Cisco Switching/Routing :: Ssh Not Working On 4507 After Reload?
Nov 29, 2012
SSH has been enabled on our one and only 4507 switch for several months and working fine. A few weeks ago the switch had to be reloaded and when it was back online I couldn't SSH to it. When I connected via the console and typed "show ip ssh" it came back saying I needed to generate the keys. Did that and it starting working again. The same switch had to turned off and on the other day due to a power down in the server room and when it came back the same thing happened again!!
The version of IOS is: cat4000-i5k91s-mz.122.20.EW
I had a strange issue with one of my customer..Cisco WS-C3750X-48P Access switch was not reachable and after reload it started working.I would like to know the root cause of the issue. There were no logs and no errors in interfaces.Even Cpu utilization was not high. We have enabled arp inspection and dhcp snooping in the switch..Hope this will not make any issue..Also we have dot1x enabled on port..
I've just purchased a new Cisco 881.I'm using NAT NVI for my inbound static mappings. However, regardless of the fact that the config is saved to nvram, after a reload of the router, the NAT mappings are setup as traditional inside/outside mappings. This means that inbound connections in to the router on the required services fail, until someone logs on to the router and re-applies the NVI mappings.
Here's a sanitised version of my startup-config:
! ! Last configuration change at 20:20:15 UTC Tue Dec 11 2012 by xxx version 15.2 no service pad service timestamps debug datetime msec service timestamps log datetime msec service password-encryption
I have a cable from an SFP module in a WS-C3750-48P with 12.2(55)SE1 running to a Gigabit port on a Cisco WLC. After the switch recovers from a power failure, the gigabit autonegotiation fails. The cure is a long drive to unplug and reseat the SFP. Note this happens at too many similar sites for this to be a loose connection. Interface shutdown then 'no shutdown' is not sufficient. The state is 'line protocol is down (not connected)'. Interface is configured for switchport mode trunk (auto speed, auto duplex). Command 'switchport nonegotiate' makes no difference. Is there a more powerful command than 'shutdown' which might toggle the interface signals? Is there some way of resetting the SFP? sh int gi 1/0/1 displays 'media type is 10/100/1000BaseTX SFP' and zero packets received.
Last night, the C6509-E do a unexpected reload. In the crashinfo, I can see that the last error message before the reload, was as follows: %C6K_ PLATFORM-SP-2-PEER_RESET: SP is being reset by the RP
I consulted the cisco website about this error message and what I found was the following:C6K_PLATFORM-2.
We have a backup sup 720 which has a 2 gigabit ethernet though port channel, to another chassis. Suddenly UDLD detected an error and got into err disable, then this err disable didn't let the interface set to DOWN, and created a switch loop, then our Supervisor reloaded. I'd like to know what could have caused this reload. In my opinion could have a been the switch loop, but also I've been checking from the output interpreter the show tech and might have been a bug, the only one that could match in IOS version 12.2(33)SXH, is this one: url...
We're going to disable err-disable next time I guess and recover the link manually, apart from that what could have made the sup for crash and reload?
Suffered a big outage on the network, the fix was to reload the module 3 on the 6509 switch, we had these errors on the log %CONST_DIAG-SW1_SP-3-HM_PORT_TEST_FAIL: Switch 1 Module 3 TestUnusedPortLoopback Port(s)[24,46] failed. System operation continues.in the end, we reloaded the card and it was all ok. is there anything I can do to check the card / or any deeper logs? would that error cause the card to crash?
Our router suddenly reloaded. Below are the crashinfo obtained:
1st crashinfo:
7606_Router#more sup-bootflash:crashinfo_20120604-02260500:00:05: %PFREDUN-6-ACTIVE: Initializing as ACTIVE processor 00:00:05: %SYS-3-LOGGER_FLUSHING: System pausing to ensure console debugging output. 00:00:05: %PFREDUN-6-ACTIVE: Initializing as ACTIVE processor 00:00:05: %SYS-3-LOGGER_FLUSHED: System was paused for 00:00:00 to ensure console debugging output.
[code]....
We are running s72033-advipservicesk9_wan-mz.122-18.SXF9
I have a problem with the Cisco 881 router at one of our customers.It seems that after a "no shutdown" has been given on the Vlan interface, it still goes back to "administratevly down" after a reboot.So when I restart the router I always have to manually "no shutdown" the Vlan interface to come back up.While rebooting the router it also gives the following info in the console screen every time which is strange:
new interface Vlan1 placed in "shutdown" state.We tried several different firmware releases.
Replacing the router with a new Cisco 881 router did not work either. After they sent back the old Cisco 881 router we tested it here and there were no problems, we weren't able to replicate the problem.The configuration we use for the router is correct, we use it for hundreds of customers, so that can't be it either.The customer uses a fortinet firewall behind the router. Could it be that something inside the LAN of the customer that triggers the Vlan to shut down?
I have a Catalyst 4500 WS-C4506 and S-X4516-10GE Supervisor running under IOS 12.2(52)SG IP BASE SSH. After having installed IOS 12,2(53)SG i wanted to schedule a reload. After entering the reload at command I get the message %Reload in Progress and nothing happens.
Situation: - 2x 3750G-12S Distribution-Switches (DS) and several 3560/2960 Access-Switches (AS) - redundant Fiber optic uplinks between AS and DS - Cross-Stack Etherchannel config on all uplinks - UDLD aggressive mode configured on all uplinks
Problem: - when I reload the DS and the switch comes up again, I've lost the connection with several (not all) AS - looking at the AS log I found the following error message: "%UDLD-4-UDLD_PORT_DISABLED: UDLD disabled interface Gi0/1, aggressive mode failure detected"
Cause: - in the log of the AS I don't see intf Gi0/1 go down during the reload of the DS - this means the DS didn't shuts down all its ports during the reload - but this also means that UDLD on AS didn't know about DS reload, and therefore didn't resets counters
Workaroud/Solution - I'm now configuring errdisable recovery on all AS
So I'm forced to configure errdisable recovery, even if I don't want.
I would like to test the possibility to reload devices via SNMP for new switches like 2960, 3560 and so on.I know that the command "snmp-server system-shutdown" has to be configured, then I need to send the set query to the device via SNMP.
I have found on the net the OID 1.3.6.1.4.1.9.2.9.9.0 but it belongs to an old MIB and doesn't seem to work with new switch models.
Any "best practices" or recommendations on how to migrate from a fixed router (3745) to vlan routing on Catalyst 4507 switches in order to minimize the disruption to the network.
I am not able to find the exact bug for Cisco 3750E stack - Debug Exception (Could be NULL pointer dereference) Exception (0x2000) error. Closest i can find is CSCsa72400 which only affects ver 12.2(20)SE4.All the stacks (3 switches) are running 12.2(50)SE3, It appears that the switch 1 crashed and reloaded. My hunch is its software but i cant find any related bugs. It could be hardware issue as well ?
I uploaded a new config file via TFTP to a 3560 switch. What are the order of commands to get it to boot from this new config file instead of the file listed in 'sh boot': [code]
I am having a Cisco 4507 switch. The CPU on the switch is running between 50% to 60% constantly. To troubleshoot I collected some logs using debugs & show commands.
debug platform packet all receive buffer show platform cpu packet buffered debug platform packet all count show platform cpu packet statistics show processes cpu sorted | exc 0.00 show platform health show platform cpu packet statistics
show platform health output shows the below process crossing the target value.
%CPU %CPU RunTimeMax Priority Average %CPU Total Target Actual Target Actual Fg Bg 5Sec Min Hour CPU Stub-JobEventSchedul 10.00 13.41 10 47 100 500 13 13 10 5462:52 K2PortMan Review 3.00 5.35 15 11 100 500 4 4 3 1799:47
What I need to know is, though these process are running in Low Priority, will there be any issue if the CPU goes high due to these process.
Could not find a valid file in BOOT environment variable. BOOT variable can be set from IOS. To find currently setRom Monitor variables, type 'set' command.
Choosing a boot method, type 'confreg' command.rommon 1
I have one 4506E switch working in Lan setup as a core switch with WS-X45-SUP6L-E running ipbase IOS 12.2(54)SG1. Each time after reload the switch we found that the clock is getting reset ( time is getting changed ) where as day, date & year is unchanged.
We have recently purchased a 5Mbit line with a second ISP and will have the line activated tomorrow. In addition, we recently obtained our AS number through ARIN. How would I configure the second ISP to be used for load balancing/failover?
We will deploy several 4507 with 2xsup7 as a L2 access switches for our office.Does LAN_Base IOS version support SSO or we need purchase IP_Base IOS (L3)?
QoS design problem that I have. I have a client that is deploying new 4507 series switches with SUP6Es. The client will be running lots of voice, streaming video, and video conferencing over the LAN and want to base QoS on Cisco Media net recommendations.
I need to design a new QoS policy with focus on the above media services with basic queuing for critical data services. I have read the Media net design guide and the suggested 12-class model will be too complex to start with but I have seen references to start with a 8-class model with the ability to easily migrate to 12-class in the future. The 8-class model meets all of our requirements but I need to understand how this will work with the 4507 queuing model? [URL]
we have a core switch 4507RE at the data center and 2 departments that connect to it via 10Gig fiber using X2-LRM modules. Each department has a 3 switch stack and both locations are identical w.r.t type and setup scenario.the stack comprises of 1 x 3750E and 2 x 3750G . uplink is from X2 port tengig3/0/1 from the 3750E switch.
All of a sudden dept B started facing problem , where the ping would break and throughput comes around 6 - 7 mbps from that dept to the server behind the core switch. we also noted CRC error on both sides preodically.
we replaced the multimode fiber patch cords, re did the splicing , which stopped the CRC errors to appear.now since morning the uplink port on the 3750E (3/0/1) would suddenly be in "down" state with (err-disabled) as the status when i run sh int ten 3/0/1
and i can also see CRC errors and input errors on the same interface.. if i do shut / no shut .. the port is up and active again.. but this has happned 3 times today.the core swith side is still OK and no CRC / input / output errors are seen..
now on the 3750E i have swapped the 10gig module from 3/0/1 to 3/0/2 . the port is still up but i can see 400 CRC and 500 Input errrors.the module is also OK as i had replaced it with dept 1's module.
Is there a way I can find out the amount of bandwidth i'm using on a particular interface on a 4507 cisco multi-layer switch? It is a gig port and I have it setup for monitoring (spanning) and I see packets being dropped in the "Total Output Drops" area. To me it looks like it must be exceeding the 1gig limit but I don't know a way to check to make sure. I also have the queueing strategy set to FIFO.
We have 4507 distribution switch in our network.I am trying to enable ssh in those switches but seems that ssh command is not supporting. IOS version - cat4500e-universal.SPA.03.03.00.SG.151-1.SG.bin
