Nortel 5520 - Specific MAC Address Doesn't Receive ARP Reply From Switch
May 26, 2013
Switch is a Nortel 5520
PC is Windows 7, with Intel 82579LM adapter
When PC was first attached to network, it could not ping gateway(switch). Turns out it was broadcasting for the gateway's MAC address, but never got a response. Tonnes of testing later, if I just change one number on the MAC address of the adapter, it receives a reply from the switch and can ping the gateway.
Why doesn't the native MAC address work?
Update: Just the vendor portion is the determining factor. As long as it starts with 2C-59-E5, it will not work. 2C-58-E5 will.
Update 2: Pinging anything in the same subnet works, just pinging the gateway interface of the switch doesn't happen. Tried on multiple drops, and there are other devices on those drops.
I have a customer that wants to change their Nortel 5520 switches to a Cisco solution, and I wanted to ask what would be a good solution for this customer. presently they have 4 48 port PoE and 2 24 port PoE stackable 5520, and they are interested in redundant power supplies for the switches. I was thinking that the 3750 is good for this site.
I'm trying to configure Cisco CISCO881G-K9 3G router to connect to mobile network without success. The cellular interface gets up but it doesn't receive IP address. It seems that profile isn't activated and it should've been.
I've attached running config and some other information gathered from router.
I have a problem with my WAN ports. I can´t obtain a ip adress from my ISP. I´ve tried factory reset. Upgrade to lateset firmware. Clone MAC adress from my PC. Nothing is working.
But when I plug the WAN port into my Old router it receives an adress directly. When I plug the ISP connection directly into my pc or the old router it´s working as well.
I am using the latest firmware: RV0XX-v4.1.0.02-tm.bin
And My ISP has an interface with an ADSL modem SmartAX with DHCP.
Lost Internet connectivity at home. connected via dsl line to my isp.when i issued ipconfig /all command i noticed that default gateway IP addr was a global ip addr. (77.36.x.x) instead of the usual private address 192.168.1.1. DHCP server had IP address 58.206.x.x when i issued ping 192.168.1.1 command, i got this output: "reply from 77.36.x.x: destination host unreachable" i couldn't access my router's configuration menu by typing 192.168.1.1 in web browser's address field.it's very interesting, because i had network issues before but could access my router's config menu and ping it. but now, i cannot reach my local router but receive reply from ISP's router.
I'm trying to establish a site to site ipsec tunnel between an ASA 5520 and a Nortel Connectivity box. Despite trying a number of different transform sets and IKE setups it keeps failing at phase 1 with:
Information Exchange processing failed Received an UN-encrypted INVALID_ID_INFO notify message dropping.
Need assistance understanding how in ASDM/Configuration/Site-to-Site VPN/Connection Profiles/ "Any Entry" I can specify that I only want to offer an IKE Proposal of pre-share-aes-256-sha?
The IKE Proposal field has a number of possible options including: pre-share-aes-256-md5, pre-share-3des-md5, pre-share-aes-256-sha, pre-share-aes-192-sha, pre-share-3des-md5, pre-share-aes-sha and pre-share-3des-sha.
I am able to pick a specific IPSec Proposal w/o issue but when I attempt to do the same for the IKE Proposal, and click OK the choice does not "stick" but rather returns to the entire list as defined above.
I've just completed a port security project at a site on numerous Cisco switches and all works well, however they have 2 Nortel 5520 switches (which I left until the end) which they would like to lock down. I have logged a message on the Nortel forums and I have heard nothing for days. I just need to lock 2 ports down to the Mac address of 2 computers stopping any other computer being plugged in.
I use a router RV082 with load balancing. My problem is when I try to access a specific site, I get the error message that my IP address changes and I can not use 2 ip address. I want to specify an ip range to always use the same WAN port.
My customer has various Cisco switches but only cisco 2950 switches has the problem of ping timeout or reply time is too long(average more than 2 sec). It will cause I Network Mangement software alarm always.
i have a avraetec 2200 sereis wich has a amd turion65 processer with windows xp professional and one day the internet didnt work and i looked at the activity it said aquiring network adress and it said sending packets but not receiving and its not a problem with wireless because i conected directlty to the modem and i had the same probem and also there are other devices conected to the modem and they hav
For the past 2 days I have been having a problem with my laptop taht, actually a bit old. I also have another pc, a desktop, with a d-link modem and wireless router (DIR-615). The problem is that I can't go on the internet with my laptop, because of a certrain error on the Intel PROSet Troubleshoot: "Did not receive IP addresss", in fact the IP address was written as 0.0.0.0, and when I open the internet browser I can't go on to any page. IO have tried everything, believe me, from switching off every thing, to reinstalling the router, but nothing seems to resolve the error.
On my cisco IOS 12.4 router,Can i make it so only lets say mac address 11:22:33:44:55:66 able to use ip address 10.10.10.2?I want this so that only this IP can configure servers, and so if the computer using it is turned off, any other device cannot use the IP address.
cisco 2811 - DHCP server..If IP Phone 3905 installed in SF 300 he does not receive an ip address. [code] If IP Phone 3905 installed in the Catalyst 2960 - all OK.
I want to receive full BGP in my switch 6506 with the follow characteristics: cisco WS-C6506-E (R7000) processor (revision 1.2) with 458720K/65536K bytes of memory and Supervisor Engine 720.When I configure the session BGP in my router with me peer the switch begins to work slow and restarts.
At home I have a perfectly working test setup for more than 1 year now , but yesterday we had a power down for about 10 minutes in the whole area , after this power down nothing was working in my network any longer.
My Network is has follow :
ISP(Cable Modem) on FA23 from the CISCO 2950 SWITCH (24 Ports) ROUTER (ON A STICK) on FA24 from the CISCO 2950 SWITCH And the rest of the switch is FA1=VLAN 1; FA2=VLAN 2;FA10=VLAN 10
Our home network is connected to VLAN 10 with a IP Range of 192.168.10.x /24 After this power down , I was not able to look into the SWITCH via FA1 , the FIX IP in this switch was 192.168.1.251/24, the ONLY way to get access was via the consol port !!!What a suprice when I connected my consol to the PC , I can see ROUTER_F342 , my router config is called ROUTER1841 and my switch config name is /was called SW24.So it seems that after this Power Down , the router took or received a config from my provider ?!?
I have recovered the the file in the switch + the vlan.dat and now everithing works again.
How can I avoid that this switch receive again a wrong file , I have all the needed files on the products itself and I do not use a TFTP server.
I have atached some screen shot when my switch is starting up , and it seems that the switch receive a IP address from my ISP , I do not know why, in the config file I have given it a FIX IP 192.168.1.251/24 ?!?So it seems that my ISP erase the config file and when the switch is empty ,the swich look for :
tftp://255.255.255.255/router-confg tftp://255.255.255.255/ciscortr.cfg Etc .... Until it find something.
I have tried after a complete recovery to switch off the power again for 10 minutes (ISP MODEM + SWITCH + ROUTER) and I was not able to reproduce the fault.Can it be that due to this power failure in our area that some routers or switches send or broadcast this kind of things ?
I just started configuring AnyConnect with ASA 5520 that uses Cisco SecureACS to pass radius authentication. I configured two profiles with different split tunnel restrictions and what I discovered is that when the client connects to the ASA, they are provided a choice of these two groups (I guess there is no way to restrict this) and I can log into either one with any user account. How do I restrict this so that the user can only use one profile? Currently users capable of VPN would be placed in one specific AD group so that is what SecureACS checks. Is there a sample configuration guide to handle multiple profiles with different levels of access?
I'm trying to route all default traffic from my production environment through my ASA 5520 on the "outside2" interface.The 5520 has a site to site VPN to our DR site on the "outside/inside" interfaces via one ISP. On another ISP, interfaces "outside2/inside2" go to the internet. When I make my 3750 stack default route for the inside2 interface IP I cannot get to the internet. When it is pointed to the inside interface on my 5505, I can.
I get the following errors when I try to open google.com from a production server:Why is the 5520 trying to use the "outside" interface instead of the "outside2" interface to go out?
What i am trying to achive is allow only specific mac addresses on switch and deny all others by using MAC ACE. What should i do? First deny any any and then permit or ?
1)is there any methods to let LMS 4.2 discover Cisco devices based on specific ip like Loopback address ? coz in my Cisco devices i have more than ip address configured?
Any solution for NAT only for a specific ip address or a range of ip addresses from the same subnet?
I've read that the router in gateway mode automatically makes the translation and in router mode does not. Starting from this, is there any way to nat from firewall access rules only.
I have a WAG160Nv2 and I want to block specific external ip addresses from trying to get at our server that uses the WAG160Nv2 as an internet gateway. It's not immediately obvious if this can be done from looking through the config pages.
I'm trying to get started on setting up my first Transparent ASA.I understand an ASA in Transparent Mode can now have an ip address with Bridge Groups or some such mechanism. I'm looking for examples of how to set that up and other information below. Is the ip address associated with the device or is it interface specific? Will I be able to SSH with that ip address setup? Can I use ASDM if the Transparent ASA has an ip address? This 5512X has an IPS. Any one who has setup an IPS on this platform knows it has some very particular requirments in order to communicate with the outside world. I need examples of how to do that with a Transparent ASA.How is NAT setup differently (if at all) on a Transparent ASA?Are ACLs done any differently?
I would like to allow PING on RV042 from WAN side only from specific IP address, but when I set the rule, RV042 does not respond on WAN side, because Block WAN Request is Enabled.BUT! When I disable "Block WAN Requests", now any IP can ping my router from WAN side. Although I set access rule to Deny Ping from WAN side to anyone, it still responds.
We will shortly be installing a Cisco 3825 router, to be connected to the BTNet service, over fibre.We will be binding many public IP addresses to the router.
Is there a way of defining a specific bandwidth limit per IP address, or range?
