Cisco WAN :: Cat 3560 - Upgrade IOS To 12.2(58)se1
Jul 8, 2011
I have a cisco cat 3560 and the present IOS is 12.2(46)SE and i want to upgrade the IOS to 12.2(58)se1.As there is only 8mb of frees space i cant straightly copy the new IOS on the switch. Any convenient way to Upgrade IOS.
I want to upgrade a Catalyst 3560-48PS to the last IOS.I get an errormessage stating that there is insufficient space in flash: I have deleted all files in flash - but I still get the same error message. According to the documentation there should be enough memory. Messages are pasted below:
Switch#dir Directory of flash:/ No files in directory 15998976 bytes total (15997952 bytes free) Switch#archive download-sw tftp://192.168.9.13/c3560-ipservicesk9-tar.122-55.SE.tar Loading c3560-ipservicesk9-tar.122-55.SE.tar from 192.168.9.13 (via Vlan9): !!!!!!! [OK - 15964160 bytes] Loading c3560-ipservicesk9-tar.122-55.SE.tar from 192.168.9.13 (via Vlan9): !!!!!!!! examining image... extracting info (109 bytes)
Error: There is insufficient space in flash: to install the required
Error: image. Clean up some old images, and try again.
I have a 3560, which is being used as our core router that I have recently installed. It still has the standard IOS which came with (C3560E-UNIVERSALK9-M) it but I need to implement policy based routing so need to upgrade it and have downloaded c3560-ipservicesk9-mz.122-58.SE2.bin and indeally would like to install it in the morning before people start work.
I have 2 questions, 1, Is the ipservices capable of PBR as I have been reading conflicting reports, in fact my friend who works for Cisco has advised that it is not possible on the 3560.
2, When I do upgrade will there be any current configurations that are not compatible with the new one, I wouldnt image that there would be any but just wanted to make sure as it would be the biggest headache ever if it went wrong.
I want to give a breif overview of the current setup and what I had planned to do in the future. This is also where a few questions come into play. Currently we have 3 10.x.x.x subnets between three buildings with a wan connection. This connection is invisible to us so it can be seen as just a lan. The speed is 100mb. We have a 2811 router sitting at each building translating their traffic back to 10.3.1.1. We then have a router in the main building which ships the 10.3.x.x traffic to a ASA and then out the door to a ISP.
My plan was to upgrade this 100mb WAN connection to 10g fiber between our buildings as they are in extremely close range of each other. I would need a equipment upgrade as a 2811 won't support 10g traffic. Rather than replacing 3 routers in each of the buildings it seemed logical that I could get something like a catalyst 4500 or 6500 and do int vlan routing making it all one huge campus lan. Creating a vlan for each building to segment the traffic between them. My understanding was that a cat 3500/4500/6500 did not need a router with sub interfaces in a one arm setup to bridge this traffic. This is where the problem comes in.I tested with a cat 3560 and was unable to get the vlans to route correctly. Do I have to have a router to get int vlan routing to work? If so then I might as well get a Router which can handle multiple 10g fiber for the core instead of a cat 4500/6500 since I'd need the router to do the int vlan routing anyway?
This weekend we have upgraded the ios on quite a few switches on a larger site, the site is a mix of 2960 and 3560 switches and the previouse ios versions were 12.2.44 on most switches but some had an older 12.2.25.On monday when we came into work we got a call that most of the ports on these switches were an amber color and most people could't use the network.After some investigation we discovered that we had a problem with dot1x so for a quick solution we just removed it from the switches and restarted all the ports with no dot1x enabled,[code]
Looking for input/thoughts on the upgrade of our 3560's and 3750's while on production network.
While we could remotely send the IOS over the network to the device, I'm concerned about errors and the lack of physical control of the device. So, the thought is to just go to the comm closet, plug in with laptop to the console port, and upgrade the IOS over the console port. But this would require xmodem, correct? I know the fastest way would be to a. configure an empty fa0/0 port to no switchport, add an IP address, and use tftp. BUT, we would have to isolate the switch from the production network while connected to it with our laptop. Otherwise, our laptop would be seen on the network as an unknown device, and there would be repercussions...
So, we console into the device, and u/l the IOS that way. Is there a way to increase the baud rate on the switch to 115200, change putty to 115200, then do the x modem? I just say we should shut all the ports to isolate the switch from the network, then tftp the IOS to the switch. Unplug, reopen the ports, then reboot the switch.
i have 300 user in network in 2 building and firist buiding 5 flors.i use subnet /22.i have core switch 3500xl fiber and 8 swith 3560 and my network have 2 router one for adsl and other for mpls so i want upgrade it to make voip network and wireless so if i need replace switch what i model and how many?
I upgrade the IOS of my switch 3560 from C3560-IPBASE-M), Version 12.2(25)SEB4, To C3560-IPBASEK9-M), Version 12.2(55)SE5 after that the utilizatio of the memory increase to 80% I attached the output of show memory statistics history
I have two Windows 7 computers and neither one will successfully upgrade a 1242 AP to LWAP. However, I go to a coworker's XP machine and run the tool without issues. On Windows 7 I keep receiving the error message of ACL or Firewall is blocking. I have added rules and then even tried disabling the firewalls completely on both computers and still no success.
Is it possible to upgrade the CSACS-1121-UP-K9 to be a non upgrade part? We were going to upgrade from a Windows 4.x to the above Appliance (version 5.x) but there is now a reason to keep the old Windows version running therefore we cannot give the new Appliance the old ACS's licenses?!So we should have (with hindsight) bought a fresh version of the ACS 5.x rather than an upgrade.
We have a 3560 on our head office acting as an aggregare switch as well as Hub terminating remote wan links(one trunk link from provider terminated on FE port with several SVIs for remote location) and routing via OSPF. We have 1800 series at remote locations.
Now, If I want to prioritize say SQL traffic outbound from our head office to each remote brach I cant seem to do it with 3560 as it says... cannot apply service policy out blah blah.
How can I achieve my goal with 3560, Is it a good design to use 3560 as a Hub? our port utilization isnt that much..Wouldnt it be better to use 1800 or 2800 series?
I am trying to see how can configure MQC in Etherchannel. I know that i need to do this in the memeber physical interfaces of the etherchannel.The etherchannel is a trunk port allowing few VLANs. SVIs are created in the switch for this VLANs as well. tell me where i need to apply the QOS ? Is it under the member physical interfaces ?.
my current network setup is like this.. a cisco 3560 is connected on an access port to an adjacent dlink stack. i want to enable trunking between the cisco and the dlink. what i know is that dlink doesnot support per vlan STP while dlink only run single instance of the STP.. how can i make the trunking possible without messing with the network.
the idea that i have is to run MSTP instance on the 3560 so that it appears as a single STP to the dlink switch and then all good. is there any other way to do that. if i just make both the adjacent ports on both the switches as trunk and connect them, will it cause any problem in terms of STP issues or convergence ?
My HO is connected to BOs over MPLS Links.The links are terminated on routers but i dont have access on those routers as it is maintained by the ISP.Behind of the HO router there is s 3560 switch. Can i configure this switch to prioritize some traffic over the WAN link to the BOs.
By default there 2 input queues. 2nd is priority queue and has 10% of link assigned. Weights for two queues are 4 and 4. For example we have 1Mbps link. ANd we also have saturated link with voice and other traffic. Will voice get 550k bandwidth? As I undestood 100k is assigned to voice strictly. Remaining 900k is evenly divided by two queues according to 4 and for ratio.
I'm working on a new network design for my company. We're expanding and opening some more offices and satalite sites. We're a UK based company but opening some US sites.We have a main UK office (Office A on the diagram) a call centre (Office B) and then two buildings on another site (Office C). The USA offices will be very small and only require a couple of computers, hence the small IP allocation. I have marked the IP addresses of the links on the diagram, I intend to use 3560 switches for all the switches marked and all links will be layer 3 to route multiple VLANs from each site to each site (where permitted). question is this: How do I achieve this in the switches? I'm thinking that OSPF is the way forward, is this right? I want to do as little configuration on the switches as possible to allow for dynamic updates of the network (i.e. I don't want to add static routes for everything).
If i have 3 x 3560s do i need 3 cables connect one to each other then the top one to the bottom one - like the 3750s stacking stacks -- or is it just one cable between each device no cable between top and bottom
How to configure SLA monitoring in 3560 switch. I have 2 DSL links terminating in switch and want to do WAN failover. I know how to do in ASA and router. I found IP SLA and track commands on switch but don't know exactly how to use them.
The traffic flow on the network is fine, but we are not able to access our remote locations.Using the example in that thread:Let's use your example. If your Vlan interfaces are configured on the 3560:
interface Vlan10 description LAN A ip address 10.20.102.1 255.255.255.0 interface Vlan 104 description LAN B ip address 10.20.104.1 255.255.255.0
Device A has his default gateway set to 10.20.102.1 (interface Vlan10) and device B has his default gateway configured to 10.20.104.1 (interface Vlan104). If device A (10.20.102.55) wants to talk to device B (10.20.104.25), the traffic would have been routed on the 3560 between Vlans 102 and 104.
As for DHCP, if there is a server on a separate network (let's give the DHCP server an ip: 192.168.2.15) you would configure an 'ip helper-address' on each vlan, which will forward each DHCP Discover broadcast to the DHCP server as a unicast packet. This is done because by default the router (3560) will not forward broadcasts.
interface Vlan10 description LAN A ip address 10.20.102.1 255.255.255.0 ip helper-address 192.168.2.15 interface Vlan 104 description LAN B ip address 10.20.104.1 255.255.255.0 ip helper-address 192.168.2.15
Now lets say LAN A and LAN B are located in SITE1. A second site, SITE2, has the address of 10.20.128.1. I can't ping the Site2 location from the LAN B (10.20.104.x) segment in Site1. I think I should set a static route on our switch with something like this:
ip route 10.20.0.0 255.255.0.0 10.20.102.10
The address 10.20.102.10 would be a wan router in this example.
Our HQ Location dont support high bandwidth pipe served by ISP, so will go ahead with 3 different ISP at 2MB each.Goal is to provide Email / Application access to Remote office using site to site VPN.In Total will have 10 to 15 Branch offices each with around 25 to 35 users
Each ISP will give
/29 subnet of public IPCopper Interface for WANdefault Gateway and Two DNS server IP will be provide Existing hardware we got are Cisco 2821 Router with 2 FastEthernet ports ( not in use )24 port switch 2900 series ( not in use ) Can we use the above hardware to terminate all 3 ISP link and use the Router for site to site VPN.
Our Lan Core is Cisco 3560 which is uplink to 3X2950 user switch?how should we terminate the link and use each ISP for VPN.
We have the configuration below set up in a 3560 switch (addresses and names modified for privacy). We are running out of dynamic IP’s in the current pool (18.104.22.168 – 22.214.171.124). We have a new set of IP’s that we can use (126.96.36.199 – 188.8.131.52 – an additional 512 addresses). Although I can figure out the commands to add a new dhcp pool, secondary subnet, etc., I’ve never done this before so I’m not sure of everything I need to do. The end result I need is that the 3560 needs to be able to hand out IP addresses from the current and new pool to anything connecting to vlan 300 – our datanet where computers access the Internet. What I need to do as far as modifying the vlan, adding the secondary subnet, defining helper IP’s, gateways, whatever, so that computers connecting via vlan 300 have Internet access via either of the pools? I have been told that all I need to do is create the pool, but not sure if that is correct...
I have a question regarding QOS and possibly dedicated bandwidth. The environment is ISP goes into an ASA that up links to a 3560 and fiber up links to other 2960s throughout the building for internet. My question is for certain sections of the building if I segment the network can I guarantee them a certain amount of bandwidth. For example, if 1 gigabit is coming into the building from the ISP and into the ASA, can I guarantee one room in the building no less than say 200 Mb of the full internet pipe at all times?
OK, in this is it necessary to configure "IP Multicast-routing" on the switches? Do I configure PIM on all interfaces that will handle multicasting (router and switches?) If PIM is enabled on the 3750 do I need PIM configured between the 3845 and the 2821 ? Do I configure the Auto-RP on the 3750 or the 3845 ?
1) What will be the extension of MIB file ? *.mib or *.my 2) I am running with 12.2(25)SEB IOS .Is thre any dependency with IOS for downloading MIB file. 3)I have 3560 switch and 2960 switch. Is thre any difference in the MIB file extension.