linecard with a DFC3-BXL so that the 6724 will lookup routes locally instead a 6516 will have the S720- perform the routing ? I know that adding the DFC's increases the bandwidth of the chassis significantly (40gbps per slot most 6700 linecards ,and 20gbps for the 6724 which is 1:2 oversubscribed )
Q: Or is it better to connect the two peers to the two SFP interfaces on the SUP720 , and connect the small routers and customer networks to the 6516 linecard?
View 5 Replies
View Related
Sep 9, 2009
I need those two stencils.I have checked here [URL] but:
- the one for the C6509-E is not there
- the one for the supervisor does not work properly (misaligned anchor points).
View 2 Replies
View Related
Feb 26, 2012
I have a switch layer 6500 series connected to a firewall, the port configuration between them is layer 2, in another words I do not configure an IP address in the Cisco switch port to conected it in the firewall, but when a apply a policy on firewall it lose communication with others vlans, just the vlan that is connected between the switch and firewall works, attachment the design. I think that is necessary to configure the connection between the firewall and switch as layer 3 ( a port with IP address in the switch), but I would like to know why? The switch is configured with about 10 vlan and it is a inter vlan routing, a default route is configured in the switch where the gateway is the firewall.
View 5 Replies
View Related
Jan 19, 2012
What key sequence to go into ROMMON mode from the console port for VSS system with 2 VS-S720-10G?
View 3 Replies
View Related
Jan 17, 2012
I have a customer who requires to identify and police traffic on egress on a 3560 trunk link. I cannot use ingress classifications because we do not know what route the traffic will take yet. The egress interface connects to multipoint wireless equipment with 4 different bandwidth point to point links. So the ingress traffic may be routed via any one of 4 point to point wireless links connected to the single egress interface. Am I correct in assuming we cannot mark on the egress direction then put the traffic in a SRR shaped egress queue based on the marking ? So we would only have the option to egress queue based on markings applied or trusted on the inbound direction ? I had thought of some kind of policy map/aggregate policer configuration based on the exit VLAN but it seems we can only apply this type of config inbound. From reading the 3560 configuration guides it seems the 3560 cannot deploy the kind of requirements this customer needs. Perhaps they should have deployed some kind of Metro switch ?
View 1 Replies
View Related
Dec 18, 2011
I have an issue where I'm seeing output discards on pretty much all my ports configured for QoS. The switches are cisco WS-C3750V2-48PS running 12.2(50)SE1. There are four switches stacked using stack cables. The QoS implemeted was auto-qos with no modifications to the standard config. All ports are in queue-set 1. The phones connected are Cisco 7942's. Already did the standard check for speed duplex mismatch, crc's, runts, giants, etc...No discards before the QoS was applied. No bug ID's I could find regarding these switches and this IOS version. The one thing noticed is that 99% of all the drops are from queue's 2 and 4 or 1 and 3 doing the below command.
**I've limited the cut and paste as to not clutter the discussion until someone requests something else**
show platform port-asic stats drop
Port 18 TxQueue Drop Statistics
Queue 0
Weight 0 Frames 0
Weight 1 Frames 0
[Code]....
View 5 Replies
View Related
Nov 27, 2011
We have a pair of 6509 working in a VSS configuration (IOS 12.2(33)SX5). The 6509s connect to a pair of ASAs (7.2 code) running in an Active/Standby setup. These ASAs in turn connect to routers going to remote sites. I have configured Netflow on the following VLANS,
VLAN 10 - Servers Vlan
VLAN 9 - Transit/ASA VLAN (connects ASAs to 6509s). All traffic originating from any VLAN on the 6509 crosses this VLAN in order to reach remote sites and vice versa
I configured the netflow source VLAN 11 although I am not collecing any netflow from it.Although I have been getting lots of Netflow info, I noticed that netflow for traffic originating from any user VLAN on the 6509s going to any remote site via TRANSIT/ASA VLAN(9) does not get reported, I even tested with 4 GB traffic but no result. Only reverse traffic (i.e. from remote site to user VLAN) is reported as it traverses the Transit VLAN (9).
I read somewhere that egress netflow is not supported in 6500, but isnt traffic originating from a user vlan to a remote site via the transit VLAN (9) considered ingress with respect to the transit VLAN (9)? I would like to know whether bidirectional Netflow is supported on 6500 VLANS. I have mimimum control on routers beyond the ASAs, and since these ASAs run 7.2 code netflow is not supported, and Monitoring this Transit Vlan gives me extremely useful info.
I do get netflow biderectional traffic from the Server Vlan 10, but I think it is correlated by the netflow collector from vlans 9 and 10. [code]
View 9 Replies
View Related
May 14, 2012
We currently have the following configuration:
STB_6509#sho mod
Mod Ports Card Type Model Serial No.
--- ----- -------------------------------------- ------------------ -----------
1 10 WiSM WLAN Service Module WS-SVC-WISM-1-K9
2 24 CEF720 24 port 1000mb SFP WS-X6724-SFP
5 2 Supervisor Engine 720 (Active) WS-SUP720-3B
[code]....
I would like to add a redundant supervisor blade to the 6509 that is in production. Can this be done plug and play and require no reload. Are all WS-SUP720-3B the same as far as memory etc... or can I buy any used WS-SUP720-3B and it will work properly.
View 1 Replies
View Related
