Cisco WAN :: VLAN Routing On Layer 3 Catalyst 3560
Jan 15, 2013
My first question is I have an access layer switch which is a single VLAN and I am trunking that VLAN to a distribution layer switch, I can ping the gateway on the distribution layer switch for THAT VLAN, But cannot ping the gateway address for the second VLAN I have on the distribution layer switch. I know it is simple, But I have forgotten and just need a push
Also I have a third VLAN set to route traffic not bound for those 2 VLANs out to a router is the statement "ip route 0.0.0.0 0.0.0.0 172.16.252.2" good enough and do I actually need to create a VLAN for that traffic? and if so, is an access switchport the best option?
View 2 Replies
ADVERTISEMENT
Jun 20, 2012
I'm configuring two etherchannel groups (2 ports in each) on a 3560 switch. I need to trunk multiple vlans over each channel group.
I created the vlan trunks and allowed vlans on each physical interface. I notice that I can also configure the vlan trunks on the port-channel interfaces that were created. Should I configure them under those interfaces, or leave them on the physical interfaces? Relevant config is below:
interface Port-channel1
!
interface Port-channel2
[Code].....
View 1 Replies
View Related
Mar 18, 2012
I want to setup VLAN with the switches SG300 and SLM2024. What is the suggestion to connect these 2 switches. We have the Juniper net screen.
View 1 Replies
View Related
Nov 15, 2011
I have a question if I Stack a Catalyst 3750 L3 with a Catalyst just L2, will we able to use all L3 capabilities?
Switches are
WS-C3750G-24TS-E1U
WS-C3750V2-24PS-S
View 4 Replies
View Related
Mar 17, 2013
I found that when I enabled layer 2 auto QoS in 3560 switch, I need to wait so much time to open a file in network drive. Howerver, when I disable the Qos. It can improve a lot. I have used a sniffer to capture the packet to see. Those default packet is in DSCP 0. Therefore, I think majority packet will drop to queue 4. How can I increase the buffer and threshold in order to improve queue 4 performance.
View 1 Replies
View Related
May 23, 2012
I been practicing with the configuration of layer 3 etherchannel configuration and i am facing a problem here. I have two 3560 switches and i want a layr 3 ether channel configuration setup between the first 2 ports of bothe the switches. I assign IPs to the Port-channel 1 of both the switches "10.1.1.1 /24 and 10.1.1.2 /24" but i am unable to get a successful ping. what am i doing wrong. below are the configs for bothe of my switches.
3560_1
Building configuration...
Current configuration : 1274 bytes
!
version 12.2
no service timestamps log datetime msec
no service timestamps debug datetime msec
[code].....
View 2 Replies
View Related
May 25, 2012
I have made a topology by using one 3560 switch and 2 2950 switches. I have also made 2 vlans name Clients and other Servers and vlan 1 is for anagement purposes. The left 2950 switch is for clients and the right is for servers. Clients is vlan 2 and servers is vlan3 . Now what i want is that my dhcp is should assign ips to clients in vlans 2 provided that servers are in vlan 3. I am also using a border router and i have introduced a default route on the 3560 to the border router.
Now when i assign static ips to my clients pc and server dhcp then i can ping between vlans but when i try to assign ip through dhcp then it wont work. Also the default route on the switch to the border router doesnt seem to work. I can ping only the border router when i put a default route on the border router instead of the 3560 switch.
View 3 Replies
View Related
Jan 10, 2012
Between our hosting and a customer we have an extended vlan, traveling on a fiber, between two cisco 3560 switches.The thing is, that we want to create one or more vlans inside that extended vlan, in some way if possible?
View 3 Replies
View Related
Nov 29, 2012
RACK 1 is the old rack and NEW RACK is the rack which is going to be procurred for some new Servers. All the Servers in the RACK 1 has a default gateway as PIX Inside IP. As of now the 3560 Switches acts as Layer 2 and does not have L3 IP routing enabled. How can I enable conenctivity between 192.168.36.0 range and 192.168.57.0 range wihtout making any change to current PIX inside IP address 192.168.57.1?Is it possible that I can enable IP routing on the 3560 Switches , create interface VLAN 36 and since already Switch 2 has it 's default gateway as 192.168.57.1 , Would the traffic from 192.168.36.0 be routed to 192.168.57.1 ? Or do I need to create static route for that ?Since L3 Routing is not enabled and since the 3560 Switches are just acting as L2 , the VLAN 2 - 192.168.57.0 range does not have any interface VLAN configured. When it is changed I would need to create interface VLAN 2 on 3560 Switches?
View 18 Replies
View Related
Oct 16, 2012
is it possible to run a Catalyst 4500 as pure Layer 2 Switch, i.e. disabling "ip routing", but still managing the switch via Fa1, i.e. the defautl mgmtVrf vrf ?I tried the following:
!
no ip routing
!
interface FastEthernet1
ip vrf forwarding mgmtVrf
ip address 192.168.1.1 255.255.255.0
!
ip route vrf mgmtVrf 0.0.0.0 0.0.0.0 192.168.1.254
ip default-gateway 192.168.1.254
I was not able to reach the Switch even from the same subnet. Only after enabling ip routing I could manage the Switch. I haven't found any command to set ip default-gateway for a vrf. Any workaround to keep routing disabled, but still manageable via VRF?
View 3 Replies
View Related
Apr 9, 2012
I am setting up a link between buildings that uses wireless links. I'm using Layer 3 routed ports on 2 3560 switches to handle the routing between sites. Normally I would just put these in a /30 and then the switches handle the rest. However, the wireless access points have a web interface for managing them that I want to be able to access, but it's only available on the single NIC that also carries traffic. What would be the best way of making this work? Should I make the link a /29 and give the access points an IP in the same range? If this is the case what do I use for the default gateway for the access points?
I have included a diagram to try to explain the issue clearer. The IP addresses in black are what I would do if this were a standard cable (and indeed this will work, but I wont be able to access the admin interface of the wireless AP) and the red ip addresses are the alternative if I use a /29 (but as I said, I'm not sure what to use for the default gateways).
View 1 Replies
View Related
Sep 5, 2012
I've been conducting research on configuring 3 distribution switches in my network which are Cisco Catalyst 4507's to communicate with our core over layer 3. Our core switch which is already configured at Layer 3 for intervlan routing is a Cisco Catalyst 6509.
I've got the configuration portion complete and all devices are able to communicate my only question is about QoS. Do I have to configure QoS at the layer 3 interfaces for voice, if so how is that completed. We have several vlans and separate the vlans for each building by voice and data. We only configure ports on the access switches with voice vlans for QoS and we use the auto qos option on these interfaces.
View 2 Replies
View Related
Feb 14, 2013
can i configure virtual circuits on cisco layer 2 switch catalyst 2950 ?
View 1 Replies
View Related
Apr 1, 2012
Do you have the ability to setup DHCP servers on this layer 3 switch? I know I can with my old 3550 switch. Want to upgrade and make sure this model supports setting up dhcp servers on it.
View 3 Replies
View Related
May 17, 2011
I just inherited a network and feel like.I am missing something. We use ATT&T Opt-E-Man which limits the MAC address to 50 for the connection or you have to pay.Hence the routing VLAN is the only access across the two sites.I have a VoIP vendor who insists on using the same VLAN for all sites. Upon exam the VLAN is at the remote site but it does not work.
View 2 Replies
View Related
Jun 27, 2012
I got a different scenario from one of my client.My client have two different branch offices and have 50Mbps point to point connectivity between them. All users in both braches using same series of IP pool ( 192.168.224.0/24) in both branches.Both branches he had only Cisco 2960S series switches only. And in both branches he is using IP cameras. He will monitor the assets by accessing IP cameras through the browser.His requirement is, he wants to prioritize the Video traffic( monitoring through the browser) over the normal data traffic.Note: He had a single VLAN only.
View 8 Replies
View Related
Oct 28, 2012
We have a IP-phone system connected to port 1 on a 3560 switch, the phone system tags traffic with dscp. The switch uplink is on port 24.
Is this configuration correct:
interface 1:
auto qos trust
interface 24:
priority-queue out
View 3 Replies
View Related
Apr 29, 2013
I've turned up a new layer 2 WAN link between two data centres and i'm having some trouble trying to logically figure out how things should be configured.As you can see from the diagram i've created, I have the link connected on port 13 on one switch and port 14 on the other. Both ports have an IP address assigned to them and they can both ping each other..
The problem comes when I need to add routes in order to get traffic flowing over the link.I added an IP address to switch 2 on the link interface (port 14) as: 192.168.4.10
I then added an IP address to switch 1 on the link interface (port 13) as:
192.168.1.10
192.168.2.10
When I tried to add 192.168.3.10, it said "192.168.3.0 overlaps with VLAN2626". This would be correct as Vlan 2626 has an IP address of 192.168.3.15.
However, if I remove the IP address from vlan 2626 and add 192.168.3.10 to vlan 2 (the link port VLAN), I would surely lose remote access to the switch. (I'm telnetting into the switch from a machine on vlan 2626).
I started to tinker with this by manually adding a route to a server in each location and seeing if I could get traffic to flow:
On server 1: route add 192.168.4.0 MASK 255.255.255.0 192.168.1.10 METRIC 1
On server 2: route add 192.168.1.0 MASK 255.255.255.0 192.168.4.10 METRIC 1
If I try to tracert 192.168.1.20 from server 2, the first hop is the default gateway instead of 192.168.4.10.
The ultimate goal is to add the static routes to the Layer 3 router/firewall, but before I do that, I need to be sure of what to add to that router (It's a manged firewall from the data centre, so I don't have access to it and I need to raise firewall change requests to get the work done, so want to ensure it's right first time.
View 9 Replies
View Related
Feb 25, 2013
We have two catalyst 3560 switches running c3560-ipbasek9-mz.122-58.SE2.bin They are connected using etherchannel using gi 0/21 - 24 interfaces.
on 3560-1 switch, there isn't any ip-default gateway or ip route configured. It only have 1 interface vlan configured.
on 3560-2 switch, there is ip default gateway configured along with 1 interface vlan.
What i dont understand here is that, i can reach out to other subnets from 3560-1 switch in which the routing is not enabled?
View 4 Replies
View Related
Oct 21, 2012
I have a 2504 WLC connected to a Catalyst 3560 which has multiple vlans and is connected to a 2800 series router. I know the catalyst is L3 but I am needing nat functions to get outside to the internet. From my 2800 series router I am able to ping out to the internet, also I am able to ping the vlan interfaces on the catalyst switch. Problem is from the catalyst switch I can ping the inside and outside address of the 2800 but I cannot get any further then that. I cannot ping the 2800 router gateway. Not sure what I am doing wrong as far as routing.
I've attached my 2800 and 3560 configs.
View 3 Replies
View Related
Feb 7, 2012
Does the Catalyst 3560 support GRE ?
I know that Catalyst 3750X support GRE ,but Catalyst 3750X cannot work in hardware it.
Does the Catalyst 3560 cannot work in hardware too?
View 4 Replies
View Related
Oct 28, 2012
I'm currently configuring per port policing on a 3560 and want to limit inbound traffic to 750mbit:
mls qos
access-list 1 permit any
class SET_IF
match access-group 1
policy-map SET_QOS
class SET_IF
[code].....
When I test the setup with iperf I always get different results when I change the nummber of parallel connections.Isn't there a way to limit the throughput regardless of the number of conns (INGRESS!) like with srr-queue bandwith limit?
View 2 Replies
View Related
Nov 29, 2012
We have observed increase of CPU utilization of 50% after upgrade from 15.0(1)SE3 to 15.0(2).The SDM template is "desktop default" template.The increase of CPU utilization in Switches with LAN Base after upgrade is about 10%.
How to find the cause for the 50% increase ?This is command is the output of 15.0(2). The calculated sum for 5min process-utilization is 21% plus 1% interrupt is 22 %. Where is the rest ?
switch#sh proc cpu sorted 5min | exc 0.00
CPU utilization for five seconds: 30%/1%; one minute: 29%; five minutes: 28%
PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process
169 135084171 33273787 4059 9.92% 8.94% 8.73% 0 Hulc LED Process
83 80075989 13546109 5911 5.60% 5.39% 5.38% 0 RedEarth Tx Mana
[code].....
View 17 Replies
View Related
Aug 11, 2012
I'm having an issue with 2 of my 3560s which are not booting. The last thing I did on both switches before it hangs was:
>write erase
>reload
restarted as normal
[Code]....
I've tried powering-off the switch and pressing the Mode button and power on. I got to swtch: mode switch:reset
It restarted past the POST but just hang halfway at the same bootp-up process as shown on the attached. The SYST LED is Green color when it hangs.
View 9 Replies
View Related
Oct 15, 2012
Cisco C2960S IOS:12.2(55)SE5
Cisco C3560X IOS: 12.2(55)SE3
The 3560 switch is serving as an access and distribution layer switch. End devices are connected to it and it also implements IP routing via SVI and L3 ports.Auto qos voice cisco-phone has been implemented on applicable access layer ports. SRND4 is being used.
2960:
mls qos map policed-dscp 0 10 18 24 46 to 8
mls qos map cos-dscp 0 8 16 24 32 46 48 56
mls qos srr-queue output cos-map queue 1 threshold 3 4 5
mls qos srr-queue output cos-map queue 2 threshold 1 2
mls qos srr-queue output cos-map queue 2 threshold 2 3
mls qos srr-queue output cos-map queue 2 threshold 3 6 7
[code].....
Question 1:Why is the auto qos generated policed-dscp map different on these two switches?The Cisco Smart Business Architecture LAN configuration files guide [URL] does not specifically use the 3560 in their examples, they use the 3750 but it's my assumption that the same techniques, configs apply with regard to my specific feature questions. When using a 3750 in the Access layer, the guide shows (page 15) the same auto qos generated policed-dscp map configuration that is on my 2960. The SBA LAN config guide shows that when using a 3750 as a Distribution layer switch (page 26), the policed-dscp map configuration is the same that I see on my 3560.In the configuration guide for the 3750 distro switch, there is no auto qos applied as there are no access ports, so the mls qos commands are manually input. Since my 3560 does have access ports, auto qos generated the mls qos commands, and the results are the same be it following the guide and manually entering (per distro switch guidelines) or using auto qos. This leads to question 2...
Question 2:Why is the mls qos map policed-dscp configuration different depending on use as an access vs. distribution switch?
Question 3: On the 3560, access ports that have "auto qos voice cisco-phone" applied are put into queue-set 2 (output). Queue-set 2 (output) uses default values (not configured). Is this correct and desirable? If so, why? The 2960 has all ports in queue-set 1, regardless of being an access device port or a trunk port connected to the 3560 (as per the SBA LAN config guide EgressQOS macro commands). The 3560 trunk ports are all also configured to use queue-set 1 (output), again as per the SBA LAN config guide EgressQOS marco commands.
View 1 Replies
View Related
Jun 4, 2012
It is possible to configure the IOS NetFlow 122-58.SE2 in a Catalyst 3560?
View 5 Replies
View Related
Dec 10, 2012
I have one specific trouble with Catalyst 3560CG switch and Stardom reserved industrial controller. Controller has 2 processors, one of them after(!) negotiation become main with IP 192.168.1.1, other one stays in reserve with IP 192.168.1.129. If main one shuts down, spare one becomes main with IP 192.168.1.1. This perfectly works with DLINK and MOXA level 2 switches, but fails with Catalyst 3560, because spare one cannot even connect to switch port. I don't know the exact reason of it, but i suspect, that it happens because of before negotiation both controllers have ip 192.168.1.1 (i know, that it is wrong and weird, but so it goes). First of them correctly connects to switch port, which goes up and passes pings. Second processor tries to connect to switch port, which goes several times up and very soon down, then processor lefts his tries to connect to anybody and become idle. The switch seems to some way check IPs of 1-st and 2-nd port packets, and shuts down 2-nd port. I have connected via hyperterminal and tried to disable some level 3 functions and checks of the switch, but this wasn't useful. how exactly(or at least approximately) should i configure a switch to make this bundle work?
View 1 Replies
View Related
Oct 21, 2012
I've just installed 2 of these in my workplace on a PLC network.I'm now looking to set one of the ports up as my diagnostic port and would like to be able to mirror any of the other ports to this port.I believe it is called SPAN on Cisco switches.The only reference I can find to it is configuring via Telnet which I haven't got a clue about.On my old Wiedmuller switches it was just a few clicks away.
View 3 Replies
View Related
Aug 12, 2012
I have 5 SVIs configured for VLAN Interfaces 121-125 for my vSphere environment.
All VMs can ping IPs on all the VLANs (VMs on VLAN 124 can ping VMs on VLAN121)
All VMs, except those on VLAN 124, can access the Internet or even ping my router IP.
If I change one of the VLAN 124 VMs to use a different VLAN, and update the addressing appropriately, it can access the Internet.
The problem is exhibited with Windows and Linux VMs. So, I believe something in my switch setup is the problem with VLAN 124 in particular.
If i do a show vlan brief, VLAN 124 is listed.
If I do a show ip int brief, VLAN 124 is listed as upup. I also tried to shut o shut the VLAN 124 interface.
Only one specific VLAN has connectivity problems?
My topology is Catalyst 3560 to home router to Internet.
Here is my IOS image: c3560-ipservicesk9-mz.122-55.SE6.bin
Here is my show run output:
3560_02#sh run
Building configuration...
[Code].....
View 4 Replies
View Related
Sep 13, 2012
I have CISCO RPS 600 (PWR-AC-RPS) is it support Catalyst 2960 and 3560 ? and which type of cable require since i have cable 22-18 pin and on my switch require 22-14 pin.
View 2 Replies
View Related
Oct 15, 2012
Scenario: Two buildings connected with a private leased fiber line, so it does operate as a LAN. There are several subnets and everyone at both buildings needs to be able to access all subnets. However the physical machines on those subnets are building specific:
-Building 1: 10.2.0.0/24 (vlan20), 10.4.0.0/24 (vlan40), Internet connection
-Building 2: 10.1.0.0/24 (vlan10), 10.3.0.0/24 (vlan30)
The majority of the traffic between the subnets is specific to the buildings as well (i.e. most of the traffic is between 10.1 and 10.3 or 10.2 and 10.4).
Currently I have a Catalyst 3560 at Building 1 operating as the single "core" L3 router (and then a variety of switches connected to that). I have another 3560 at Building 2 that I'd like to turn in to the "master" L3 router for the two subnets primarily used by Building 2. In other words, make it so traffic from 10.1 to 10.3 doesn't have to run to building 1 just to get back to building 2.
I've got a basic knowledge of adding VLANs, VLAN interfaces and a static routes. The part that I'm getting confused on is that the Building 1 core router needs to make its default route to the firewall (and on to the internet) but "know" that traffic on vlans 10 and 30 gets sent across the fiber line to the other router. So I'm assuming this gets done with some combination of vlan definitions, vlan interfaces and static ip routes on each router.
View 6 Replies
View Related
Jul 1, 2012
1. i have a few sites which are interconnected.
2. there are multiple mobile sets of equipment(servers and catalyst 3560 switch) which i need to connect at different sites. (i cant use repeated subnets)
3. i cant change the ip address/subnets/configuration of the servers and switch, when deploying at different sites. (big problem to me)
i was previously looking at IP unnumbered + OSPF to apply on the mobile sets of equipment. but noticed that IP unnumbered on non pt-to-pt interfaces (which happens to be a 3560) does not work with dynamic protocols. is there any solutions/alternatives which i can achive mobility on equipment?
View 1 Replies
View Related
Oct 10, 2012
I am currently deciding which IOS to use for various catalyst 3560 models. Version 12.2(55)SE3 seems fitting for this case, but I cant find out when the 12.2SE reaches End of Software Maintenance. I have checked this link: urls...
Where do I get info on 12.2.SE?
View 5 Replies
View Related
