I am looking at upgrading our 4503 to the 4507R+E. Just going through the configurations and a couple of commands seemed to have dropped off this release.
1. I can no longer specify encapsulation type on a trunk. Does the 4507 auto sence encapsulation and apply it dynamically?
2. I had dscp trust configuration as below on the 4503, whats the equivilent on the 4507?
I've been studying my inter-vlan routing , mainly in this case routing on a stick. I noticed through packet tracer that the 2960 switch doesn't allow for the '(config-if)#switchport trunk encapsulation' command, but the L3 3560 switch will.I am very concerened about this since VLANs are a main topic. What perspective will Cisco be seeing this from for the CCNA exam, I test in 12 days. I have embedded a packet tracer screen shot for more information in case I didn't word this right (which happens all the time to everyone it seems like in NW'ing now and then if not alot).
View 19 Replies View RelatedI've buy a SRP500 Series Router (ADSL 2+).My ISP need RFC1483 Routed with LCC encapsulation type but this router dont have this type of encapsulation available in WAN settings. What can i do to use this device with my ISP adsl connection ?
View 4 Replies View RelatedI'm setting up a new 4900m running cat4500e-ipbase-mz.122-53.SG5.bin. I'm attempting to create Port-Channels as a Trunk for uplink to a 4503 running cat4500-ipbase-mz.122-37.SG1.bin.When I attempt the command "switchport trunk encapsulation dot1q" it errors out.
View 3 Replies View RelatedIs there really any reason why you wouldn't use spanning-tree portfast on a trunk port other than a trunk between two switches? We have it enabled on all ports except for the fiber trunk between two non-stacked switches and the trunk ports connected to our Astaro firewall.I'd like to enable it on the ports to the firewall unless that would cause issues.
View 9 Replies View Related we recently aquired a managed services job and have to do a overhaul of the vlan configs and have a whole dozen WC2948G's trunk between a set of ports as well as trunk out a LAG channel setup to non cisco equipment. the deal is the lacp-channel works properly on both ends but no routing of vlans between ports and between the lag trunk are working.
theres alot of settings in the config and im planning on clearing it and starting from scratch but before i do i want to know where my problem lies.
[code]...
I have some LSA type 5, I want to change it from type 5 to type 3 before send to another Area, How can i do it?
View 1 Replies View Relatedencapsulation of routing protocols. Where exactly in the OSI, or TCP/IP for that matter, model does the data of the routing protocol fit into ? Is it encapsulated inside the transport layer segment payload ? So far from the I've gathered, that's where it should fit.
#####@@@@$$$$routing/procotocol/and/data/etc#####
#-Data link header and trailer
@-Network layer header
$-Transport layer header.
I am trying to config a 2620 Cisco router to perform subintreface (F0/0.1) for Vlan Trunk Protocol, however when I try to configure the encapsulation dot1q, I continue to receive error massage with ^ symbol below the 'c' See below, the platform version is a 12.3(26) which should be acceptable to perform an (encapsulation dot1q). The Ethernet is a fast-Ethernet 10/100 port. I also try the ISL, I receive the same massage.
Router#config t
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#int f0/0
[Code]....
I recently purchased a Zyxel PK5000Z modem from qwest, upgrading from my M1000 actiontec. My reasoning was that port forwarding was not working as part of the router on the actiontec, and the pk saved me some money on my bill. So, what I always start out doing on modem/routers is restrict DHCP to 192.168.0.2 to 192.168.0.10, limiting the number of devices that could connect, and I don't know if that really matters or not for this problem, but figured I would throw everything out there. So....My actual problem is that now when boot up xbox360 I get a xbox360 live "nat strict" error. I have all the ports suggested for xbox, and the particular games forwarded, and DMZ turned on to the static IP I assigned to the xbox. I started out assigning a static IP reservation in the router for the xbox (the one I set on the xbox), but soon found not needing this. I ran the firmware diagnostic tool in the utilities menu and the "encapsulation test" failed, I called qwest, they have no clue, but sounded like a level 1 dude, but he authorized a new actiontec pk5000.
View 3 Replies View RelatedI am trying to setup a cisco 2600 router that will be used to connect to a Qwest internet T1. I will have a Cisco ASA firewall behind the router so that I can build a site to site VPN tunnel. Qwest requires PPP encapsulation. The Lan side network is 10.2.0.0/16. Qwest gave me their serial IP address and my serial ip address which was I used to configure the route. The ethernet interface was configured for the local Lan side subnet and i natted both the inside and outside interface of the router. I am not sure if this is correct. How do I configure the router so that I can use one of the available public IP Addresses as the outside interface of the ASA?
Here is the config of the router:
version 12.2no parser cacheno service single-slot-reload-enableservice timestamps debug uptimeservice timestamps log uptimeno service password-encryption!hostname cedar!logging rate-limit console 10 except errorsenable secret 5 xxxxxxxxxxenable password xxxxxx!ip subnet-zeroip audit notify logip audit po max-events 100no ip dhcp-client network-discoverycall rsvp-syncinterface FastEthernet0/0description Lan Interfaceip address 10.2.1.1 255.255.255.0ip nat insideno ip route-cacheno ip mroute-cachespeed autofull-duplexno mop enabled!interface Serial0/0ip address 65.121.x.x 255.255.255.252ip nat outsideencapsulation pppfair-queueservice-module t1 clock source internalservice-module t1 timeslots 1-24!ip nat inside source list 1 interface Serial0/0 overloadip classlessip route 0.0.0.0 0.0.0.0 65.121.x.x (qwest serial IP address)ip http serverip http authentication local!access-list 1 permit 0.0.0.0 255.255.0.0
enable dot1q encapsulation on two ethernet ports on a 1721 router. I am able to configure it on the built in fastethernet port, but not on any interface provided by a WIC-1ENET or a WIC-4ESW. I have an application that requires two physical ethernet ports that support dot1q encapsulation.
View 4 Replies View RelatedI have a Catalyst 4500 L3 Switch Software (cat4500e UNIVERSAL-M), Version 03.02.00.XO RELEASE SOFTWARE (fc2). So I just wanted to verify that the switch only does dot1q encapsulation because the switchport trunk encapsulation dot1q command does not work.
View 3 Replies View Relatedwe have an ASR1002 running zone-based-firewall with 2 zones:
zone_ouside
zone_ph
I have a common ZFW-configuration on that interfaces, e.g.
<code>
class-map type inspect match-any pass_cmap_in
match access-group name pass-ipv4-in
!
class-map type inspect match-any ph_cmap_in
match access-group name ph-ipv4-in
[code]....
There is some basic stuff in the Access-Lists; direction ph-ipv4-in contains basically "permit ip any any" and ph-ipv4-out contains some permits for certain services, but nothing else. The pass-ipv4-in/out ACL contains particularly the udp-500/4500-stuff as well as gre/esp/ah.
Here are the zone-pairs:
<code>
zone-pair security zone_ph-zone_outside source zone_ph destination zone_outside
service-policy type inspect ph_pmap_in
!
zone-pair security zone_outside-zone_ph source zone_outside destination zone_ph
service-policy type inspect ph_pmap_out
!
</code>
[code]...
The xconnect is only built up correctly when I configure the interface in the zone_outside. The destination for the xconnect is an ASR9k. If I do not configure the zone on the L2VPN-Interface, only arp-packet are allowed to tgo through the tunnel.
The L2VPN connects a branch office to the network of "PH". Now the trouble starts: when they are putting a host in the branch office, DHCP via the L2VPn works fine, they can ping anything from the branch office-PC in their local network and reach all internal servers etc.
BUT if they want to go to a destination outside their network, it will not work properly. For example, the branch-office-PC can ping 8.8.8.8 fine, but when they try to connect to a website, e.g. www.google.com, they run into a timeout. Netstat says, that the http-syn is sent, but no ack is received.
On the router, I see:
Session 1178BAE8 (x.y.225.250:2370)=>(173.194.35.151:80) http SIS_OPENING
whereas x.y.225.250 is the PC connected via L2VPN in the branch office to their local lan. When they put the same machine in their local lan directly behind the router (without l2vpn) everything works fine. When I switch off the firewall on the Gi0/0/0-Interface, the PC from the branch office also reaches its destination, so for me it looks like the firewall inspects the traffic going via Gi0/0/1 and L2VPN, what in my opinion, it should not do....
I am trying to configure a 4507 R chassis with Dual SUP but i cannot see teh switchpot mode trunk encapsulation dot1q?
I have typed:
interface GigabitEthernet5/1
description DOWNLINK toxxxxxx
switchport mode trunk
channel-group 11 mode on
!
I have have searched all other commands and sub-commands but could only find dot1q-tunnel which I beleive is for QINQ or some QoS featues and lot for L2 encapsulations?
the puzzling is:
XXX-Core4507#sh int gi5/1 trunk
Port Mode Encapsulation Status Native vlan
Gi5/1 off 802.1q notrnk-bndl 1
(Po11)
when I connect the dostribution switch a 3507 to this int gi 5/1, both interfaces do come up?
I'm trying to use a Sup6-E to do some intelligent shaping. I'm getting an error and I think its because of the architecture of the 4500 QoS. Most likely this type of QoS is not supported so how to implement this QoS policy.
!
class-map match-any PRIORITY-QUEUE
match dscp ef
match dscp cs5
match dscp cs4
!
class-map match-any CONTROL-MGMT-QUEUE
[code]....
We have just replaced a 4507R for a 4507R-E but I can't RME to manage it. I also can't get Cisco View to work. We appear to have packages installed (see attachments).
Is there anything I can do to troubleshoot?
I need to use:
track 1 ip sla 1 reachability
In my 4507R core switch. Need to know which IOS should I use for this command as now I am using
cat4500-entservices-mz.122-46.SG.bin
In this when I am using
(config)#track 1 ip ?
route IP route
We have a new 4507R-E Switch which RME keeps reporting as "CONFIG_CHANGE" each evening. When you click to see the change, the only thing that has changes is the "ntp clock-period".
However, we have configured "ntp clock-period" as an exclude command in RME Config Managment.
We have 694 units Cisco Catalyst 4507R plus E swithes accross the network. LMS 4.1 can discover it no problem however, i cannot extract inventory information for these switches. I get the this "Number of devices that do not have inventory collected data" on the report.installed System image file is "bootflash:cat4500e-entservicesk9-mz.150-2.SG1.bin"
i saw this supported version:
150-1.XO (or) 03.01.00.SG <<--- should i have the exact image or higher version will do? [Inventory Config and Image Management]
Reference: [URL]
Is the image installed on my switches not supported? seems like I have higher version.
I'm having issues getting the ports g3/5 and g4/5 from inactive to notconnect.
I have tried the hw-module uplink select all in the global configuratio, but it's not working, getting a : % Invalid input detected at '^' marker. Message every time.
This what I have:
Power consumed by backplane : 40 Watts
Mod Ports Card Type Model Serial No.
---+-----+--------------------------------------+------------------+-----------
1 48 10/100/1000BaseT (RJ45) WS-X4548-GB-RJ45 JAE152101QK
[Code].....
I have a 4507R-E chassis with Supervisor IV running IOS 12.2(50)SG. I am trying to configure "auto qos voip trust" on some of the uplink ports. When I try to configure it on a port that is in a channel group, I get the error "AutoQoS Error: AutoQoS can not be configured on member port(s) of a port-channel". I have also tried configuring it on the channel interface, but it is not an available command under the channel interface. Is there a way to do auto qos on the channel interfaces or their member ports or does it have to be configured manually?
View 12 Replies View RelatedI am facing high CPU utilzation for cisco4507R,
sup:
WS-X4516-V
ios version:
cat4500-entservices-mz.122-54.SG.bin
!
show process cpu
CPU utilization for five seconds: 97%/1%; one minute: 97%; five minutes: 97%
[code]....
I installed LMS 4.0 succesfully, but when i go to topology, can view all network, but the "AswitchA" Core 4507R+E be displayed as "?"
And it can not display this "AswitchA" into CISCO VIEW, display this messaje :
"Cannot find applicable device package for ... This error could be due to one of the following:
- The device package for this device type is not installed.
- Device support for this device type is not available.
- You are trying to open a component inside a device.
To correct the problem, either install a device package for the device type, or open the parent device to manage the component."
My customer is having Cisco 4507R switch with IOS version 122.31-SG1 which deosnt supports NAC - L2 IEEE 802.1x but supports NAC - L2 IP.What is the difference between these features and which features is required for proper authentication and posture assesment.
View 1 Replies View Relatedwhat I have are 2 x 7204VXR (Gateways), 1 x 4507R-E (Coreswitch), and our ISP have 7609.Got some issues with redundancy with our ISP.
7609
I I
I I
7204-A 7204-B
| |
| vrrp |
| |
-4507R-E-
|
|
internal network
Both outside interfaces of 7204 gateways are connecting to 7609 with different public ip block.I used VRRP for my internal nework and failover have been tested working.Even tried to remove link of 7204-A and 7609, the failover works perfect.But somehow we're facing a problem:
- If I shutdown/ remove the link between my 4507R-E and 7204-A (primary gw_higher vrrp priority), vrrp redundancy/failover still works but internal network's internet connection goes down.
I asked our ISP and the route commands they put in their 7609 are as of follows:
ip route 3.8.8.0 255.255.255.0 3.4.4.4 name TO CUSTOMER LINK 1
ip route 3.8.8.0 255.255.255.0 3.3.3.3 2 name TO CUSTOMER LINK 2
And if they're trying to use Reliable Static Routing Backup Using Object Tracking, the internal network's internet connections is intermittent....alternate 4 ping reply and 4 timeout.
Note: IP used are sample only
I have two types of 4507 switches
1. 4507R
2. 4507R-E
and SUP-V and SUP-6-E.So I want to test both SUP cards on both switches which SUP card support which switch?
I received an replacement supervisor from Cisco to swap out the failed standby supervisor. I wanted to check if I can pull out the failed supervisor supervisor and insert the replacement supervisor while the switch is still on. In other words, is it hot swappable? Also, will this operation cause interruption of switching inside the 4507R switch?
View 6 Replies View RelatedWe are planning for the office move and I need to estimate how much power we need to run a fully populated Cat4507R switch. The chassis include 2 Sups, one 6-port fiber line card, two 48-port Gig and two 48-port FastEthernet line cards. The switch also has redundant power supply (4200ACV 1400W). According to Cisco Power Calculator [URL], I need 49.5 amp 110-120V circuit. It seems to be too much higher than real world. How many 20amp circuit we would need when all the ports are fully utilized?
View 3 Replies View Relatedhow to upgrade firmware on 4507 6L-E Sup. There is only 1 Sup on the switch. is there any special requirement to update the firmware when switch not running on redundancy mode?
-core-1#show redundancy states my state = 13 -ACTIVE peer state = 1 -DISABLED Mode = Simplex Unit = Primary Unit ID = 3
Redundancy Mode (Operational) = Stateful Switchover Redundancy Mode (Configured) = Stateful SwitchoverRedundancy State = Non Redundant
[Code] ......
I have a bootflash in 4507R with the size of 60MB. I upgraded the ios from cat4500-ipbasek9-mz.122-37.SG1.bin (12.8MB Size) to cat4500-entservices-mz.122-37.SG1.bin (13.8 MB SIZE) and deleted the previous IOS.But previous IOS is still getting shown in sh bootflash: command. Furthermore, dir bootflash: commands shows there is only one IOS , which is running. How I can free the space from bootflash , as I again have to upgrade the another new IOS ( of 16MB), which I tried through solarwinds tftp and couldn't upload successfully because of its limitation. Now, If I try to upload the new IOS through FTP, it gives me memory space error. How I can free the space captured by old IOS and also how I can delete the 3rd unknown entry of IOS (shown below output of commands)?
View 4 Replies View RelatedNeed to confirm on 4507 R switch should i set config reg to 0x2102 or 0x2101?
View 4 Replies View RelatedMy CORE Switch 4507R Suddenly restarted (Powe is good) , and gets the business down for 30 Mts,my boss came to me and asks why it has restarted , what is the root cause of this restart, i dont have any syslog or NMS enabled in my network to be informed
View 6 Replies View Related
