We have 3750 and 4510 switches and in both we run Q-n-Q but we observed looping/Broadcast Storm we already run TSP on 3750 end and this is corporate branch but 4510 its difference branch where we run q-n-q technology.
View 1 RepliesTo prevent virus to spread throughout the network ports or switches, can i used broadcast storm to control? sometime, network may encountered loop, or some virus spread?
interface gi0/1-24
storm-control broadcast level ?
storm-control multicast level ?
storm-control unicast level ?
storm-control action shutdown
What will be recommended level? or the threshold / pps ?I read through cisco website, and understand, however, just never apply before, what is the recommended level for ?in my network, we do have network ports connected to media server, just sharing video, song, etc for testing purpose, however not using PIM, but it work.
So the SG300's have STP on them and prevent network loops when other switches on the network also support STP too. However, if someone plugs in a non-managed switch that doesn't support STP with a network loop, is there anything within the SG300 switches to isolate and/or prevent that from happening?
(I currently have port mirroring turned on for one port and a network sniffer attached awaiting the incident to happen again).
I`m connecting a client directly to a 3750, and giving them a public IP.
On the port I have set spanning-tree bodyguard enable
But I guess I should also set some storm control etc. What settings should I use for storm control?
The client has a 100Mbps internet connection running trough this port....
We have 2 switches split across 2 datacentres connected via an interconnect. Over the past couple of days the interconnect provider's Cisco kit has shut down our port (err-disabled) due to a broadcast storm. They had the level set at 1 which I thought was a bit low. They say they tried to set to 2, then 5 but still kept tripping the storm-control feature so they set at 10. They say they've always had it set at 1% (on a 100Mb switch) and so we must be generating more broadcast traffic.
I'm trying to identify where the broadcast traffic is coming from. On our Cisco 3750 I've clear interface counters and when I do a sh run | i broadcasts there are a few ports which have what seems like a high broadcast count. The one port that is especially high and the only one tripping the storm-control feature (I've enabled on all our ports to try to identify where the traffic is coming from) is the port connected to the 100Mb interconnect. I've mirrored that port to another port and connected a server with wireshark so I can capture all the traffic across that port.
What I'm struggling to find is the source of the broadcast traffic.I have a few questions are these broadcasts layer 3 or layer 2 broadcasts. Also in the output below when it says broadcasts received is this inbound to the port i.e. from the connected device or is this a total of inbound and outbound broadcasts.
When I use wireshark and filter the capture on broadcasts (ff:ff:ff:ff:ff:ff) I see only 200-300 compared to the thousands the switch is reporting.If I filter on the broadcast IP address I also don't see the numbers corresponding to what I see in the show interface output.
GigabitEthernet1/0/1 is up, line protocol is up (connected)
Hardware is Gigabit Ethernet, address is 0014.a93f.7401 (bia 0014.a93f.7401)
Description: Interconnect
MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,
reliability 255/255, txload 4/255, rxload 44/255
Encapsulation ARPA, loopback not set
[code].....
also I'm currently doing : monitor session 1 source int g1/0/1 both, and also tried just rx incase I just need to be looking at receive traffic but still nothing is standing out.
I'm looking at adding a Cisco 3750-X switch running c3750e-universalk9-mz.122-55.SE1 (IP base license) into a stack of 3750-G switches running c3750-ipbasek9-mz.122-55.SE1.bin Given that the version and feature sets are the same I don't forsee any compatibility issues. Would there be any reason why a universal image wouldn't stack correctly with other switches running the single .bin file?
View 9 Replies View RelatedIOS : c3900e-universalk9-mz.SPA.151-1.T.bin
Router: Cisco 3945
We are getting error msgs :
Aug 13 06:26:57: %TRACKING-5-STATE: 50 ip sla 50 reachability Up->DownAug 13 06:26:58: %TRACKING-5-STATE: 55 list boolean and Up->DownAug 13 06:26:58: %IP-3-LOOPPAK: Looping packet detected and dropped -Aug 13 06:27:12: %TRACKING-5-STATE: 50 ip sla 50 reachability Down->UpAug 13 06:27:13: %TRACKING-5-STATE: 55 list boolean and Down->Up
Aug 13 06:32:57: %TRACKING-5-STATE: 50 ip sla 50 reachability Up->DownAug 13 06:32:58: %TRACKING-5-STATE: 55 list boolean and Up->DownAug 13 06:32:58: %IP-3-LOOPPAK: Looping packet detected and dropped -Aug 13 06:33:12: %TRACKING-5-STATE: 50 ip sla 50 reachability Down->UpAug 13 06:33:13: %TRACKING-5-STATE: 55 list boolean and Down->Up
Disable ports looping Users connect the network cable at two points in the network generating looping. which command to disable two ports of a Cisco 2960 when they are connected at the same time with the same network cable?
View 2 Replies View RelatedI have a small network of 4 x 3750s running routing (OSPF) which contain all company firewalls. It bridges internal trusted corporate networks (depots etc) to external untrusted networks (Internet/Datacenter networks). It sees a fairly high level of traffic running through it (it gets forwarded to firewalls at gig speed).OSPF is costed to remove asymetric routing so one 3750 is acting as primary and does most of the work. The 3750s are in area 0, and all other areas are summarised to some degree. However, CPU is running high on the 3750 when looking at the history at times: [code]
although the average is around 26% the 72hour picture would suggest that CPU is running at 100% at times. Is this an imminent concern that needs re-designing, or is this normal behaviour (SPF running for instance) that is manageable?
Looking for feedback from other organizations that have large 3750 stacks. I've got one stack of (8) 3750's composed of (6) 3750G's and (2) plain 3750's. This particular stack is usually unresponsive to SNMP queries and often fails to write config when we make changes. After a couple tries it will finally go. Part of my probably here is likely the plain 3750's that always boot faster and come up as the master. I should manually set the master to one of the G's. What I'm wondering is who else has 7-9 3750's stacked and are they performing well for SNMP, telnet, etc? I've got another newer stack of 7 3750E's that I need to add one more switch to. Need to decide if I want extended downtime to break the stack up or just add the 3750X to make member 8 and hope it performs well. I have 50+ 3750 stacks working great on our campus.
View 1 Replies View RelatedI'm trying to configure load balancing on a network that is using 4 3750 L3 switches. The network is comprised of two sites with two switches at each site running HSRP and the virtaul IP is the gateway for a server between the two switches. The sites are connected by two independant 200meg ethernet connections (technically they are GigE limited to 200meg) p2p circuits. The switches at site A are connected together via a GigE port and the server I have connects to each switch at its respective site using a GigE port and the same for site B.
The problem I'm running into is that I've noticed that one of the 200meg circuits is always idol unless the primary goes down, so I'd like to be able to load balance the traffic from site A to site B using both p2p circuits. I think the problem that I'm running into has to do with the fact that HSRP is putting one of the links from the server to switch in standby unless the WAN link goes down and therefore traffic is not taking the "longer route" to the 2nd 200meg circuit.The only traffic going across this network is only the two servers sending traffic to one another. how I can get load balancing to work or if it is a possiblity with this network topology?
I have a 3750 stack and want to confirm if I can run HSRP on the stack to two different ASR routers for redundancy purposes ?
It looks like the below :-
--------------------------------
| SW1 SW2 |
| 3750 Stack |
|------------------------------- |
| |
| |
----------- ------------
| P | | S |
| ASR1 | | ASR2 |
| ______| |_______|
We're using ME-3600 and ME-3800 switches to create VPLS domains. Now to avoid L2 loop issues with 3rd parties connected to the multiple ME-3X00 switches and configured in the same VPLS domain, we would like to configure storm-control.
When checking the configuration manual about storm-control on ME-3X00 switches it mentiones: storm-control is configured on the physical interfaces and when it's triggered it will not only impact the physical interface buy also the EFP configured on it.
According to me this could mean two things:
When there's a storm on the physical port, the port wil be shutdown (it if this the action configured) and of course the EFP on that physical interface will be impacted too (logical consequence).When there's a storm on an EVC (EFP) configured on a physical interface, it will shutdown the entire physical port (if this is the action configure) and as a consequence all other EFP will be impacted too. Briefly: is the configured storm-control on an interface also triggered by storm-controls on an EFP? I suppose it would but like to have some confirmation.
configuration example
interface GigabitEthernet0/2
description TEST storm-control
switchport trunk allowed vlan none
[Code].....
Yesterday there was huge storm, and lightning smashed into nearby house. My computer was running and I turned it off just after that. Result of nearby lightning was that internet no longer worked afterwards.
Soon after I was able to connect on my laptop, (laptop was connected and turned on during storm too) but desktop was still unable to do so.
I noticed that in device manager there is missing network adapter in list. EVerything is connected as it should be, but ethernet port doesnt have any lights on. I believe there should be some small light on port as is on my laptop, but Im unsure.
how I could check whether my network card is ok? Or what could the problem be? I really hope its just software issue.
There is a port on 3560E, facing POP, this port is in the dedicated vlan, that is terminated on 7606 on SVI (peering point).There is configuration made on the 3560E port, that prevents storm of ucast or bcast kind. This is: switchport block multicast switchport port-security maximum 1000 switchport port-security switchport port-security violation restrict storm-control broadcast level bps 1m storm-control multicast level bps 1m storm-control action shutdown storm-control action trap no cdp enable no lldp transmit no lldp receive spanning-tree portfast spanning-tree bpdufilter enable spanning-tree bpduguard enable. [code]
I want to get info not only about the fact of storm attack but also about at least source and destination of it (i.e. source and/or destination MAC). Perhaps this could be some logging messages.Are there any means for this on C3560E-UNIVERSAL-M (IOS ver 12.2(53)SE2) and 7606-S.
I have 2 ME3600Xs and utilize Broadcast and Multicast storm control on client facing interfaces. One of my ME3600s is reporting a Multicast storm and that a packet filter action has been applied. The strange thing is that it is showing up on an Admin Down interface that has nothing connected to it. [code]
View 2 Replies View RelatedWe have around a dozen Catalyst 3560 and 2960 switches in a ring topology. We are considering adding storm control to our trunk ports. Up until now we have only used it on edge ports with default values and without error-disable.I am proposing that we also add storm control to trunk ports at a lower level and that we error-disable only the redundant links that make up our loops.
-storm-control broadcast level 25.00 20.00
-storm-control multicast level 2.00 1.00
-storm-control action shutdown [only on redundant links]
In a storm all links will restrict broadcast which should work accessing remote switches, but the redundant links should errdisable and block the redundant path. It is important that the action line is not applied to links that are not redundant as we could isolate parts of the network. Any reason not to use storm control on trunks?
I have 30 switched in my corporate network it’s all up and running all switches running by default configuration and connected to WS-C4506 core switch our dhcp server pooling 192.168.100.1/27 network. Now we need to configure new Vlan for finance department this department has more than 200 users. If my server distributes 192.168.200.0 range ip can vlan2 automatically assign ip 200.0 addresses to finance department.All switches running default config no ip address assigned.
View 9 Replies View RelatedI need to replace an existing ASA 5540 with a new ASA 5525X. I would like to pre-stage and configure the new box with the existing config, migrate license and export certificate files before swapping it with the old one during a change window. The new firewall will run 9.1 on deployment. Now the same 7.2(4) cannot just be copied over to 5525X running the minimum 8.6 version. There is a Web based tool available at [URL] according to Cisco documentation but the page does not load for me (Cisco intranet only tool ?). Is there another tool for automatic conversion ?
View 3 Replies View RelatedWhy do we need them? Could we leave the LAN with a subnet broadcast packet (for instance with an address of 192.168.1.255 /24). Are those addresses used for something?
View 4 Replies View RelatedTrying to find out if a switch learns a mac address of a connected device which only sends broadcasts to the switch port (no unicasts). For example one type of attendance terminal...
View 14 Replies View RelatedI have an AP, model AIR-LAP1041N-A-K9. How does the AP work? How does the AP broadcast?. Is It a circle and the AP is the center? Does the AP broadcast more front than back? Have any blind spot? I see the datasheet [URL] -
Integrated Antenna
#• 2.4 GHz, gain 4.0 dBi, horizontal beam width 360°
I know that 255.255.255.255 is the broadcast address to send message to all hosts that are in LAN. what i want here is, i want to send a mail to all hosts using this address.
View 9 Replies View RelatedIs it normal for a pc to send broadcast to ip address that don't really exist? I am using wireshark to sniff my company's network activity and im seeing something like this.who has 192.168.2.102 tell 192.168.2.235
who has 192.168.2.103 tell 192.168.2.235
who has 192.168.2.104 tell 192.168.2.235
who has 192.168.2.105 tell 192.168.2.235
who has 192.168.2.106 tell 192.168.2.235
but ip address 192.168.2.102 - 192.168.2.106 are currently not being in use..
I'm trying to get a wireless N-router and a N-adapter for a room outside the range of a G router. But their are two laptops at the house. They both use g adapters. Can the N router broadcast both N and G signal at the same time? So all adapters in the house can connect to the router. Does broadcasting both signals degree the range of the N broadcast making the an additional N adapter useless?
View 4 Replies View RelatedMy router has been having major problems lately [Well, for a while now]. Before, it would make all my machines [1 PC, 2 Laptops] disconnect from the internet briefly and reconnect. This doesn't impact browsing, video watching, etc. It wouldn't even say I was disconnected. However, I know it was disconnecting because programs like AIM, MSN, and multiple video games would say I lost connection. For example, MSN would disconnect and take me out of any conversations and reconnect a second later. Friends tell me that I keep going offline and then online.
I read somewhere I should change my channel, so I did and still got the same problem. Furthermore, my router/pc are literally right next to each other. Then I read elsewhere I should do a factory reset on my router by holding the reset button for a while. So I did and it reset. It started broadcasting as an unsecured network, so I was going to secure it.
1. Log in via http://192.168.0.1 (default "username: Admin and no pass")
2. Go to setup tab ----> internet ----> internet connection wizard2.1 CHANGE PASSWORD ! click next 2.2 chose time zone (you know where you are) 2.3 Configure your Internet Connection DHCP Connection (Dynamic IP Address)Choose this if your Internet connection automatically provides you with an IP Address. Most Cable Modems use this type of connection. 2.4. press "clone your computer's MAC address" ; hostname: 'your computer name in ubuntu' ( mine is "grobar" yours is ..... )
3. Go to setup tab ----> wireless settings ----> Wireless Network Setup Wizard (after this we're gonna do manual settings)
3.1 give your network a name= SSID (e.g. 'grobar')
3.2.Automatically assign a network key (Recommended) and chose WAP or WAP2
3.3 Write down the network key!!! Or do printscr and save this page.
4. Go to setup tab ----> wireless settings ---->Manual Wireless Network Setup 4.1 Wireless Network SettingsEnable Wireless : ALWAYS Wireless Network Name : (Also called the SSID) the name you gave in 3.1 802.11 Mode : chose "mixed 802.11n,g and b" Enable Auto Channel Scan : YES Wireless Channel : AUTO Transmission Rate : BEST (Mbit/s) Channel Width : AUTO 20/40 MHz Visibility Status : !!!Invisible!!! (so that no outsiders know your SSID except you) So after I finish the Internet Connection Wizard [Setting up Password etc], the http://192.168.0.1/ page asks me to click "Connect" so it can reboot the router with the settings. When I do so, the router turns off with the power icon being orange. After about 15 seconds or so, the broadcasting icon, power icon, and PC1 icon all turn green. However, there is a globe icon on it as well and that is ORANGE.
Regardless of power cycling, redoing the process, etc. it stays orange. None of my machines can connect to it. The only way I can connect again to the router is if I do a reset again (By holding the reset button). But then, I am unsecured and live in an apartment. I would like to add that the above process is the one I did previously and it worked fine. But then I had to reset the router and a similar problem occurred but I managed to fix it somehow and the first problem I talked about started happening (Reconnecting and disconnecting). Furthermore, when I go to "Connect to a Network" one of the old SSIDs I created for the router is still there regardless of the router status (Offline, Not connected, etc). I am typing this by connecting my PC directly to my modem. Router Information: D-Link DIR-615 300N
I am having issues recieving UDP response from my smart lighting control, i can here it in the same town but not from overseas..internal ip address 192.168.0.3 port 6000 it hears my commands from overseas i just cant here its response.
View 3 Replies View RelatedI am considering a toshiba tv with wifi. i want to limit the cables up the wall and would like to broadcast my cable to my tv by wifi
View 2 Replies View Relatedmy wireless router isn't broadcasting. It has the normal internet up but the wireless isn't allowing us to connect at all.
View 1 Replies View RelatedMy D-Link DIR-655 most of the time does not broadcast wireless signal. I use Windows 7 and XP with same result. I see at least a dozen of broadcasting wireless signal in my network. Even after it worked, then next time I power-on PC, the signal is not there. The Router does not show the status light for wireless usage for these non-broadcasting time. It works and does not work.
View 2 Replies View RelatedI have an DLINK-dir 815 router.. I have tried for 10 hours to get broadcast IP to work, no luck.. All html/javascript modifications.
The WOL works on LAN, but not over internet, so I figure it's the broadcast IP that needs to be virtual servered
I have my DIR-825 (type B, .202NA FW) all set up and wireless is working well, EXCEPT for the fact that inSSIDer consistently shows it broadcasting at only 54mbps, while it also shows several of my neighbors in the 150 and 300 ranges. I'm using a DWA 160 adapter in my notebook.
I have my 2.4 channel set for g&n, and my 5.0 channel at N only. both WPA2 and AES. WMM enabled. I've tried any number of combinations but nothing seems to work.
If I was content with 54mbps, I'd have stuck with my old G router.
I have an AS-external route being redistributed into OSPF from a static route on one of my routers. I recently changed the static route from a /24 to a /26 and all of a sudden the link ID of the segment in the OSPF database went from the network address to the broadcast address: Code:
View 5 Replies View Related