Cisco WAN :: 3560 / Layer 2 Trunk Over ISP MPLS?
May 4, 2011
I recently was asked to turn a routed link between our HQ and our DR Site into a trunked link to allow us to span our main Server VLAN up to the DR Site.I was informed by the ISP that owns the 100Mb Leased Line between the sites that the link was configured to pass dot1q traffic and I should just have to configure my links at either end as trunks to get the link to come up.
There is a Cisco 3560 at either end with Layer 3 routing enabled (obviously as this was a routed link previously).So, I scheduled an outage and configured either end as a trunk links as follows and repointed any routes from the /30 routed addresses to the management addresses of the switches on either side:
***For info VLAN 15 is the DR Site and VLAN 11 is the Server range at our HQ and was available on the connected switch***
interface FastEthernet0/24
switchport trunk encapsulation dot1q
switchport trunk native vlan 15
switchport trunk allowed vlan 11,15
switchport mode trunk
[code].....
View 6 Replies
ADVERTISEMENT
Mar 29, 2012
We are about to install a new network consisting of Cat 4500s with Sup7E at the Access Layer, with Nexus 7000 at the Distribution and Core layers. We have 14 floors with at least three 4500s on each floor. Within the office block where the Access Layer and Distribution Layer reside we need to support secure borderless networking using 802.1x to place users from different parts of the business into segregated networks at layer 3.All switches will have the feature sets to support MPLS/ VRF / OSPF / EIGRP / BGP etc.We quickly dismissed the idea of using VRF-Lite due to the sheer number of Vlans we would need to managage and maintain, the point to point links alone just to get one additional VRF on each floor required far too many Vlans.As a result we are now considering deploying MPLS. The obvious benefits include scalability and manageability, the fact that all switch to switch links can now be routed, instead of having to using SVIs.
View 2 Replies
View Related
Jun 6, 2013
I have a Cisco SW ( 3560 ) with one Trunk link to my router ( 7606 ), Trunk link is fully utilized so i need to add 2nd Trunk.Shall all move some customers from old trunk to 2nd one and create a new subterface for them ?I am think if i can create bundle and add subinterfaces under this bundle ?Add two GE ports to be memeber of this bundle ?
View 5 Replies
View Related
Jan 16, 2013
I am implementing QoS on our MPLS network. Our environment exists of a mix of Cisco 2960 and 3560 switches. The IPT system is Avaya CM with Avaya phones.The WAN network is a MPLS network.Ports are configured for access and voice vlan (no trunking), one vlan for voice, one for data (vlan 1 is disabled).I dont have Qos coonfigured on LAN just wanted to configure on WAN Router where my Mpls link is connected.I have 45 Mb Mpls links on all sites connected to each other.
I have multiple sites connected via MPLS and i have control at both sides.Current config is mentioned below in which DSCP marking is not done for signaling. What is the best config with example.Current Config on all Cisco Router where MPLS link is terminated at all sites. [code]
View 10 Replies
View Related
Jan 5, 2012
We have purchased 3 no CISCO SF300-48P (Access Switches) with the interest of setting up a new laboratory consisting of 120 desktops. We currently have a CISCO 4507R (Core Switch) and a CISCO 3560 (Distribution Switch) for the campus wide network. Our network is developed with various VLANS to support Internet and Intranet facilities. The new lab need to be incorporated in to the Campus wide network with a new VLAN ID. But problem is while trunking the CISCO 3560 (Distribution switch) to the CISCO SF300-48P (Access Switch) communication does not happen. While, surfing the internet and various doc's say that SF300 uses GVRP instead of dot1q trunking.
View 4 Replies
View Related
Apr 22, 2011
can i use normal two L3 Switch(3560) for BGP Multihoming with 2 different isp
View 4 Replies
View Related
Sep 2, 2012
Is it possible to use Port Security mechanism between two switch (3750 or 3560) ports while trunk has been configured? If it's not possible, is there any other way to ensure that no other Switch can be connected other then the one switch which has been configured/placed by a network engineer?
View 4 Replies
View Related
Nov 8, 2011
I need to create a trunk between a Cisco 3560 and a Juniper EX4200I am perfectly happy with the the Cisco side and want to only allow 1 vlan across the trunk, which I was going to configure on the 3560 side. Any experience on trunking to a Juniper Ex4200.Looking at the Juniper side it looks like I just set the port as a L2 uplink.
View 3 Replies
View Related
Aug 27, 2012
A client of ours has installed an SG300-24P switch and would like to setup a LAG between the SG300 and the 3560 switch we manage for them. They would like the LAG to also pass the voice and two data VLANs currently in use; 5, 10, and 100 respectively. I configured the two ports as an Etherchannel with trunking on the logical port, but no luck. I reconfigured as follows:
interface GigabitEthernet0/1
switchport trunk encapsulation dot1q
switchport mode trunk
channel-group 1 mode active
end
[code]....
I see no output when I do show lacp nei. At this point the client is looking to use for the configurations to use as he does not know how to setup the SG300 and it is a switch I have never dealt with. I have found some configurations that I believe would allow a single VLAN across, but nothing I believe will allow the LAG to pass all the VLAN's.
View 7 Replies
View Related
Jan 28, 2013
if i have this config:
switch port mode trunk
trunk aloved vlan 50
will travel over this trunk untagged packets? For eg the V LAN 1 is by default native V LAN without tag. If i have created a bog ring with catalyst 3560x switches with no spanning tree on V LAN 1 can be the case of this config a loop ???
I am using upper config on interfaces that are connected the switches together in ring.
Other interfaces on switch have this config:
int range 0/1-4
switchport mode acc
switchport acc vlan1
int range 0/5-24
switchport mode acc
switchport acc vlan50
I am using vlan1 just for local switching without connection to internet! I am asking just because i have this king of messages in logs:
%CDP-4-NATIVE_VLAN_MISMATCH: Native VLAN mismatch discovered on GigabitEthernet1/0/27 (1), with SW3560x_BR8874 GigabitEthernet1/0/19 (50).
GI 1/0/27 and GI 1/0/19 have this config:
switchport mode trunk
trunk aloved vlan 50
View 5 Replies
View Related
Jul 6, 2011
I have the following scenario. Connected to a Cisco 3560 switch (fa0/9) is another Cisco switch (that is operating at layer 2). On the other side of that second switch is a firewall. I want to send traffic from my Cisco 3560 switch to a network behind the firewall. [code] However, when I try to add the ip address to int fa0/9, I get an error. Right now, the 3560 is operating at layer 2. I think that I need to issue the command: "ip routing" to put it in layer 3, then put the ip address on port fa0/9. However, I am concerned that I will mess up my production environment. Is there any other way of doing this? The "ip route 0.0.0.0 0.0.0.0" statement sends traffic out the gateway to the Internet. I just want to send packets to 209.52.62.16/28 out int fa0/9.
View 2 Replies
View Related
Mar 17, 2013
I found that when I enabled layer 2 auto QoS in 3560 switch, I need to wait so much time to open a file in network drive. Howerver, when I disable the Qos. It can improve a lot. I have used a sniffer to capture the packet to see. Those default packet is in DSCP 0. Therefore, I think majority packet will drop to queue 4. How can I increase the buffer and threshold in order to improve queue 4 performance.
View 1 Replies
View Related
Sep 21, 2012
We have 7 3560's in 7 different locations connected to our providor for wan access. Our provider has given us a copper cable at each point and we have connected it directly to our 3560 switch at each location. Each port is configured the same way at each location. Each switch is running eigrp.All of the switch ports on each switch are configured as a trunk and vlan 299 had the ip address for the eigrp connection: [code] This setup is working as each switch see's all of the other switches as an eigrp neighbor. We have also made sure that the switch at our head office has spanning tree priority for vlan 299.
So the problem is, if there is a change in the topology at one of the locations it usually causes one or more of the other connections to go down for some reason. We just cannot pinpoint what is causing this change. There are no log's or anything other than an eigrp hold time expired message.?
View 9 Replies
View Related
Jul 10, 2012
I have a pair of 3560's configured with dot1q trunks between them carrying a number of VLANs.
Once deployed there will be a requirement for these physical trunks to be disconnected from time to time. Knowing that this is inevitable I am trying to minimise the period of time for the trunks to recover once the physical connectivity is reinstated.
All of the VLANs on the switches are configured for Spanning Tree Rapid PVST. Current time for the trunks/VLANs to come up is around the 4 second mark.
View 11 Replies
View Related
Jan 15, 2013
My first question is I have an access layer switch which is a single VLAN and I am trunking that VLAN to a distribution layer switch, I can ping the gateway on the distribution layer switch for THAT VLAN, But cannot ping the gateway address for the second VLAN I have on the distribution layer switch. I know it is simple, But I have forgotten and just need a push
Also I have a third VLAN set to route traffic not bound for those 2 VLANs out to a router is the statement "ip route 0.0.0.0 0.0.0.0 172.16.252.2" good enough and do I actually need to create a VLAN for that traffic? and if so, is an access switchport the best option?
View 2 Replies
View Related
May 23, 2012
I been practicing with the configuration of layer 3 etherchannel configuration and i am facing a problem here. I have two 3560 switches and i want a layr 3 ether channel configuration setup between the first 2 ports of bothe the switches. I assign IPs to the Port-channel 1 of both the switches "10.1.1.1 /24 and 10.1.1.2 /24" but i am unable to get a successful ping. what am i doing wrong. below are the configs for bothe of my switches.
3560_1
Building configuration...
Current configuration : 1274 bytes
!
version 12.2
no service timestamps log datetime msec
no service timestamps debug datetime msec
[code].....
View 2 Replies
View Related
May 25, 2012
I have made a topology by using one 3560 switch and 2 2950 switches. I have also made 2 vlans name Clients and other Servers and vlan 1 is for anagement purposes. The left 2950 switch is for clients and the right is for servers. Clients is vlan 2 and servers is vlan3 . Now what i want is that my dhcp is should assign ips to clients in vlans 2 provided that servers are in vlan 3. I am also using a border router and i have introduced a default route on the 3560 to the border router.
Now when i assign static ips to my clients pc and server dhcp then i can ping between vlans but when i try to assign ip through dhcp then it wont work. Also the default route on the switch to the border router doesnt seem to work. I can ping only the border router when i put a default route on the border router instead of the 3560 switch.
View 3 Replies
View Related
Jan 2, 2012
I need to implement the shaping VLAN only on the trunk link between the 6500 and 3560. [code]
View 8 Replies
View Related
Oct 11, 2010
Any way to test in a lab what would happen if a tech mistakingly added "switchport voice vlan XX" to a trunk port? I am try to do some RCA on an issue and this has been identified as a possible cause by one of my techs.
The config is Switch1------Switch2--------Switch3 Each interswitch connection is configured as a dot1q trunk with all vlans allowed. The link between switch2 and 3 is where switchport voice vlan 10 was added. Switch1 is a 3750 and 2/3 are 3560's.
View 8 Replies
View Related
Nov 29, 2012
RACK 1 is the old rack and NEW RACK is the rack which is going to be procurred for some new Servers. All the Servers in the RACK 1 has a default gateway as PIX Inside IP. As of now the 3560 Switches acts as Layer 2 and does not have L3 IP routing enabled. How can I enable conenctivity between 192.168.36.0 range and 192.168.57.0 range wihtout making any change to current PIX inside IP address 192.168.57.1?Is it possible that I can enable IP routing on the 3560 Switches , create interface VLAN 36 and since already Switch 2 has it 's default gateway as 192.168.57.1 , Would the traffic from 192.168.36.0 be routed to 192.168.57.1 ? Or do I need to create static route for that ?Since L3 Routing is not enabled and since the 3560 Switches are just acting as L2 , the VLAN 2 - 192.168.57.0 range does not have any interface VLAN configured. When it is changed I would need to create interface VLAN 2 on 3560 Switches?
View 18 Replies
View Related
Apr 9, 2012
I am setting up a link between buildings that uses wireless links. I'm using Layer 3 routed ports on 2 3560 switches to handle the routing between sites. Normally I would just put these in a /30 and then the switches handle the rest. However, the wireless access points have a web interface for managing them that I want to be able to access, but it's only available on the single NIC that also carries traffic. What would be the best way of making this work? Should I make the link a /29 and give the access points an IP in the same range? If this is the case what do I use for the default gateway for the access points?
I have included a diagram to try to explain the issue clearer. The IP addresses in black are what I would do if this were a standard cable (and indeed this will work, but I wont be able to access the admin interface of the wireless AP) and the red ip addresses are the alternative if I use a /29 (but as I said, I'm not sure what to use for the default gateways).
View 1 Replies
View Related
Jul 11, 2012
I have P router (7206VXR) and I need to export netflow from its MPLS interfaces to the netflow software.
View 2 Replies
View Related
Apr 11, 2013
Is there really any reason why you wouldn't use spanning-tree portfast on a trunk port other than a trunk between two switches? We have it enabled on all ports except for the fiber trunk between two non-stacked switches and the trunk ports connected to our Astaro firewall.I'd like to enable it on the ports to the firewall unless that would cause issues.
View 9 Replies
View Related
Feb 12, 2012
we recently aquired a managed services job and have to do a overhaul of the vlan configs and have a whole dozen WC2948G's trunk between a set of ports as well as trunk out a LAG channel setup to non cisco equipment. the deal is the lacp-channel works properly on both ends but no routing of vlans between ports and between the lag trunk are working.
theres alot of settings in the config and im planning on clearing it and starting from scratch but before i do i want to know where my problem lies.
[code]...
View 6 Replies
View Related
Mar 18, 2012
I want to setup VLAN with the switches SG300 and SLM2024. What is the suggestion to connect these 2 switches. We have the Juniper net screen.
View 1 Replies
View Related
Nov 15, 2011
I have a question if I Stack a Catalyst 3750 L3 with a Catalyst just L2, will we able to use all L3 capabilities?
Switches are
WS-C3750G-24TS-E1U
WS-C3750V2-24PS-S
View 4 Replies
View Related
Apr 3, 2012
I am taking an introduction class to CCNA and we are focusing on the Application Layer,and I'm having some difficulty in understanding what is an Application Layer Service. Is the Application Layer Service the same as Application Layer Software?
View 3 Replies
View Related
Feb 19, 2013
Am having 2621 router, going to upgrade to gh speed wan interface card(HWIC-4ESW). whether it can able to handle routing as like a normal serial and ethernet interface? Shall i establish a new MPLS or Leased line connectivity in that interface(HWIC-4ESW) ?
View 5 Replies
View Related
Jan 14, 2013
Just like to ask first your inputs about the MTUs needed on our proposed setup. We currently have a large internal network composed of several metro ethernet links. We have different carriers and we all know that they do not always provide L1 connectivity. They sometimes do Q-in-Q or EoMPLS or other technologies that would hide their internal network and appear as a point-to-point ME circuit to customers.
We are planning to create our own MPLS network for our clients so we don't have to leak their networks inside ours and we are trying to avoid the overhead of GRE/IPSEC since we'll be adding a lot of client networks and the overhead is not reasonable. So we just thought of MPLS-VPN to at least reduce the overhead and we don't have to purchase a lot of network devices.
With that said, what is the safest thing to ask the carriers and what settings should i put in our network devices. I am still confused with the differences of MTU, IP MTU, and MPLS MTU.
We also have one circuit running 802.1q instead of using routed-port on the switch. Is 802.1q supported in LDP?
Our internal network is comprised of 6500 switches with Sup720 and Gigabit linecards and we are planning to use 3900 routers as PEs. We all hooked up our ME circuits across the 6500 switches.
View 1 Replies
View Related
Sep 21, 2011
tell me the IOS (c2600-???) needed to be able to do MPLS on the 2621 XM router?
View 2 Replies
View Related
Nov 7, 2012
We're looking at rolling out MPLS between each of our sites. probably more soon.Do you guys have favorite MPLS providers? How have your experiences been?
View 10 Replies
View Related
Jan 29, 2013
What is the purpose VPN label?As we know, in the MPLS VPN, the following mechanisms:RD - used to distinguish between overlapping routesRT - used to determine the VRF in which to send the route.But why need a VPN label?
View 11 Replies
View Related
Feb 27, 2013
there is a line set with a provider with EoMPLS.This is an international line coming with 10M connectivity.the line is working fine with udp traffic but with tcp we don t get any use more than 1M.
View 7 Replies
View Related
