Spanning Tree and Admin mac address issues srw2048

Ok, I have a somewhat complex problem and hopefully someone may shed some light or have an idea as to whats wrong.
First the scenario:
I have two Cisco Cat 6509's etherchanneled to each other via two fiber cables.  One of these is the STP/RSTP root.  I have two SRW2048's.. one trunked to each of these 6509 switches.  There is also a trunk between the SRW2048's.  All this is to create a redundant topology so that if one of the switches fail's the others can still forward packets to each other.  Of course the scenario described is in fact a loop that should be handled by STP/RSTP.  I have RSTP enabled on all the switches in the scenario (PV RSTP on the cisco switches as they only do Cisco's brand of per vlan spanning tree).  There are 3 vlan's configured on each of the srw2048's (2,55,96).  There are corresponding vlan's also on the 6509's.  I have put the srw2048's management interface into vlan 2.
The problem:
I need to forward packets between the srw2048's primarily and only use the 6509 that is not the root when a failure happens.  I have configured the non-root 6509's spanning tree cost on the etherchannel to be higher then the alternate path through the srw's to the root.  I can hook everything up and view the spanning tree and see that the srw2048's interface that goes to the non-root 6509 is blocked, and all other interfaces on the other switches are forwarding.  I can in fact ping and get to the admin interface on all the switches.  Then for some strange reason the admin interface of the srw2048 plugged into the non-root 6509 stops responding.  If I disable either the interface its plugged into on the 6509 or the other srw2048 everything starts working again.  Sometimes it responds after many failures for no apparent reason.  I looked into the mac-address table on the 6509's and they are conflicting, pointing to each other for the mac-address of the broken srw2048.  When I clear the mac-table the admin port comes back for about 5 seconds then again goes dark.  When reviewing mac-table on the 6509's they are back to pointing to each other.  The odd thing (although I haven't confirmed this completely) is that hosts placed into vlan 2 on that same srw2048 seem to work fine.  If there was an STP loop or something misconfigured, I would expect it to effect any host in vlan 2 or the other vlan's for that matter on the srw2048 that stops responding.  Alas, I am stuck because I need to manage this switch remotely.  My only thought is that for some reason even when the STP status is blocked the broken srw2048 is still sending out arp's of its admin interface and bypassing the STP protocol.  I have no way to confirm this, but maybe someone has an idea as to what I'm doing wrong, or otherwise offer a solution.  For now, I simply removed vlan 2 from the 6509 that the broken srw2048 is plugged into and everything seems fine.
My apologies for such a long post, but this is somewhat complicated.  Thanks in advance for any info.
-Geoff
Message Edited by gmyers on 08-19-2008 10:35 PM

To follow up, I had a ticket open with Linksys about this for about 3 months with no resolution.  I submitted packet captures, stp outputs, etc and no luck.  I gave up and basically had to revert to a manual failover for redundancy.  It's no perfect or fast, but it works every time.
Unless linksys issues a firmware upgrade with this as a fix, I doubt we will be able to ever resolve this on our own.

Similar Messages

  • Mono spanning-tree and PVST

    Refering to these two links
    http://www.cisco.com/en/US/tech/tk389/tk390/technologies_tech_note09186a0080094665.shtml
    http://www.experts-exchange.com/Hardware/Routers/Q_21349385.html
    IEEE 802.1Q defines a single instance of spanning tree running on the native VLAN for all the VLANs in the network which is called Mono Spanning Tree (MST). This lacks the flexibility and load balancing capability of PVST available with ISL. However, PVST+ offers the capability to retain multiple Spanning Tree topologies with 802.1Q trunking.
    IEEE 802.1Q defines a single instance of spanning tree running on the native VLAN for all the VLANs in the network which is called Mono Spanning Tree (MST). This lacks the flexibility and load balancing capability of PVST available with ISL. However, PVST+ offers the capability to retain multiple Spanning Tree topologies with 802.1Q trunking.
    http://networking.ringofsaturn.com/Certifications/BCMSN.php
    Per-VLAN Spanning Tree (PVST) ? A Cisco proprietary method of connecting through 802.1Q VLAN trunks, the switches maintain one instance of the spanning tree for each VLAN allowed on the trunk, versus non-Cisco 802.1Q switches which maintain one instance for ALL VLANs. This is the default STP used on ISL trunks.
    http://www.informit.com/content/images/1587051427/samplechapter/1587051427content.pdf
    The 802.1Q standard defines one unique Spanning Tree instance to be used by all VLANs in the network. STP runs on the Native VLAN so that it can communicate with both 802.1Q and non-802.1Q compatible switches. This single instance of STP is often referred to as 802.1Q Mono Spanning Tree or Common Spanning Tree (CST). A single spanning tree
    lacks flexibility in how the links are used in the network topology. Cisco implements a protocol known as Per-VLAN Spanning Tree Plus (PVST+) that is compatible with 802.1Q CST but allows a separate spanning tree to be constructed for each VLAN. There is only one active path for each spanning tree; however, in a Cisco network, the active path can be
    I could not get exactly what these Terminology (PVST, instance, PVST+, MST, etc) trying to achieve ?
    Any URL and online resource help me to do some extar reading to clarify these terminology

    Hi,
    The URLs that you have provided all explains the same technical details in different fashion.
    I will summarise them here for better clarity.
    There are two separate technologies that needs clarity.
    1) Method of Trunking many vlans across a link
    2) Spanning tree
    Now for point 1, we have the IEEE standard 802.1q, which mentions how multiple vlans can be carried across a link. As per this standard a 4 byte tag will be inserted in the ethernet packet, ( inserted between the Destination mac address field and the ethertype field)
    This tag will contain the vlan identifier info and some other details ( available in the urls that you have highlighted)
    Cisco has a proprietary technology called ISL which effectively does the same job in a different fashion but can only be used in cisco devices.
    Now for point 2, again we have IEEE standards like 802.1d ( common/mono spanning tree), 802.1w/RSTP ( Rapid spanning tree) and 802.1s/MSTP.
    In 802.1d, there will be only one spanning tree process/instance running for the whole network, irrespective of how many vlans are involved in the network. Hence the whole network is treated as one common domain by the STP protocol.
    So, there can be only one root bridge in the network and other bridges will intelligently block the redundant links, we wont have much control to effectively utilise the redundant links.
    IEEE 802.1w/RSTP also works in the same fashion, but the convergence time is very fast in this protocol.
    Here also there is only one spanning tree instance involved.
    In both the above STP protocols, there is only one instance/process of the protocol running in the network, which is common for all vlans. Hence these protocols consume only very less CPU utilisation.
    In 802.1s/ MSTP ( multiple spanning tree), extends the 802.1w Rapid Spanning Tree Protocol (RSTP) to have multiple STP instances. In this protocol, we can group the desired vlans in to one Instance of the protocol.
    Say for example, lets assume a typical campus network with multiple access switches, 2 distribution/core switches.
    Access switches having dual connectivity to the distribution/core switches.
    In this topology if we deploy 802.1d or 802.1w, the redundant links from the access switches to the distribution/core switches will be blocked. Only one uplink from the access switch to the distribution layer will be working at any point.
    In this network, only one distribution/core switch will be root bridge for the entire network.
    But if we deploy 802.1s for this network, we can design it as follows.
    We can split the vlans in to two groups,
    Group1 => vlan 1 to 50
    Group2 => vlan 51 to 100
    We can create two instance of MSTP protocol with the following mappings
    Instance 1 => for Group 1, with one distribution/core switch as the root bridge
    Instance 2 => for Group 2, with another distribution switch as the root bridge
    --Continued

  • Configure active and standby mac address in failover

    Hi guys, 
    I just have a doubt that, if I configure the active and standby mac address in failover, does it will cause any downtime? 
    As I planning to configure the active and standby mac addresses in failover during production time and not wish that it will bring any downtime to me. 
    Besides that, just need some guideline that do I need to put all the interfaces' mac addresses in failover?
    failover mac address GigabitEthernet0/0 0022.90fe.2000 0022.90fe.2001 
    failover mac address GigabitEthernet0/1 0022.90fe.3000 0022.90fe.3001
    failover mac address GigabitEthernet0/2 0022.90fe.4000 0022.90fe.4001
    failover mac address GigabitEthernet0/3 0022.90fe.5000 0022.90fe.5001

    Hi Marius, 
    Seem like set the failover MAC address was not working for me. 
    Last friday I was tested the failover MAC address.
    TEST 1
    1, Power off primary ASA and secondary ASA work as active.
    2, 2821 router able to learn the correct arp entries.
    TEST 2
    1, Power on primary ASA and failover from secondary to primary. 
    2, 2821 router able to learn the correct arp entries from ASA.
    3, Set failover MAC address, power off primary ASA and secondary ASA be active.
    4, 2821 router unable to learn the correct arp entries.
    TEST 3
    1, Removed failover MAC address from secondary ASA.
    2, 2821 router still unable to learn the correct arp entries from ASA.
    3, Power up primary ASA and secondary ASA still in active.
    4, 2821 router still unable to learn the correct arp entries from ASA.
    5, Reboot 2821 router and it able to learn the arp entries from ASA.
    I am not sure this issue from router or from the ASA. But I guess I will try to upgrade the router in term of software and hardware. 

  • MAC address issue----Spearman

    Saw your comments on this in the post about the 1.9 bios for neo2platty ....
    I can confirm that My MAC address issue was caused by the bios that you sited in your comments....all F's were written to My nvidia lan too...
    only solution from what I have read is too rma it...'bummer'
    just thought You would like to know....  Your not alone

    I had the same problem yesterday and after many hours searching the web I ended up with this post that made me really desperate... But I didn't give up and while trying a new bios flash because of random crashes when in the bios, I noticed the obvious: you can change the MAC address when flashing 
    use the last version of the dos flasher with the parameters /nvmac:xxxxxxxxxxxx/wb after the name of the bios file; it's explained if you ask the help with the /help parameter. You can find the mac address on a stick on the parallel port.

  • Where do I find my WiFi and Bluetooth MAC address on my Blackberry?

    Where do I find my  WiFi and Bluetooth MAC address on my Blackberry?
    Cheers FT

    Options > Status.
    good luck!
    1. If any post helps you please click the below the post(s) that helped you.
    2. Please resolve your thread by marking the post "Solution?" which solved it for you!
    3. Install free BlackBerry Protect today for backups of contacts and data.
    4. Guide to Unlocking your BlackBerry & Unlock Codes
    Join our BBM Channels (Beta)
    BlackBerry Support Forums Channel
    PIN: C0001B7B4   Display/Scan Bar Code
    Knowledge Base Updates
    PIN: C0005A9AA   Display/Scan Bar Code

  • RV016: PPTP Server and "Block MAC address"

    So if the PPTP server is enabled, and "Block MAC address not on the list" is enabled under the DHCP settings, will the PPTP client get an IP address?
    Similarly, if the PPTP server is enabled and the range of IP addresses configured on the PPTP server screen is outside the IP range of the router due to a subnet mask (like 255.255.225.248 for example), will the IP still be assigned to the PPTP client?  If assigned, will that IP have any connectivity to the LAN?
    Thank you in advance for any answers!
    Huntsville's Premiere Car and Bike e-magazine: www.huntsvillecarscene.com      

    So here's how PPTP works with these two features:
    1.  The PPTP IP range is a different range than the DHCP range.  You get an error message if your PPTP IP range overlaps with the DHCP one.
    I didn't test the 'Block MAC' function because since the IP isn't coming from the DHCP pool, I highly doubt any MAC blocking will work.
    2.  Since your PPTP IP address range is outside of the DHCP range, this point is completely taken off the table.  However, if you choose an IP range that's outside of the subnet, you'll get an error message when saving.  I also learned that if you set the PPTP IP to just a single number and connect, the router will automatically reject any additional connections since no IPs are available.
    Huntsville's Premiere Car and Bike e-magazine: www.huntsvillecarscene.com

  • Hi.  I'm trying to set-up the wireless access times in my Airport Utility.  I need to enter the "Description" and the "MAC Address" of each wireless client before I assign access times. What are these?  Thanks.

    Hi.  I'm trying to set-up the wireless access times in my Airport Utility.  I need to enter the "Description" and the "MAC Address" of each wireless client before I assign access times. What are these?  Thanks.

    Let's say that an iPhone is one of the wireless clients that you want to allow access to the network.
    The Description of this device is anything that you want to specify for easy identification purposes. For example, the Description might be something like......
    Rex's iPhone
    The MAC Address, also known as a Wi-Fi Address is  a unique indentifiction number that is assigned to every device. The number will always follow this form:
    xx : xx : xx : xx : xx : xx, where "x" could be a number or letter.
    To find the MAC Address or Wi-Fi Address of an iPhone or iPad.....
    On the Home screen.....
    Tap Settings
    Tap General
    Tap About
    Wi-Fi Address is the item that you want
    If you have a Mac computer......you can find the MAC Address or Wi-Fi Address as follows:
    Open System Preferences (gear icon on the dock)
    Open Network
    Click on Wi-Fi on the left
    Click Advanced at the lower right
    The Wi-Fi Address for the Mac is located at the bottom of the window
    Other wireless devices usually have the MAC Address or Wi-Fi Address on the label on the back or bottom of the device

  • WRT600N weird MAC Address issue

    I've had the Linksys WRT600N for several months. One day the internet connection stopped working, after I power cycled it, I called support and they had me change the router to clone MAC address after that it worked. If I took off the cloned MAC the internet wouldnt work. So I got curious after that and I restored the router the settings file I had backed up previously. I tried my internet connection and everything worked. No clone MAC address, however, after about a month it stopped again. The issue was making sure clone mac address was on. My question is why does that keep happening there shouldnt be a reason that it would need my computers mac if my isp doesnt need me to do thaa. (ISP = Optimium) Has anyone had this problem or know what the cause is?

    You have to tell what you did exactly if it did not work.
    Generally: many ISPs (most cable ISPs) only grant you a single public IP address, i.e. a single device connected to their service. Most do this by storing the MAC address of the device connected to the modem. If you connect a different device with a different MAC address into the modem they won't accept it. You won't get an IP address. You don't have internet. Only the device with the MAC address stored (or a modified MAC address set to the stored MAC address) will have internet.
    Some ISPs reset the stored MAC address if you call them. With a few ISPs this is the only option.
    Most ISPs reset the MAC address after a few hours of inactivity or in fixed intervals.
    Some ISPs recognize if you reset the modem and reset the MAC address then.
    After it is reset you can connect a different device and it will get the IP address.
    Now, if your internet at some point does not work and for a test you connect the computer directly to the modem and you get internet then, at that moment you already have locked in MAC address of the computer and you have to use the MAC address clone on the router.
    Thus, if you need the MAC address clone or not depends on what you did when exactly after how much time of inactivity when the internet did not work anymore.

  • CNA 5.5 and show mac address-table

    When trying to Monitor/Search for MAC address in C2960 network I got an error reply that a CLI command is not supported. Analyzing network traffic shows that CNA 5.5 is issueing 'show mac-address-table' command but the latest Cisco IOS Software, C2960 Software (C2960-LANBASEK9-M), Version 12.2(55)SE does not support 'show mac-address-table' anymore but does support 'show mac address-table' command. How can I change the command for showing mac address tables in CNA 5.5?
    M.

    hi john,
    the show mac-address-table command should be valid.
    check if you've got MAC learning enabled on the ASA interface using show mac-learn command.
    edit: could you post show firewall? the above command works on transparent firewall only.

  • I own an Aspire netbook and am trying to upgrade to Windows 10, and need to address issues.

    I own an Aspire Netbook and I am having issues resrving an upgrade to Windows 10. Can anyone tell me when this will be fixed?
    I own one of your Netbooks and I am trying to reserve the update for Windows 10 and I am getting this message
    AO722
    AO722-C62kk
    Serial number
    LUSFT02175*****
    Purchase date
    2012/01/03
    When I use the Windows 10 reserve app I get a message that says
    "Windows 10 will work on this PC.
    This PC can be upgraded but there may be issues.
    Devices
    These devices might not work correctly after the upgrade.
    Terminal Server Keyboard Driver
    (Standard System Devices)
    Terminal Server Mouse Driver
    (Standard System Services)
    Can you please tell me what the story is and when will it be fixed.
    Thank you,
     TomS
    [edited for privacy-please do not post personal or unique information such as but not limited to full names, email addresses, phone numbers, serial numbers, etc.]

    spetho2001,
    You are describing what sounds like the Microsoft compatibility check tool. It runs to make sure whatever issues may occur are known before an upgrade to Windows 10. If you need a more solid solution I would suggest contacting Microsoft directly as it is their tool.

  • MAC Address issue in Linux Guest

    Hi,
    IP address is getting change on every reboot of Linux machine in HyperV environment even we have make it static inside the Linux configuration file.
    Any Suggestion ??

    Hi Amit,
    Can you check whether the MAC address is persistent on the VM?
    Configure a static MAC for the VM using VM properties.
    Delete the *persistent-net.rules in /etc/udev/rules.d/ and reboot the VM.
    Thanks,
    Janaka
    Janaka Rangama MCT MIEEE MBCS (Please take a moment to Vote as Helpful and/or Mark as Answer, where applicable.)

  • Base Radio Mac and SSID MAC addresses

    I am looking for a way to obtain the SSID mac addresses from a report or other method. We have clients attaching to an SSID that show a MAC address that I am positive is the MAC of the SSID (based off the physical MAC of the Radio) but I cannot find it either in reports in WCS or on the controller.
    Thanks!

    try the following command via the CLI
    show dot11 bssid
    Examples
    This example shows how to display a list of BSSIDs and SSIDs:
    AP# show dot11 bssid
    This example shows the command output:
    AP1230#show dot11 bssid
    Interface BSSID Guest SSID
    Dot11Radio1 0011.2161.b7c0 Yes tsunami
    Dot11Radio0 0005.9a3e.7c0f Yes WPA2-TLS-g
    from this doc
    http://www.cisco.com/en/US/docs/wireless/access_point/12.3_4_JA/command/reference/cr34main.html#wp2701427
    let me know if this helps
    Bill

  • E100 & E1000 Spanning tree and VLAN reuse

    I have a situations where I have two e series cards configured as single card ether-switches in the same chassis. One is an E100 and the other is an E1000. I have spanning tree enabled on all the transport circuit built to these cards. There is no STS connectivity between these cards.
    I am reusing a few VLANs between the cards and the cards appear to be sharing spanning tree topology information. Has anyone had similar experiences reusing VLANs and discovered a work around for this? The 15454 documentation is not very descriptive of this situation and lacks detailed STP info as on would expect to be accessible from a Cisco switch.
    Thanks,
    Ken

    I'm not so sure that singlecard/multicard mode has anything to do with STP on E-Series cards. From the book Optical Network Design and Implementation:
    "It is important to remember that in the case of the E-Series cards, the Timing and Control 2 (TCC2) common card actually runs the spanning-tree engine with a single instance of STP per node. Each E-Series card plugged into the chassis maintains only a copy of its Layer 2 forwarding table. In the case of ML-Series cards, however, the individual cards maintain copies of the Layer 2 forwarding table and they run an instance of STP." ... "From an STP perspective, however, the entire ONS node is perceived as a single bridge, even though it might contain multiple E-Series cards. For ML-Series cards, however, each card is accounted for as a discrete bridge, and STP uses each and every ML-Series card for its STP computation."

  • BE 5K CUCM and CUC Mac-Address registering license

    Hi All,
    I am really confused for registering CUC license to which mac-address. (CUCM or CUC)
    I have CUCM be 5k on Server 7828 both CUCM and CUC is installed on same server. For CUCM i got the mac address from show status, but how about registering the license to CUC it should be registered on same CUCM Mac address or CUC has different mac-address.
    I uploaded the licenses in CUCM and need to upload the license in CUC.
    Thank you all in advance.
    Best Regards,
    Mohammed SaberUddin

      MAC address changes should NOT effect the BI 4 server in any way, everything binds to the Server Name & IP Address.
    Regards,
    Ajay

  • 4500 VLAN MAC address issue

    We are facing an issue with our 4500 switch. It is using the same MAC address for all VLAN interfaces, which is causing a problem with our service provider.
    Is there a way to disable this?
    Thanks,
    Fabián

    Fabián,
    I'm afraid that's not possible on a 4500:
    Supported Platforms for Unique MAC Address Configuration on VLAN or L3 Interfaces for Catalyst Switches
    Best regards
    Rolf

Maybe you are looking for