Cisco WAN :: 877 / 2960 - HSRP Configuration On VLan1
Nov 13, 2012
I have the following topology:
2x 877 routers, one interface from each router (port Fa0 which belongs to the router internal switch) is connected to the 2960 switch, the switch himself configured with default settings, flat with one v LAN.
I have configured HSRP in the following manner: router A is 10.0.0.2, router B is 10.0.0.3, virtual IP is 10.0.0.1, take note that the HSRP configuration along with the IP address are configured on vlan1 interface.
Now when i connect a PC to the switch with static IP (10.0.0.4) and trying to ping 10.0.0.1 I'm not getting replies. i see on the PC, using wire shark, the icmp request goes out but on the primary router (and also on the backup) i can't see the icmp request (using debug ip icmp).
this behavior happens only when the HSRP is configured on interface vlan1, when configuring the same configuration on Fa4 (which is WAN interface) everything works fine.
View 4 Replies
ADVERTISEMENT
Feb 21, 2012
the attached image shows what i am trying to achieve.i need to establish connectivity from subnets 10.30.5.X and 10.30.6.X (in VLAN1 and VLAN2 respectively) to subnet 10.11.35.X
i have a trunk port on my cisco 2960 that is connected to GiE0/0 on my Cisco ASA that has 2 sub-interfaces with IPs in the subnets mentioned above.my problem is i can only connect to 10.30.6.X from 10.11.35.X (and vice versa), but no connectivty to 10.30.5.X
View 3 Replies
View Related
Feb 11, 2013
I have a 24 port 2960-S that is not communicating with a 2960-LST that it is directly connected to over fiber. The link is up on the LST but will not come up on the -S. What command should I use to bring up this link? I have tried no shut from the (Config-if)# prompt.
View 3 Replies
View Related
Aug 1, 2012
I am looking to simply monitor Port-Security , Error-Disable and HSRP. I would like to receive an email when any of these are triggered.
Port Security - Port Is shut down
Err-Disable - Port goes into err-disable state (securedown)
HSRP - When HSRP standyby changes are detected
I need to receive emails with any of the able are triggered. What is the easiest way to do this? I know SNMP is the main option but I have never worked with SNMP and dont understand it too much.
Equipment:
2x Cisco 1921 series routers
3x Cisco 2960 POE switches stacked
View 1 Replies
View Related
Feb 3, 2011
I want to run HSRP into my network.i am using two 4503 switch one is main and another one is standby. i configured V LAN into my switch and its running, now i want to configure HSRP. my configure is attach with this mail and my main switch gi2/22 is connect backup switch gi2/22 and all user is connect to both switch as like HSRP network.
I can use Standby ip
10.0.1.252 (vlan-1)
10.0.2.252 (vlan-2)
10.0.3.252 (vlan-3)
10.0.4.252 (vlan-4)
10.0.6.252 (vlan-6).....so on.
View 1 Replies
View Related
Jun 12, 2013
I have 3945 router using the HWIC-4ESW module.I am not able to see the HSRP configuration commands under these interface.Does this module support HSRP ? If yes , do i need upgrade the IOS of router.
View 1 Replies
View Related
Feb 27, 2013
I have configure multiple vlans on both the core swithces below is the example, my question is how will be my VTP server configuration on the 3560E since both the core switches will have identical vlans HSRP 2 configured on them. Do I have to configure both the cores with same DOMAIN NAME ?
The core has VTP 2 so I cannot use primary and secondary option.
CoreSwitch1
interface Vlan713
ip address 194.43.86.251 255.255.255.0
standby version 2
standby 86 ip 194.43.86.1(code)
View 3 Replies
View Related
Mar 6, 2007
In the LAN network 4507R as core switch configured with several vlans.One vlan connects to the dual homed routers which in turn connecting to the single isp. I need to configure the HSRP for the internal vlans and the same time to use the load balancing or failover using the dual homed routers to the isp.
View 7 Replies
View Related
Aug 16, 2012
Having 2 router with 2 sub interface configured with HSRP. The server sending the data have the route default gw xxx.xxx.xx.252 HSRP address. But on of the routers did got HW problem so we did shut it down, R2 with IP xxxx.xxxx.xxxx.251, problem so the traffic didn't go there correct when was using the HSRP address some packaged went there but not all of them no blocks in the logs. But then we did change the server direct to to the working router R1 xxxx.xxxx.253 everything did start working fine again. was working fine. Logs i got in the router was max tcp half-open connections.
I am wondering if something wrong in the configuration below and why the traffic didn't got there correct when using the HSRP address. Its working fine when using R1 IP address. The devices are 2 Cisco 2620 routers.
R!1
interface FastEthernet0/0.192
description Prod_Inside
encapsulation dot1Q 192
ip address xxx.xxx.xxx.253 255.255.255.192
ip access-group Inside_Outside in
ip verify unicast reverse-path
no ip redirects
[code]...
View 3 Replies
View Related
Feb 15, 2012
I have a serious problem with cisco 2960 router,i am using a dell dimension 3000 running a microsoft windows xp proffessional.
View 3 Replies
View Related
Jan 17, 2012
At a college we have Ciscos 2960 and are trying to setup VLAN tagging and also using RST or MST. The traffic on the jack should get tagged vlan 248.We were told by the college that Ciscos in the labs will not work with the Alcatel switch that provides access to the lab. That Alcatel is in Bridge 1x1 mode. The college will not change the configuration on the Alcatel.We got the Ciscos to do VLAN tagging and can get network access. However the spanning- tree is not read properly. Cisco does not properly read the Alcatel's RSTP (since the Alcatel is doing tagging on the BPDUs). It places the root of the spanning tree under vlan1 instead of vlan248.
The college strongly recommends HP Procurves and we are using that as test.The following is the configuration on the HP and it works with no effort (it reads the spanning-tree information as MST)We will end up getting HPs instead, if the Cisco cannot work with the Alcatels.
View 3 Replies
View Related
Mar 3, 2013
We have a configuration that work fine but one of the combinations it don´t work. When we connect a guest laptop, the first time work fine. The configuration is when the laptop don´t authenticates with radius, the dhcp server assigned vlan guest and ip guest. The first time was ok. After, We connect a laptop with users authenticates work ok, the radius asigned vlan of users and dhcp server assigned ip users. The problem was when we connect for two time a guest laptop, radius didn´t validate and laptop didn´t negociate ip with dhcp server. In this time, the administrator of dhcp server, tell us that they didn´t see nothing traffic of my mac. and anymore run fine. If Whe change the port of switch , the laptup start working again.
Radius=NPS
Server dhcp: is typical.
Our scenario is with a ip cisco phone. the ip phone don´t have the authentication. The administrator of radius tell us that the configuratation is fine and the configuration of dhcp is fine. When we connect only laptop, everything run ok.
Configuration Port.
interface GigabitEthernet1/0/3
switchport access vlan 202
switchport mode access
[Code]...
View 4 Replies
View Related
Feb 25, 2013
I'm trying to save a configuration file on my 2960-48PST to a FTP server.
Unfortunately it doesn't work. What different steps I should follow ?
The software version is 12.2(50)SE5.
View 2 Replies
View Related
May 5, 2013
I have a 2960 that bounced several times over the weekend and then appears to have lost its configuration. Using CDP from the backbone switch pulls up the information below. Is there any way for me to configure the downed switch from another switch on the network? I am trying to avoid having someone from the site try to find a console cable and a suitable computer with a serial port. [code]
View 2 Replies
View Related
Oct 21, 2011
I did the DHCP configuration for my CISCO 2960 switch but the clients are still not able to get the IPs.see the configuration below.
(config)#ip dhcp database cisco.com
(config)#pool test
(config-if)#client client-id vlan 500
(config-if)#ip dhcp snooping trust
View 1 Replies
View Related
Mar 11, 2013
Using Cisco 2960 series switches (Have 8 . 2 stacks of 4) to replace 6 old switches. 4 old switches had IP ranges of 192.168.6.*** and all new switches have 10.1.*.* addresses. Core switch has 10.1. as well as 192.168 ip addresses but i need to configure one vlan (5?) to route to 192.168 address. PC's on 10. address taking a long time to access 192 range.
View 2 Replies
View Related
Jul 26, 2012
I'm fairly new at trying to create isolated network segments on Cisco switches. What I'm trying to do is have multiple isolated paths that originate from my v Sphere infrastructure travel through a layer 2 link, v LAN, up to a MLS, and ultimately out to to the internet through a firewall. Each sub net might ultimately have a number of hosts on it, but I don't think the make up of those hosts will matter here.
My initial thought was creating v LAN tagged port groups on v Switches on my v Sphere infrastructure. Physical connections will go from my ESXi hosts to the 2900 series Cisco switch connected to trunk ports. Both v LANs would be configured on the switch but not assigned to physical ports. The physical connection to the 3750 would also be a trunk port connection from the 2960. The 3750 would have SVI's created that are attached to VRFs that would control route traffic. This might be totally wrong but from what i've read it seems to be going down the correct path I think.
Two part question, is this the best way to go about designing this network? If so I seem to be really struggling with the SVI/VRF part. Every time I create an SVI all of my hosts on the 10.10.10.x network can ping them, regardless of which v LAN they're on.
I just cannot seem to isolate the 172 network.
View 3 Replies
View Related
Sep 10, 2012
I have Cisco 2960's, 3750's and 3750x's all running IOS on the access layer. I have Cisco 6504's running IOS on the Distribution and Core layers. I am looking to monitor redundant links through Spectrum by having specific ports send traps but I have run into trouble finding how to configure it. I would like to have:
1. Logging enabled for all links (Fiber and Copper) so that I see all links up/down messages in the syslog
2. SNMP traps sent for linkup/link down messages only for redundant links (ex. Dual Up links from Access Layer or Redundant Ether channel Links on Dist Layer)
3. SNMP traps should be ignored/not sent for all copper ports.
View 3 Replies
View Related
Feb 28, 2012
We had core(4503), distribution(3750), and access switches(2960) in our environment. Currently we configured the clock manually in each switch, but a reboot of the switch resets the clock also. We are planning to make a single switch as a NTP servers and others are clients to synchronise the correct time even after a reboot of the access switches.
View 6 Replies
View Related
Feb 4, 2013
I was wondering if I can force catalyst 2960 to skip startup config stored in NVRAM and boot with no config everytime it is powered. I tried to find it on google and in cisco white papers but still no luck. I found only commands that begin with "set boot config-register ... ", but switch acts like it does not know these commands.
View 7 Replies
View Related
Dec 4, 2011
How do I create static smartport macro on Catalyst 2960 & 3750 equivalent to below static smartport macro:
macro name NOT_USED
description UNUSED_PORT
switchport
switchport mode access
switchport access vlan 100
shut
@
I am able to create above smartport macro on Catalyst 3760 & 6500, but not on 2960 & 3750 (see below):switch(config)#macro ? auto Macro autoexecution settings global Enter global macro configuration
View 12 Replies
View Related
Jul 5, 2012
I've recently purchased a Cisco catalyst 2960S-24TS-L & setup 3 V LANS 10 (no current IP),20 (192.168.2.1) and 30 (192.168.3.1) to reflect the router V LAN configuration & ip information. When connecting my PC to the switch to test connectivity on (2.1 & 3.1) I'm unable to connect to the the net but can successfully ping GW (int FE0.20 & FE0.30) 192.168.2.1 & 3.1.
The router is an Cisco 1801 & it seems this is where the configuration issue is but I'm unable to figure out how to complete the setup. It has been quite awhile since I've configured a Cisco router.
Ive never had this router connected to a switch so all router switch ports are in the default VLAN1 (192.168.1.2), with FE0 disabled. In trying to get the switch to communicate with the router I made the following router config modifications.
FE0 enabled with subinterfaces configured
FE0.10-currently no ip
FE0.20-192.168.2.1/27
FE0.30-192.168.3.1/27
I have two issues I want to resolve:
1) I do not know what additional steps are required to allow 2.1.& 3.1 V LANs to access the net.
2) I want to disable VLAN1 if possible & use the network IP for VLAN10 (192.168.1.0). I'm unsure how to do this as any change on VLAN1 immediately breaks router access and the router reconfiguration becomes more complicated with changes to the FW ACL etc.
View 2 Replies
View Related
Jan 28, 2013
I am going to creat VLANs very 1st time therefore for test purpose I have following simple scnerio.I have created 2 VLANs , VLAN2 and VLAN3 on Cisco Catalyst 2960 series switch. Ports 1-12 is assigned to VLAN2 and Ports 13-24 are assiged to VLAN3. Now I have configured DHCP on Microsoft Server 2003 defining 2 scopes with following configurations.
Scope 1 for VLAN 2--- Range is 172.16.0.17 to 172.16.0.30 with subnet mask=255.255.255.240 . Server IP address 172.16.0.17
( Note: Address 172.16.0.17 is excluded from dhcp server Scope 1 and give to the MS server itself)
Scope 2 for VLAN 3----Range is 172.16.0.33 to 172.16.0.46 with subnet mask=255.255.255.240 .
Now in Cisco 2960 series switches, under Vlan 2 and Vlan 3, I have following configurations...
interface Vlan2
ip address 172.16.0.30 255.255.255.240
ip helper-address 172.16.0.17
interface Vlan3
ip address 172.16.0.46 255.255.255.240
ip helper-address 172.16.0.17
Now the problem is when i connect a client computer to any port from 1-12, It gets correct IP address from Scope 1 but when I connect a computer to any port from 13-24, it does not get the ip address.
Further I want to do inter VLAN comunication as well for that purpose i Have an ISR 2900 series router. What further configuration i will have to do on router for inter vlan communication.
View 3 Replies
View Related
Apr 12, 2012
provide a sample Voice Vlan configuration for the Cisco 2960 POE switch to work with the Non-Cisco IP Phones?
Will these commands work? Vlan 2 is the new voice vlan, Vlan 1 is the data vlan.
mls qos
interface fastethernet 0/1mls qos trust cos switchport nonegotiateswitchport mode trunkswitchport trunk encapsulation dot1qswitchport voice vlan 2priority−queue outspanning-tree portfastspanning−tree bpduguard enable
vlan 2name voice
View 2 Replies
View Related
Feb 3, 2013
I'm trying to get a catalyst going for remote management using cisco network assistant.I've basically, enabled telnet;
enable conf t line vty 0 15 password {password}
login
exit
gave it an IP;
int vlan1 ip address {IP} {Subnet}
no shutdown
exit
[code]...
and write mem to save it all. I can ping, telnet and access cisco network assistant from inside the network perfectly. But the problem I'm having is accessing it from outside, can't even ping the device. I can ssh to other servers behind the network just fine. There is no firewall in place at the moment, the provider's drop is plugged in gige port 1?
View 3 Replies
View Related
Dec 27, 2009
In default mode the ASA 5505 is setup with two Vlan's, one inside and one outside. Vlan1 is the default inside VLan, with IP 192.168.1.1. I would like to change the subnet of Vlan1 tot 192.168.10.1, but when I do, no Ethernet port is assigned to Vlan1 anymore (was 0/1 - 0/7). What I have done is;
#config t
(config)#interface vlan 1
(config)#ip address 192.168.10.1 255.255.255.0
But after that, no Ethernet port is within Vlan1, so I tried the following to assign one (port 0/1);
#config t
(config)#interface 0/1
(config)#switchport access vlan 1
(config)#no shut
But nothing happends when monitoring (#show run) interface 0/1 (no Vlan assigned)
View 6 Replies
View Related
Feb 26, 2012
I have an ASA5505 where vlan1 (inside) and all associated ports (e0/1 - e0/7) are down. Workstations on vlan 1 are online and working. Vlan2 (outside) is up and running normally. I tried to shut/no shut on the vlan. I also rebooted the firewall. No change. Why vlan1 is down?? I've attached some config info and some troubleshooting.
View 5 Replies
View Related
Apr 7, 2011
I have a problem with my Cisco 887V VDSL-router. The router gets a ip-address with dhcp from my provider. That works fine. I also can ping from the router:
routerVdslTestNew#ping google.ch source vlan 1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 74.125.79.99, timeout is 2 seconds:
Packet sent with a source address of 10.10.10.1
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 48/48/52 ms
My problem: If I want to ping google from a computer in the VLAN1 the ping doesn't work.
C:UsersXXXXXX>ping 74.125.79.99
Ping wird ausgeführt für 74.125.79.99 mit 32 Bytes Daten:
Timeout.
View 3 Replies
View Related
May 20, 2013
I want to know how am i do to change the Vlan1`s IP address because the actual ip will be used in another vlan. Actually i haver 10 vlans in L3 mode (routing) implemented in it.
View 5 Replies
View Related
May 12, 2013
router 1721 with one wic-1adsl ,i have adsl conection with irb static ip. the router connect with mannaged switch through a trunk port. the switch has 2 vlans one for the static IPs and the other for private lan. i need the private lan to be able to go to internet. vlan2 can go to internet because it has the same subnet with provider but vlan 1 canot go internet, so how i can make all vlans go internet(the router has only 1 fastethernet port)
View 4 Replies
View Related
Jun 4, 2012
Got an odd problem with trunking, all vlans except vlan1 trunk perfectly. Link is from a pair of dualhomed FEX 2248TP's to some 3650G Switches. Nexus running - version 5.1(3)N2(1) 3560's running - 12.2(53)SE2 & 15.0(1)SE2
View 3 Replies
View Related
Jan 16, 2012
I have a problem where only the 2950's switches go transperant. They drop VLAN1 thus no CDP snmp packets. The users keep working fine but our NMS center keeps calling me at 3am when this happens.
These are access switches that connect to stacked 3750's. Some of the uplinks are using media converters that i have been trying to get removed. But i doubt that it could be the cause of the vlan1 going down.
View 3 Replies
View Related
Nov 19, 2011
I have 2 VLANs set up and I know they are set as default to not allow one to communicate to the other. Is there a way to set a rule to allow that? I'd like VLAN1 to be able to access VLAN2, but not the other way around.
View 1 Replies
View Related
