Cisco WAN :: 6509 / Flapping Interface On A Router?
Nov 20, 2012
I am trying to determine a problem with flapping interface on a router not showing up in log buffer if Cisco IOS. I've included the config on the switch that pertains to the logging and can't seem to figure what is going on. The SNMP trap is being sent to our Central Management trap server and that is reporting the interface flapping but the flap doesn't show up in the log messages.
hstir1#sh int desc | inc 8/33
Gi8/33 up up
hstir1#sh int desc | inc 8/33
Gi8/33 down down
I am getting following error in Cisco 6509 switch.BUt there is no impact in the switch.
: %MAC_MOVE-SP-4-NOTIF: Host 0000.0c07.ac01 in vlan 694 is flapping between port Te8/1 and port Te7/1 29:33.959: %MAC_MOVE-SP-4-NOTIF: Host 0000.0c07.ac01 in vlan 269 is flapping between port Te7/1 and port Te8/1
We have a pair Cisco 6509 switch in which 2 * 48 Port 1G line cards and 1 * 16 Port 10G line Card, FWSM and Sup 720 are installed.We have Cisco UCS and HP Blade servers.Cisco UCS servers are connected to Cisco 6509 switch using Fabric Interconnect, and HP Servers are directly connected to core switches.Recently the team made many changes in the network. Upgraded the IOS in Cisco 6509 switch, Configured Port profiling , MAC Pinning , HBA Cards to UCS / Nexus 1000V Infrastructure. After this change they lost the connectivity to UCS and HP Serers. Every tower is checking at their end.
The Network Team has reverted back the core switch with old IOS , but still the problem persisit.I could only see the following error log in the core switch. There are two port-channels one between core 1 and core 2. The other is between core switch and FWSM module. [code]
I get some EIGRP flapping on my CE router (c2921) 2 sub interface to another two site. The router IOS version "c2900-universalk9-mz.SPA.152-2.T1". I capture the debug log as attached. I know understand some log meaning from the debug.
Having an issue that we have with a CISCO2951/K9. It connects to Internet through the GigabitEthernet0/1 interface. Since a few days ago, the Gi0/1 interface is flapping many times in a day:
100468: Oct 30 12:16:28 CST: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/1, changed state to down 100469: Oct 30 12:16:29 CST: %LINK-3-UPDOWN: Interface GigabitEthernet0/1, changed state to down 100474: Oct 30 12:17:08 CST: %LINK-3-UPDOWN: Interface GigabitEthernet0/1, changed state to up [Code]....
We acquired recentlty a new Cisco 6509 with Sup-2T supervisor card
My question is the following : we have a management subnet on a Copper-based switch; we manage all equipments through this network. I planned to configure the management interface on the 6509 to connect this switch & monitor the VSS through it However, since it is a CMP interface, most of the actions (SNMP, IOS upgrade.. won't be possible through this link) Moreover, I don't think LMS would be able to get the configuration through it (except by configuring a script running "attach" command & show run
Is there something I miss or must I add another interface of the Catalyst to this network (the problem being that I have no copper line card)
I have a 6509 with SUP2 w/msfc2 at home, I am currently have dsl for internet with static IP addresses. Due to AT&T not wanting to support faster speeds in my area, I have to look at another option. All of these will be dynamic IP addresses, cable, uverse, etc.
I need to be able to enable dhcp on the wan interface so I can connect directly into one of the gig ports (either on SUP2 or 6316) or on a 10/100 port on a 6348.
I have the following image installed s222-adventerprisek9_wan-mz.122-18.SXF13.bin, according to Cisco's feature tool, it is supported.
I have tried "ip address dhcp" on the interfaces but they will only accept "ip address x.x.x.x", I looked at "ip dhcp" as well and only get the option for "relay".
I would hate to have to put something else in the mix to handle the dhcp portion. I may be keeping the adsl for my mail server traffic and backup in case of an outage on the new provider. So I need to be able to track if a link is up.
I have just started to discover the power of EEM and am already monitoring config changes on our switches with EEM.I would like to be notified of any interface going up and possibly down. on our 6509's and 3750's This is just to be aware of anyone patching anything in.
I was wondering if an interface numbering scheme is available for the 6509-E switch equipped with SUP-2T and includes 16Port X 10GE DFC4, 48 x 1GE SFP and RJ 45 line cards. Would like to understand:
How the slots are addressed Interface Addressing On board SUP-2T 10G and 1G port addressing
I have a 10Mbps connection link which I will like to reduce to 5Mbps on a 6509 switch as indicated in the config below. [code] After applying the service policy on the vlan interface, i got this "match vlan is not supported for this interface". I actually tried the rate limit command but I cant see the effect using the speedtest.
I have attached a pdf of an example of a FWSM configuration with shared interfaces. Now what I dont get is (please refer to the link) url...Is there any difference between the natting that they have done on page B-4 on Context A.as opposed to configuring a static NAT for processing traffic to correct context nat(inside,outside) 209.165.201.0 10.1.2.0.The other question is on page B-2 (diagram) Context A has a customer A network linked to the inside interface. Is it possible to put a default route towards that "Network 2" cloud and restrict traffic from the 6509 switch towards the context A?
I have problem with traffic coming from GRE interface and going further through FWSM on the same 6509-E chassis.It's very interesting and confusing. If packets are fragmented, I can go through, however, if I use normal packets (usual ping for example) traffic goes from outside to inside and stops on it's way back.
Here is the detailed info: WS-C6509-E with WS-SUP720-3B FWSM HW 4.0, SW 4.1(4)
GRE is done in hardware (source is loopback interface - only one loopback per GRE tunnel).
I have used the following basic configuration to do rate limiting on a vlan interface on a 6509:
access-list 100 permit ip any any class-map match-all ratelimit match access-group 100 policy-map ratelimit-10Mb class ratelimit police 10000000 428750 conform-action transmit exceed-action drop
[code]....
How do I combine the two correctly to give me a vlan port rate limited at 10Mb up and down, but still setting aside (dynamically) 2Mb for voice?
We are looking for a solution that to use Sub-interface on a routed port on 6509, instead of using a SVI on it.Are there any different when using Sub-interface?
I am getting alarms on Solarwind indicating interface down on "GigabitEthernet 4/7 - Gi4/d1" and "GigabitEthernet 4/8 - Gi4/d2" from our core switch 6509.Remote login to the switch does not show the interfaces when I do the "sh run" command. Now I am at site trying to identify and diagnose this fault.Looking at the numbering on the switch, it indicates to me the card where these alarms come from is from the 'intrusion dectection module'
how I may login and identify this interfaces and rectify these alarms.
How (and is) it possible to rate limit pps on an interface (physical/logical), on a 6509-E?The porpuse is to protect from attacks which lead to very high pps, bypassing traffic rate-limits, and effecting the device's performance
although cisco sw advisor said that the best IOS for my hardware 6509 Sup720 IOS: (s72033_rp-IPSERVICESK9_WAN-M), Version 12.2(18)SXF16 suits the WiSM; And I tested it already with WiSM version 5.0 but when I've upgraded the WiSM to version 6.0 the service interface from the switch side says:
B5_Noc2_CS1(config)#int gig 4/9 % This interface cannot be modified
as the customer refuse to upgrade the switch IOS & He wants to use the latest ED WiSM sw 6.0;
i have been facing strange issue on FWSM (6509 switch). we have created a vlan inteface for server farm on fwsm and its stop responding automatically and we need to give shut/ no shut command under that interface to back into normal .
we have cisco 2960 switch which is connected to a cisco 2811 router. flapping issue between these two devices??
The following actions i have taken, but no result.. I have changed cables. have set speed to 100 and duplex full on both the interfaces but the interfaces are showing up up still not getting connectivity. same i have to auto on both sides still no result what configurations should i set to resolve this issue...?
I have 1x Cisco 6509 with Sup2 and MSFC2 and it is running on IOS (c6k222-jk9sv-mz.122-17d.SXB11). I have following policy map :
Policy Map VOIP Class IP PHONE priority percent 75
and the following command on each interface: service-policy output VOIP those configuration are working fine on SUP2 with MSFC2 but last week I tried to upgrade the SUP2 to SUP32 on the switch and upgrade the IOS to the latest version (s3223-adventerprisek9-mz.122-33.SXJ4) but when I try to put service-policy output VOIP on each physical interface I am getting the following error:
"Priority command is not supported in output direction for this interface" and when I try to add service-policy output VOIP on a V LAN interface I am getting following error:
MQC features are not supported in output direction for this interface. Will I need to change something after upgrading to SUP32..
I am not receiving icmp replays from the fswm interfaces if i try to ping 172.20.80.1 from 10.50.50.2.I do not see any debuging info in the logsI successfully ping 10.50.50.2 from the inside networks int the cat6500, but int the network 172.20.80.0, can not ping 10.50.50.2.
i have a 1841 cisco router and i recently purchased a 1 port HWIC wan interface card. My problem is that I cannot see the interface in my config file. Is there something i am missing?
Is it possible to set up a WAN interface on a FastEthernet interface of a Cisco 877 Adsl Router ?Due to my ISP, i've to use an external VDSL modem and must connect it to my cisco 877 router (and leave it's adsl interface unused).But i don't know how to set up a wan port, other than the adsl interface itself (dialer0), on my cisco.
I currently have a couple of 6509 chassis (router/switches) with the following hardware blades:
x3 48 ports x1 NAM x2 Sup720 Running 12.2(18)SXF3
I am keeping the four Sup720 modules and have purchased new versions of the others blades including two new 6509-E chassis?Can I take my stand-by Sup720 out of the production machine and insert it into the new chassis?
I currently have a couple of 6509 chassis (router/switches) with the following hardware blades:
x3 48 ports x1 NAM x2 Sup720
Running 12.2(18)SXF3.I am keeping the four Sup720 modules and have purchased new versions of the others blades including two new 6509-E chassis. Can I take my stand-by Sup720 out of the production machine and insert it into the new chassis?
I have a new Cisco 819 router wtih Verizon 3G built in. I want to use this router to provide 3G backup Internet access for a customer kiosk. The 3G is perfectly stable when I use it as a primary, static routed connection. When I use a floating static route, the link goes up and down constantly. The 3G link works for a about 20- 30 seconds, then goes to reset, down, then dials up and reconnects.
I am having an issue get an EZVPN working between a 2811 server and a SR520 client. The symptoms are the SR520 makes multiple connection attempts to the 2811. It appears that sometimes these connections are successful and the SR520 is assigned an IP address but then the tunnel will be dropped and a new session will be started. I've attached scrubed configs for both the 2811 and the SR520. One other note, when connecting to the 2811 with a software VPN client, there are no problems, so I think the problem is with the SR520. On the other hand, the SR520 wasn't having any problems until we switched our VPN server from a UC520 to the 2811.
I have two Cisco 888-K9 setup on a 4 wire private line about 2-3 km apart one configurated as CO and the other as a CPE. During config and testing the SHDSL connection was completely stable although this was only over about 300m of CAT5e. Now the devices are installed the in field I'm finding the connection constantly comes up and down every minute or so which leads me to suspect noise or line quality is the issue. How to debug this and tweak the setting to improve stability? Config from the CO & CPE attached along with DSL controller output from active and non active connection on the CO.
PE router-T (ASN 1111) ----eBGP---- CE router-T (ASN 65500) ----iBGP---- CE router-V (ASN 65500 ) ----eBGP---- PE router-V (ASN 2222)
When We have configured in this mannger everything is working fine. Only thing is that I can not receive all the NEtwork updates coming from PE- Router - V in CE router T. It's due to synchroization rule (I have not tunrned off synch in CE Router T.) Now for Load sharing purpose I have applied one Route map on iBGP peering from CE Router V to CE router T in OUT direction mentioning any routes coming via ASN 65555 than set Local Preference = 150 and will prefer path via MPLS SP - V. Rest via MPLS SP - T.
But as soon as I have applied the Route-Map. It's not reflected.When I have applied clear ip bgp * on CE rotuer - V than I can see two routes in CE router - T with LP 150 and default. Everything is working OK.
When trying to check the auto failover by Shuting LAN int of CE router-V --- Failover is also working via CE router-T.When reenabling the LAN int ----- After that iBGP perring is flapping continuolsly. Finally We have remove the route-map ad it was stable.
find the route map :
CE Router - V router bgp 65500 ! address-family ipv4
[code].....
I have also checked the MTU issue between these two Peer (LAN int. of both the CE routers) by pinging each other with size 1500 with df-bit set.
I've been handed an 887M with a PCEX-3G-HSPA-R6 card in it, and asked to get it working on the big, bad internet.I've managed to get it to the point that it at least *tries* to connect to the internet over the 3G network - but I've run into a problem I can;t, for all my google-fu, find an answer to.
Details - Router is an 887M/K9, running 15.1(1)T1. 3G SIM is confirmed OK (I've put it into my laptop, which has a cellular modem, and it works fine).
What happens is that the ce0 interface connects, and then immediately drops, and goes into reset mode. I'm stuffed if I know why - not sure if I need to do a firmware change to it, or soemthing else to the config.
Config (which is very basic - I just want it on the internet before I get fancy) is below
Router#sh run Building configuration... Current configuration : 1504 bytes ! ! Last configuration change at 03:48:36 UTC Tue Nov 20 2012 ! version 15.1
[code]....
It *seems* to come up, but immediately drops out, and I can't figure out why.
