Cisco WAN :: 2620 - Encapsulation Dot1q Is Not Working?
Mar 26, 2012
I am trying to config a 2620 Cisco router to perform subintreface (F0/0.1) for Vlan Trunk Protocol, however when I try to configure the encapsulation dot1q, I continue to receive error massage with ^ symbol below the 'c' See below, the platform version is a 12.3(26) which should be acceptable to perform an (encapsulation dot1q). The Ethernet is a fast-Ethernet 10/100 port. I also try the ISL, I receive the same massage.
Router#config t
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#int f0/0
enable dot1q encapsulation on two ethernet ports on a 1721 router. I am able to configure it on the built in fastethernet port, but not on any interface provided by a WIC-1ENET or a WIC-4ESW. I have an application that requires two physical ethernet ports that support dot1q encapsulation.
I have a Catalyst 4500 L3 Switch Software (cat4500e UNIVERSAL-M), Version 03.02.00.XO RELEASE SOFTWARE (fc2). So I just wanted to verify that the switch only does dot1q encapsulation because the switchport trunk encapsulation dot1q command does not work.
I am trying to setup a cisco 2600 router that will be used to connect to a Qwest internet T1. I will have a Cisco ASA firewall behind the router so that I can build a site to site VPN tunnel. Qwest requires PPP encapsulation. The Lan side network is 10.2.0.0/16. Qwest gave me their serial IP address and my serial ip address which was I used to configure the route. The ethernet interface was configured for the local Lan side subnet and i natted both the inside and outside interface of the router. I am not sure if this is correct. How do I configure the router so that I can use one of the available public IP Addresses as the outside interface of the ASA?
Here is the config of the router:
version 12.2no parser cacheno service single-slot-reload-enableservice timestamps debug uptimeservice timestamps log uptimeno service password-encryption!hostname cedar!logging rate-limit console 10 except errorsenable secret 5 xxxxxxxxxxenable password xxxxxx!ip subnet-zeroip audit notify logip audit po max-events 100no ip dhcp-client network-discoverycall rsvp-syncinterface FastEthernet0/0description Lan Interfaceip address 10.2.1.1 255.255.255.0ip nat insideno ip route-cacheno ip mroute-cachespeed autofull-duplexno mop enabled!interface Serial0/0ip address 65.121.x.x 255.255.255.252ip nat outsideencapsulation pppfair-queueservice-module t1 clock source internalservice-module t1 timeslots 1-24!ip nat inside source list 1 interface Serial0/0 overloadip classlessip route 0.0.0.0 0.0.0.0 65.121.x.x (qwest serial IP address)ip http serverip http authentication local!access-list 1 permit 0.0.0.0 255.255.0.0
I'm setting up a new 4900m running cat4500e-ipbase-mz.122-53.SG5.bin. I'm attempting to create Port-Channels as a Trunk for uplink to a 4503 running cat4500-ipbase-mz.122-37.SG1.bin.When I attempt the command "switchport trunk encapsulation dot1q" it errors out.
I am trying to configure a 4507 R chassis with Dual SUP but i cannot see teh switchpot mode trunk encapsulation dot1q?
I have typed:
interface GigabitEthernet5/1 description DOWNLINK toxxxxxx switchport mode trunk channel-group 11 mode on ! I have have searched all other commands and sub-commands but could only find dot1q-tunnel which I beleive is for QINQ or some QoS featues and lot for L2 encapsulations?
the puzzling is:
XXX-Core4507#sh int gi5/1 trunk
Port Mode Encapsulation Status Native vlan Gi5/1 off 802.1q notrnk-bndl 1 (Po11)
when I connect the dostribution switch a 3507 to this int gi 5/1, both interfaces do come up?
I have a remote location that has a Linksys/Cisco RV042 router [URL] that allows PPTP connections based on username and password combinations. There are no intermediary routers between this device and the internet - only a DSL modem. A secondary WAN connection is not present.
I am able to dial into this VPN using the Windows XP and Windows 7 dialers from any of my local free-wifi locations(e.g. Starbucks). I WAS able to connect to this VPN connection from my house when my home router was a Buffalo brand router.
I have replaced the Buffalo router with a 2620(non-XM) that is connected in ROaS fashion to a 2950 switch. I need some guidance on what in my config is not allowing me to connect to this remote site.
Home network info: Local subnets : 192.168.x.x
Remote network info: Local subnet : 10.214.x.x
The Windows XP dialer client indicates that the username and password challenge is where the connection fails. It ultimately gives me the error code 619. I have performed a Wireshark packet capture of an attempt to connect from ip 192.168.10.11. This packet capture shows multiple "Configuration Request" packets being exchanged between the two endpoints, but does not ever show an exchange of authentication.
My nat translation table shows an entry for both a GRE tunnel as well as port 1723 between 192.168.10.11 and the WAN port of the RV042 when attempting to establish this VPN.
I have attached my 2620 configuration for your review.
encapsulation of routing protocols. Where exactly in the OSI, or TCP/IP for that matter, model does the data of the routing protocol fit into ? Is it encapsulated inside the transport layer segment payload ? So far from the I've gathered, that's where it should fit.
#####@@@@$$$$routing/procotocol/and/data/etc##### #-Data link header and trailer @-Network layer header $-Transport layer header.
I've been studying my inter-vlan routing , mainly in this case routing on a stick. I noticed through packet tracer that the 2960 switch doesn't allow for the '(config-if)#switchport trunk encapsulation' command, but the L3 3560 switch will.I am very concerened about this since VLANs are a main topic. What perspective will Cisco be seeing this from for the CCNA exam, I test in 12 days. I have embedded a packet tracer screen shot for more information in case I didn't word this right (which happens all the time to everyone it seems like in NW'ing now and then if not alot).
I recently purchased a Zyxel PK5000Z modem from qwest, upgrading from my M1000 actiontec. My reasoning was that port forwarding was not working as part of the router on the actiontec, and the pk saved me some money on my bill. So, what I always start out doing on modem/routers is restrict DHCP to 192.168.0.2 to 192.168.0.10, limiting the number of devices that could connect, and I don't know if that really matters or not for this problem, but figured I would throw everything out there. So....My actual problem is that now when boot up xbox360 I get a xbox360 live "nat strict" error. I have all the ports suggested for xbox, and the particular games forwarded, and DMZ turned on to the static IP I assigned to the xbox. I started out assigning a static IP reservation in the router for the xbox (the one I set on the xbox), but soon found not needing this. I ran the firmware diagnostic tool in the utilities menu and the "encapsulation test" failed, I called qwest, they have no clue, but sounded like a level 1 dude, but he authorized a new actiontec pk5000.
I am looking at upgrading our 4503 to the 4507R+E. Just going through the configurations and a couple of commands seemed to have dropped off this release.
1. I can no longer specify encapsulation type on a trunk. Does the 4507 auto sence encapsulation and apply it dynamically? 2. I had dscp trust configuration as below on the 4503, whats the equivilent on the 4507?
I have two 1841 routers running different IOS versions:R1 running 15.0(1)M3 Advanced IP ServicesR2 running 15.1(4)M2 Advanced IP Services R1 supports the encapsulation dot1q second-dot1q on FastEthernet subinterfaces. Surprisingly, R2 with the newer IOS (of the same feature set) does not have the second-dot1q command option. I've done my Feature Navigator homework but I did not see any significant differences between these two IOS versions that would explain why the second-dot1q command is not available on R2. Am I missing something? Has the syntax changed, or a different feature set is needed for 15.1M and higher to get the second-dot1q command back?
Im trying to span a trunk port and capture the dot1q headers on the destination. I'm positive I have it configured right (encap replicate) but wireshark just isn't seeing them. Im trying to capture them on a seperate NIC on my Windows 7 64bit pro box. The NIC is a realtek RTL8169 and it just won't capture the headers. I've also tried the built-in motherboard NIC (which is also a realtek) with the same results.
How to successfully run the dot1q tunneling on Cat4500 with Sup7L-E? I tried that on IOS XE 3.3 and newest 3.4. It is in feature navigator but i am not able to connect two access switching using trunk - only native vlan is translated. Apparently STP BPDU frames are dropped somewhere. I have the same configuration on 3750X with ip services licence and this works well.
I've buy a SRP500 Series Router (ADSL 2+).My ISP need RFC1483 Routed with LCC encapsulation type but this router dont have this type of encapsulation available in WAN settings. What can i do to use this device with my ISP adsl connection ?
we have an ASR1002 running zone-based-firewall with 2 zones:
zone_ouside zone_ph
I have a common ZFW-configuration on that interfaces, e.g.
<code> class-map type inspect match-any pass_cmap_in match access-group name pass-ipv4-in ! class-map type inspect match-any ph_cmap_in match access-group name ph-ipv4-in
[code]....
There is some basic stuff in the Access-Lists; direction ph-ipv4-in contains basically "permit ip any any" and ph-ipv4-out contains some permits for certain services, but nothing else. The pass-ipv4-in/out ACL contains particularly the udp-500/4500-stuff as well as gre/esp/ah.
The xconnect is only built up correctly when I configure the interface in the zone_outside. The destination for the xconnect is an ASR9k. If I do not configure the zone on the L2VPN-Interface, only arp-packet are allowed to tgo through the tunnel.
The L2VPN connects a branch office to the network of "PH". Now the trouble starts: when they are putting a host in the branch office, DHCP via the L2VPn works fine, they can ping anything from the branch office-PC in their local network and reach all internal servers etc.
BUT if they want to go to a destination outside their network, it will not work properly. For example, the branch-office-PC can ping 8.8.8.8 fine, but when they try to connect to a website, e.g. www.google.com, they run into a timeout. Netstat says, that the http-syn is sent, but no ack is received.
whereas x.y.225.250 is the PC connected via L2VPN in the branch office to their local lan. When they put the same machine in their local lan directly behind the router (without l2vpn) everything works fine. When I switch off the firewall on the Gi0/0/0-Interface, the PC from the branch office also reaches its destination, so for me it looks like the firewall inspects the traffic going via Gi0/0/1 and L2VPN, what in my opinion, it should not do....
Is it possible to do dot1q-tunneling on the new Cisco Calalyst 2960 Compact series switches? I know that the 3560 series support it, but im unable to find any information about the 2960C series, personally i doubt it as the standard 2960 series don't support it.
Prior to upgrade AIR AP1142-N (Version 12.4(25d)JA1) everything worked fine! After upgrade IOS (to new Version 15.2(2)JA) without any config modification, management interface (encapsulation dot1q 33) or any IP interface with encapsulation dot1q became unreachable... If set IP on SVI (or BVI) with native VLAN (encapsulation dot1q 4094 native), this IP is reachable. Probably, there are bug in new IOS and Dot1q encapsulation? (see 'tech-support' in attached files)
i'm desperately trying to get LACP working over a dot1q Tunnel. The "Service Provider" Switches are two 4506-E Switches with SUP7-E connected via a 10G Link, running on cat4500e-universalk9.SPA.03.03.00.SG.151-1.SG
sample config:
dot1q tag vlan native interface GigabitEthernet3/1 switchport access vlan 2001
If you have a router with multiple direct vanilla FE (non trunked) interfaces on a switch trying to send QOS tagged packets to a wifi bridge several switches away does the trunking in the switched infrastructure mess with the qos tags if no qos is configured on the switches.
Does it depend on the switch? We have new 2960's running 12.2 and a few older 2950's running 12.1
In fact i receive traffic on a one client per vlan basis (traffic is PPPoE), i receive all this traffic on a router, collecting all these vlan on a bridge where the pppoe packets are treated.When I use a transeiver to convert operator fiber arrival to my router copper media interface, i have no problem....
When I use dot1q-tunnel to make the same on my 3750, packets seems to be corrupted.I get PPPoE timeouts and packet loss, not regulary, totally stochastic...
I made dozen of tests and different settings, without success I first thougt of MTU issues. [code] I made tests with system MTU and/or system jumbo MTU above 1500, without success.I didn't found any known caveats on 3750 running Version 12.2(25r)SEE4 related to dot1q-tunnel.
I think that my rommon image has become corrupt as it will not take a new IOS image. I have tried several images that are within the recommended size and work with another 2620 with exactly the same specification also some commands that are available are not recognised when typed
I have a 2620 Cisco Router plugged into a 2924 Cisco switch by a trunk.The vlan configuration works, I subdivide my router interface with dot1q and have virtual machines on different vlans and everything works perfectly.The problem comes with a DHCP request.Let's say that I have my local lan on the native VLAN 1. I create a VLAN 25 in the switch and create a fa0/0.25 in the router.In the switch, I plug the cable modem from my ISP in a port on vlan 25In the router, I go to fa0/0.25 and issue "ip address dhcp".The DHCP request goes out, but never comes back. The problem seems to be in the switch because if I try the same thing with a virtual machine I have on a trunked VMWare ESXi server, I get the exact same results. I just don't get the IP address from the ISP.The next step would be to monitor the port on which the cable modem is connected and sniff the packets to see if the DHCP request actually gets back through.
I have 3 2620xm routers connected via dte/dce serial connections In a lab.One of the routers Is also connected to a 2950 switch.
The 2950 switch connects to an unmanaged tp-link switch that Is connected to a dsl modem/router.I have Internet access via the 2950 to my laptop.
I have ripv2 enabled on all the routers and It's working fine.The dsl modem, switch and connected router are on the same subnet.
When I ping the dsl modem via the 2950 or via the router connected to the 2950 , It works 100%.If I ping the 2950 from either of the other two routers , It also works 100%.I can't ping the dsl modem however from the other two routers.I've only been studying for the ICND1 so maybe there's something I'm missing here.
configuring 2620 cisco to cable modem for internet.I'm setting up a lab to practice and am having trouble getting this to work.Made several configs that don't work and starting over form scratch.
I use a cisco 2620 voice gateway with a module NM-HDV-2E1-60. Tell me how you look at snmp for Cisco 2620 load E1. For 2811, I found oid 1.3.6.1.4.1.9.10.19.1.1.4
Can't get cisco router and switch to see each other? When I connect the 2620 router to a 2950 switch no link lights turn on. It's the same when I connect any router to either of the two 2950 switches I have. I can connect to both switch and router from a pc using telnet and the router can connect to a regular tp-link switch. I'm a newbie when It comes to Cisco. Here's the running config for the router and switch. There Is no connection when using any of the switch ports to connect to the fa0/0 of the router. [code]
I have some 2620 routers and 2950 switches that have Console Ports that are serial. However my HP PC w.Win 7 dosent have any serial ports. I am looking for a USB to Serial converter that will allow me to access the console ports so I can configure these devices. I've read many old posts and still havent found a solution. Is it true that none of these cables work? Anything that will work on XP? (also have XP PC's).How about a RJ45 to Serial?? How about a PCI Serial card? I cant believe Cisco hasnt developed a conversion cable to use with their Console Cables?
I finally decided to get my own home lab so that I can configure to my hearts' content and not have to wait for access at the school to do it. I have three 2620 routers inter-connected with wic2t cards, and five 2950 switches. I have already set the config reg. on the routers to 0x2102 so that I can save my configs when I power down. When I pulled up the config regs on the switches, they all had 0xf as the reg number. Is this a good config reg number to have if I want to save the config before I power down?
Also, what would be a good ios version to have running on the switches and also the routers? I have access to other cisco IOS' but I want to double check. With this setup I would practice bgp, ppp, frame relay, rip2, ospf,eigrp, stp, pvst,pvst+, Rapid pvst+, rstp, and mstp.
I have some 79xx series VOIP phones that are acting VERY strange ... if you are familiar with these series phones once plug them into the PoE switch they look for a TFTP server with the call manager files to acquire all the info they need to work .... i have them set up on a 2620xm router running IOS c2600-ipvoicek9-mz.124-15.T14 along with call manger 4.3. My router is my TFTP server and i have hooked up and fixed over 50 of the same series phones with out a problem.
Now here is my issue ... when you goto press the SETTINGS button on the phone you are allowed to go into the settings of the phone to change all the ROUTER,TFTP,ETC info to allow you to connect your phone to the CALL MANAGER or you can set up DHCP and it will acquire the info automatically. When i press the SETTINGS button nothing happens .... i can reset the phone to factory defaults by holding the # button then 12345678*0# then 2 not saving the info and i can hit the restart buttons which is * 6 SETTINGS buttons together and that will let me restart the phone but i cannot manually set up this phone to do anything .. it will not acquire info form my DHCP server and will not find my TFTP server at all =( the phone SETTINGS BUTTON does not respond at all ..only when restarting the phone.
I like to set up a pix and router for this network for a small buss, but I need to know what type of cable do I need to set this connection to work straight through or a cross over cable? also I need a subgestion if a nat would work better on the pix or leave it on the router?