FabricPath vPC port-channel err-disabled CE Vlan?

Similar Messages

• IOS to NXOS VPC PORT CHANNEL

  Hello
  I have a pair of Nexus 5K's in a VPC domain and some 2960's as VPC members, with a port channel to the domain.
  Topology is as follows:
  5K1 and 5K2 in VPC domain
  VPC from 5K1 and 5K2 to 2960
  2960 has gi0/1 and gi0/2 in 1 port channel
  gi0/1 to 5k1, gi0/2 to 5k2
  I know that what I am going to ask may be totally against the purpose of VPC, but, I am looking for a way to favour gi0/1 for traffic, rather than load balancing over gi0/1 and gi0/2. The reaon for this is that I would like to benefit from the lack of loop that VPC provides, but would also like to have a primary and secondary link as the majority of traffic should actually go via 5K1, rather than 5K2.
  Any suggestions welcome.
  Many thanks in advance
  Anthony

  Hi Anthony,
  The Cisco NX-OS software load balances traffic across all operational interfaces in a portchannel by hashing the addresses in the frame to a numerical value that selects one of the links in the channel. Port channels provide load balancing by default. Port-channel load-balancing uses MAC addresses, IP addresses, or Layer 4 port numbers to select the link. Port-channel load balancing uses either source or destination addresses or ports, or both source and destination addresses or ports.
  You can configure the load-balancing mode to apply to all port channels that are configured on the entire device or on specified modules. The per-module configuration takes precedence over the load-balancing configuration for the entire device. You can configure one load-balancing mode for the entire device, a different mode for specified
  modules, and another mode for the other specified modules. You cannot configure the load-balancing method per port channel.
  You can configure the type of load-balancing algorithm used. You can choose the load-balancing algorithm that determines which member port to select for egress traffic by looking at the fields in the frame.
  Note:  The default load-balancing mode for Layer 3 interfaces is the source and destination IP address, and the default load-balancing mode for non-IP interfaces is the source and destination MAC address.
  From the config mode you can try different load-balacing method ,
  port-channel load-balance {dest-ip-port | dest-ip-port-vlan |
  destination-ip-vlan | destination-mac | destination-port | source-dest-ip-port | source-dest-ip-port-vlan | source-dest-ip-vlan | source-dest-mac | source-dest-port | source-ip-port | source-ip-port-vlan | source-ip-vlan | source-mac | source-port} [module-number]
  To Summarize: I cannot say which port would be selected, it purely depends on type of frame you are sending with the combination of the load-balance method.
  After tweaking you can also know from the command which link the traffic is taking,
  NEXUS2-SPAN# show port-channel load-balance forwarding-path interface port-channel 71 src-ip 1.1.1.1 dst-ip 2.2.2.2 vlan 51 module 2
  Module 2: Missing params will be substituted by 0's.
  Load-balance Algorithm: src-dst ip-l4port
  RBH: 0xb0       Outgoing port id: Ethernet8/8
  we can also try tweaking the same load-balancing on the 2960 also. It purely depends on the load-balancing algorithm. Below is for 2960 Load-balancing tweaking,
  http://www.cisco.com/en/US/docs/switches/lan/catalyst2960/software/release/12.2_53_se/configuration/guide/swethchl.html
  Even after doing this i wouldnt say 100% it would select one link.
  Hope this helps!
  Thanks,
  Richard.
  *Rate if this is useful

• Looking for Tool - Port Security/err-disable

  I have implemented port security on our new 3750X's.  Does anyone know, or using, a tool that can report, poll or alert when an interface goes into err-disable and what caused the violation?

  Thanks Marvin.  I was hoping there was another utility, as well.  We have a syslog server, which does get the syslog messages.  I was hoping for a more proactive response versus a query for the information.  Building trends and such is not a big deal with the syslog data.
  Our environment is fairly large with 70 buildings at one location and 15 at another.  Being a University we have students who try different things on the network as well as other "IT" arms doing their own thing.  We have a monitoring tool, Intermapper, but I was hoping there was something else that could be used, or someone else using something better, to give us a real time view, and something that could collect all the data at once and provide a report.
  I was not sure if Cisco Prime Infrastructure provided that functionality or not, or if there was another product recommended.

• LMS 4.2 - Err-disable port state

  Hello,
  I'm trying to figure it out how exactly LMS learns about ports in err-disable state? Which MIB or command is used?
  I have two ME3400 switches with err-disabled ports but LMS shows only the ports of one of the them. Both switches are ME-3400-24TS-A
  and have the same IOS version (12.2(53)SE). I'm sure data collection is running fine because it updates the other discrepancies.
  What i have tried by now:
  - did an SNMP walk from LMS on CISCO-ERR-DISABLED-MIB - no info found there on port status
  - did an SNMP walk from LMS on CISCO-STACK-MIB - I know that this MIB contains object portAdditionalOperStatus (1.3.6.1.4.1.9.5.1.4.1.1.23) which shows the operational status of the ports, but it seems that ME3400 does not support it (although it supports CISCO-STACK-MIB), because I cannot see the SNMP reponse in the trace:
  ========================================================================
  The following is a SNMP walk of device 192.168.6.89 starting from .1.3.6.1.4.1.9.5.1.4.1.1.23
  SNMP Walk Output
  .1.3.6.1.4.1.9.5.1.4.1.1.23
  CISCO-STACK-MIB::portAdditionalOperStatus = No Such Object available on this agent at this OID
  ========================================================================
  So how does LMS knows which ports are in err-disable state?
  Kind regards,
  Velin

  Hello,
  The OID that LMS uses for detecting the err-disabled state of the ports is 1.3.6.1.4.1.9.9.548.1.3.1.1.2 (cErrDisableIfStatusCause) from CISCO-ERR-DISABLE-MIB 
  Velin

• Port Err-disable report from cisco works

  Hi All,
  We have network of around 400 switches.
  My question is, Is there any way I can pull up the report of Err-disable for all the switches on Cisoworks ( LMS 3.2).
  Any help would be appricated.
  Thanks,
  Samir

  No, this is not possible because determining if a port is err-disable is not easily obtainable via SNMP.  Campus Manager's Port Attributes report will show you the operational status of ports, but err-disable ports will be down (which is indistinguishable from a port which is unconnected).

• Nexus 7000 - unexpected shutdown of vPC-Ports during reload of the primary vPC Switch

  Dear Community,
  We experienced an unusual behavior of two Nexus 7000 switches within a vPC domain.
  According to the attached sketch, we have four N7Ks in two data centers - two Nexus 7Ks are in a vPC domain for each data center.
  Both data centers are connected via a Multilayer-vPC.
  We had to reload one of these switches and I expected the other N7K in this vPC domain to continue forwarding over its vPC-Member-ports.
  Actually, all vPC ports have been disabled on the secondary switch until the reload of the first N7K (vPC-Role: primary) finished.
  Logging on Switch B:
  20:11:51 <Switch B> %VPC-2-VPC_SUSP_ALL_VPC: Peer-link going down, suspending all vPCs on secondary
  20:12:01 <Switch B> %VPC-2-PEER_KEEP_ALIVE_RECV_FAIL: In domain 1, VPC peer keep-alive receive has failed
  In case of a Peer-link failure, I would expect this behavior if the other switch is still reachable via the Peer-Keepalive-Link (via the Mgmt-Port), but since we reloaded the whole switch, the vPCs should continue forwarding. 
  Could this be a bug or are there any timers to be tuned?
  All N7K switches are running on NX-OS 6.2(8)
  Switch A:
  vpc domain 1
    peer-switch
    role priority 2048
    system-priority 1024
    peer-keepalive destination <Mgmt-IP-Switch-B>
    delay restore 360
    peer-gateway
    auto-recovery reload-delay 360
    ip arp synchronize
  interface port-channel1
    switchport mode trunk
    switchport trunk allowed vlan <x-y>
    spanning-tree port type network
    vpc peer-link
  Switch B:
  vpc domain 1
    peer-switch
    role priority 1024
    system-priority 1024
    peer-keepalive destination <Mgmt-IP-Switch-A>
    delay restore 360
    peer-gateway
    auto-recovery reload-delay 360
    ip arp synchronize
  interface port-channel1
    switchport mode trunk
    switchport trunk allowed vlan <x-y>
    spanning-tree port type network
    vpc peer-link
  Best regards

  Problem solved:
  During the reload of the Nexus 7K, the linecards were powerd off a short time earlier than the Mgmt-Interface. As a result of this behavior, the secondary Nexus 7K received at least one vPC-Peer-Keepalive Message while its peer-link was already powerd off. To avoid a split brain scenario, the VPC-member-ports have been shut down.
  Now we are using dedicated interfaces on the linecards for the VPC-Peer-Keepalive-Link and a reload of one N7K won't result in a total network outage any more.

• Design help related to ACE to Switch connectivity using Port-Channel

  Hi,
  I have a Cisco ACE 4710 configured in One-Arm mode. This ACE is getting connected with 2 3750 switches. These 2 3750 switches connected in trunk mode.
  ACE is connected to these 3750 switches using Port-channel.
  ACE Config:
  ================================
  interface gigabitEthernet 1/1
    description One-arm mode port to DMZ Switch 1 port 20
    channel-group 1
    no shutdown
  interface gigabitEthernet 1/2
    description One-arm mode port to DMZ Switch 2 port 20
    channel-group 1
    no shutdown
  interface port-channel 1
    switchport access vlan 51
    port-channel load-balance src-dst-ip
    no shutdown
  interface vlan 51
    ip address 10.40.56.131 255.255.255.128
    access-group input everyone
    access-group output everyone
    nat-pool 1 10.40.56.215 10.40.56.215 netmask 255.255.255.255 pat
    service-policy input LB
    service-policy input remote-access
    no shutdown
  ===========================================================
  The problem is that 3750 switches are not stacked.
  Application is working fine. But i am getting a lot of MAC flapping messages..
  kindly suggest whether this design is OK or something needs to be done to rectify it...
  Attached a small diagram..

  Hello acharyr123,
  I don't think this design is ok, and it would cause mac flapping since the two indepedendent 3750 switches will learn the ace mac addresses off of two different interfaces.  The 3750s would have to be stacked so that they would act as one switch then this should work correctly.
  Thanks
  Joel Lamousnery
  TAC CSE

• Configuring 9222i for Port-Channels to 6500

  I need to configure an MDS 9222i to do EhterChannel for redundant links to a Cisco 6500. I have tried to configure channel-group on the GE interface and I get an error (see below)
  b0maumigrjax(config-if)# channel-group 1
  command failed: Member list of different interface types not supported [created]
  9222i Config
  interface port-channel 1
    channel mode active
    switchport rate-mode dedicated
  interface GigabitEthernet1/1
    ip address 1.1.1.10 255.255.255.0
    switchport description Core.Link.Connection.22
    no shutdown
  interface GigabitEthernet1/2
    ip address 1.1.1.1.11 255.255.255.0
    switchport description Core.Link.Connection.23
    no shutdown
  6500 Config
  Interface Port-Channel 1
  sw acc vlan 10
  interface GigabitEthernet1/2
  channel-group 1 mode active
  no shut
  interface GigabitEthernet1/1
  channel-group 1 mode active
  no shut

  David,
  I tried that as well. I still was not able to get the interface's to come up in sh ether summ on the switch.
  fcip profile 1
    ip address 10.136.120.10
    tcp max-bandwidth-mbps 50 min-available-bandwidth-mbps 20  round-trip-time-ms 5
  fcip profile 2
    ip address 10.136.120.11
    tcp max-bandwidth-mbps 50 min-available-bandwidth-mbps 20  round-trip-time-ms 5
  interface fcip1
    use-profile 1
    peer-info ipaddr 10.136.120.13
    channel-group 1 force
    no shutdown
  interface fcip2
    use-profile 2
    peer-info ipaddr 10.136.120.14
    channel-group 1 force
    no shutdown

• Cisco 4506 switch in Err-disable mode

      I have a Cisco 4506 switch and its 10 gig interface is in error disable mode.I tried Shut and no shut the port couple of times but it transits from up to down number of times and then to error-disable. Did anyone else encountered this issue before. kindly advise the solution for the same. thanks         

  Hi Shariq,
  Can you post the output of the show interface status err-disable ? That output contains the reason for putting your port into err-disabled state.
  Best regards,
  Peter

• Strange mac address causing err-disable

  I have mainly 3550/4506 with port-security. Every day user ports go into err-disable and it's the same few mac addresses each time? anyone else came acreoss this ans know what's it is all about.

  It should tell you in the logg why the port is err-disableing the port . Could be as simple as speed/duplex mismatches on the port if they are causing something like a lot of late collisions the switch will err-disable the ports . Check the switch and nic settings for these devices .

• Interfaces in port-channel keep err-disabling because of keepalives

  Below is the current portchannel that I am having problems with.  The interfaces on Switch A keep going into an error disabled state because they receive their own loopback.  Cisco says to disable keepalives and that it will fix the problem, but I do not like the idea of disabling keepalives.  Has anyone found a solution other than disabling keepalives?  Notice that ios's are different, but am not convinced that this is the issue.  Also one is PoE and the other isn't.  Lastly, i found this article "Keepalives are sent on all interfaces by default in Cisco IOS Software Release 12.1EA-based software. In Cisco IOS Software Release 12.2SE-based software and later, keepalives are not sent by default on fiber and uplink interfaces".  I would think trunked interfaces in a port-channel would be uplink interfaces and if this is true, it should be sending out keepalives anyway since i am running the 12.2SE based ios.  Thanks for whatever input you may have.
  Switch A
  C3750E Boot Loader (C3750X-HBOOT-M) Version 12.2(53r)SE2, RELEASE SOFTWARE (fc1)
  System image file is "flash:/c3750e-universalk9-mz.122-55.SE3/c3750e-universalk9-mz.122-55.SE3.bin"
  cisco WS-C3750X-48P
  Port-channels in the group:
  Port-channel: Po52
  Age of the Port-channel   = 219d:04h:32m:49s
  Logical slot/port   = 10/39          Number of ports = 4
  GC                  = 0x00000000      HotStandBy port = null
  Port state          = Port-channel Ag-Inuse
  Protocol            =    -
  Port security       = Disabled
  Ports in the Port-channel:
  Index   Load   Port     EC state        No of bits
  ------+------+------+------------------+-----------
    0     00     Gi1/0/35 On                 0
    0     00     Gi1/0/36 On                 0
    0     00     Gi2/0/45 On                 0
    0     00     Gi2/0/46 On                 0
  %ETHCNTR-3-LOOP_BACK_DETECTED: Loop-back detected on GigabitEthernet1/0/35.
  %PM-4-ERR_DISABLE: loopback error detected on Gi1/0/35, putting Gi1/0/35 in err-disable state
  %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet1/0/35, changed state to down
  %LINEPROTO-5-UPDOWN: Line protocol on Interface Port-channel39, changed state to down
  %LINK-3-UPDOWN: Interface Port-channel39, changed state to down
  Switch B
  C3750E Boot Loader (C3750X-HBOOT-M) Version 12.2(53r)SE2, RELEASE SOFTWARE (fc1)
  System image file is "flash:/c3750e-universalk9-mz.122-58.SE2/c3750e-universalk9-mz.122-58.SE2.bin"
  cisco WS-C3750X-48
  Port-channels in the group:
  Port-channel: Po52
  Age of the Port-channel   = 443d:18h:43m:06s
  Logical slot/port   = 10/39          Number of ports = 4
  GC                  = 0x00000000      HotStandBy port = null
  Port state          = Port-channel Ag-Inuse
  Protocol            =    -
  Port security       = Disabled
  Ports in the Port-channel:
  Index   Load   Port     EC state        No of bits
  ------+------+------+------------------+-----------
    0     00     Gi1/0/35 On                 0
    0     00     Gi1/0/36 On                 0
    0     00     Gi1/0/45 On                 0
    0     00     Gi1/0/46 On                 0

  PER CISCO
  Symptom:
  An interface on a Catalyst switch is errordisabled after detecting a loopback.
  Mar 7 03:20:40: %ETHCNTR-3-LOOP_BACK_DETECTED: Loop-back detected on
  GigabitEthernet0/2. The port is forced to linkdown.
  Mar 7 03:20:42: %LINK-5-CHANGED: Interface GigabitEthernet0/2, changed state
  to administratively down
  Mar 7 03:20:43: %LINEPROTO-5-UPDOWN: Line protocol on Interface
  GigabitEthernet0/2, changed state to down
  Conditions:
  This might be seen on a Catalyst 2940, 2950, 2950-LRE, 2955, 2970, 3550, 3560
  or 3750 switch running 12.1EA or 12.2SE based code.
  Workaround:
  Disable keepalives by using the no keepalive interface command. This
  will prevent the port from being errdisabled, but it does not resolve the root
  cause of the problem. Please see section below for more information.
  Additional Information:
  The problem occurs because the keepalive packet is looped back to the port that
  sent the keepalive. There is a loop in the network. Although disabling the
  keepalive will prevent the interface from being errdisabled, it will not remove
  the loop.
  The problem is aggravated if there are a large number of Topology Change
  Notifications on the network. When a switch receives a BPDU with the Topology
  Change bit set, the switch will fast age the MAC Address table. When this
  happens, the number of flooded packets increases because the MAC Address table
  is empty.

• Peer-Switch with vPC and non-vPC Vlan Port-Channels

  Hi,                 
  in a design guide i have noticed that it is best practice to split vPC and non-vPC vlans on different inter-switch port-channels. Now, if i want to use the Peer-Switch function, but the port-channel interface of the non-vPC-vlan channel moves into blocking state. The option spanning-tree pseudo-information has no influence. Is peer-switch possible in my kind of topology?
  Greeting,
  Stephan

  I believe absolutly possible. specifically coz peer-switch and spt pseudo-info are specific and local to cisco fabric services running as part of  vpc technology. Personally me has lab with vpc-domain compounded of 2 N5Ks. They are peer-switches with spt-pseudoinfo and they have MST running on non VPC links independantly from vpc.

• Vlan Putting in err-disable state.

  How to troubleshoot this log:
  %PM-4-ERR_DISABLE_VP: elmi evc down error detected on Fa0/24, vlan 101.  Putting in err-disable state.
  Thank you very much.
  upe11#sho ethern cfm dom
  Domain Name: provider_domain
  Level: 4
  Total Services: 2
    Services:
    Type Id   Dir CC CC-int Static-rmep Crosscheck MaxMEP MA-Name
    Vlan 101  Up  Y  1s     Disabled    Disabled   100    customer_101_provider
    Vlan 110  Up  Y  1s     Disabled    Disabled   100    customer_110_provider
  ce11#sho int f0/1
  FastEthernet0/1 is up, line protocol is up (connected)
  ce21#sho int f0/1
  FastEthernet0/1 is up, line protocol is up (connected) (vlan-err-dis)
  pe1#
  interface Vlan101
  mtu1526
  no ip address
  xconnect 10.0.0.3 101 encapsulation mpls
  interface GigabitEthernet9/3.110
  mtu1526
  no ip address
  xconnect 10.0.0.3 110 encapsulation mpls
  pe2#
  interface Vlan101
  mtu1526
  no ip address
  xconnect 10.0.0.2 101 encapsulation mpls
  interface GigabitEthernet9/3.110
  mtu1526
  no ip address
  xconnect 10.0.0.2 110 encapsulation mpls
  upe11#
  ethernet cfm ieee
  ethernet cfm global
  ethernet cfm traceroute cache
  ethernet cfm domain provider_domain level 4
  service customer_101_provider vlan 101
  continuity-check
  continuity-check interval 1s
  service customer_110_provider vlan 110
  continuity-check
  continuity-check interval 1s
  ethernet evc evc_p2p_101
  oam protocol cfm svlan 101 domain provider_domain
  ethernet evc evc_p2p_110
  oam protocol cfm svlan 110 domain provider_domain
  ethernet lmi global
  interface GigabitEthernet0/1
  description ce1
  switchport trunk allowed vlan 101,110
  switchport mode trunk
  load-interval 30
  media-type rj45
  ethernet cfm mep domain provider_domain mpid 1101 vlan 101
  ethernet cfm mep domain provider_domain mpid 1110 vlan 110
  ethernet uni id ce11
  ethernet oam
  service instance 101 ethernet evc_p2p_101
  ethernet lmi ce-vlan map 101
  service instance 110 ethernet evc_p2p_110
  ethernet lmi ce-vlan map 110
  interface GigabitEthernet0/15
  description pe1
  port-type nni
  switchport mode trunk
  load-interval 30
  ethernet cfm mip level 4 vlan 1-4094
  upe21#
  ethernet cfm ieee
  ethernet cfm global
  ethernet cfm traceroute cache
  ethernet cfm domain provider_domain level 4
  interface GigabitEthernet0/2
  description upe22
  port-type nni
  switchport mode trunk
  load-interval 30
  media-type sfp
  ethernet cfm mip level 4 vlan 1-4094
  interface GigabitEthernet0/1
  description pe2
  port-type nni
  switchport mode trunk
  load-interval 30
  media-type sfp
  ethernet cfm mip level 4 vlan 1-4094
  upe22#
  ethernet cfm ieee
  ethernet cfm global
  ethernet cfm traceroute cache
  ethernet cfm domain provider_domain level 4
  service customer_101_provider vlan 101
  continuity-check
  continuity-check interval 1s
  service customer_110_provider vlan 110
  continuity-check
  continuity-check interval 1s
  ethernet evc evc_p2p_101
  oam protocol cfm svlan 101 domain provider_domain
  ethernet evc evc_p2p_110
  oam protocol cfm svlan 110 domain provider_domain
  ethernet lmi global
  interface GigabitEthernet0/1
  description ce21
  switchport trunk allowed vlan 101,110
  switchport mode trunk
  load-interval 30
  ethernet cfm mep domain provider_domain mpid 2110 vlan 110
  ethernet cfm mep domain provider_domain mpid 2101 vlan 101
  ethernet uni id ce21
  ethernet oam
  service instance 101 ethernet evc_p2p_101
  ethernet lmi ce-vlan map 101
  service instance 110 ethernet evc_p2p_110
  ethernet lmi ce-vlan map 110
  interface GigabitEthernet0/15
  description upe21
  port-type nni
  switchport mode trunk
  load-interval 30
  media-type sfp
  ethernet cfm mip level 4 vlan 1-4094
  ce11#
  ethernet lmi ce
  interface FastEthernet0/24
  description upe11
  switchport trunk allowed vlan 101,110
  switchport mode trunk
  ethernet lmi interface
  ethernet oam remote-loopback supported
  ethernet oam
  interface Vlan101
  ip address 101.1.1.1 255.255.255.0
  interface Vlan110
  ip address 110.1.1.1 255.255.255.0
  ce21#
  ethernet lmi ce
  interface FastEthernet0/1
  description upe22
  switchport trunk allowed vlan 101,110
  switchport mode trunk
  ethernet lmi interface
  ethernet oam remote-loopback supported
  ethernet oam
  interface Vlan101
  ip address 101.1.1.2 255.255.255.0
  interface Vlan110
  ip address 110.1.1.2 255.255.255.0

  Sorry, This problem is solved. I forgot create vlan database in upe.

• SG-300 52p POE and the case of Native vlan forgotten on a Port-channel

  Hi
  We have recently changed our access switched to Cisco Small Business SG-300 52p on which is working firmware
  SW version    1.3.5.58
  We found out a very annoying problem on Port-channel and default vlan topic.
  Our switch have a default vlan diffrent to the vlan 1 that depends on the floor they are, and this native vlan is at first defined on the portchannel of our central switch, a Cisco 3750
  Example of a central switch port-channel with a define native vlan:
  interface Port-channel2
  description TO 1F
  switchport trunk encapsulation dot1q
  switchport trunk native vlan 6
  switchport trunk allowed vlan 4-6,11,13
  switchport mode trunk
  on the SG300 side the configuration is this:
  interface Port-channel2
  description 1F
  switchport trunk allowed vlan add 4-5,11,13
  !next command is internal.
  macro auto smartport dynamic_type switch
  As you can see there is no "switchport trunk native vlan 6" simply because the SG300 once i write it on the command line, it accepts the command but the command sentence is not written on the conf (why?!)
  the result is that everytime the SG300 is restarted on the port-channel i got two AUTO CREATED commands on the configuration "
  switchport trunk native vlan 1
  switchport default-vlan tagged
  that let not work the network on that floor until i manually write on the SG300
  no switchport default-vlan tagged
  switchport trunk native vlan 6
  These command, as said, works once i write them but are not viewed on a "sh run" and so saved on the conf so every time SG 300 is restarted i need to re-write them.
  Is this a bug?
  have i made some mistake?
  Please let me know
  regards
  Pietro

  Figure out!
  the problem was on macro i have to write this:
  macro auto processing type switch disabled
  and then everything starts going as it should be
  Regards
  Pietro

• 3750-2960 Vlans Issue via Port Channel

  Im trying to get all my vlans to pass thru to my 2960 user level switches, from my 3750 stack.
  Each one of my 2960 stack is connected to my 3750 via port channel. Here is my port setup.
  I have Vlans 1,210,214,216,220,306,406 on my 3750 stack. I cannot see those vlans on my 2960 stack. Why is that? What am I missing from the config?
  Thanks...
  3750 ports:
  interface GigabitEthernet1/0/41
  description Uplink to ETHSW03
  switchport trunk encapsulation dot1q
  switchport trunk allowed vlan 1,210,214,216,220,306,406
  switchport mode trunk
  snmp trap mac-notification change added
  snmp trap mac-notification change removed
  spanning-tree guard loop
  channel-protocol lacp
  channel-group 7 mode active
  interface GigabitEthernet1/0/42
  description Uplink to ETHSW03
  switchport trunk encapsulation dot1q
  switchport trunk allowed vlan 1,210,214,216,220,306,406
  switchport mode trunk
  snmp trap mac-notification change added
  snmp trap mac-notification change removed
  spanning-tree guard loop
  channel-protocol lacp
  channel-group 7 mode active
  interface Port-channel7
  description Uplink to ETHSW03
  switchport trunk encapsulation dot1q
  switchport trunk allowed vlan 1,210,214,216,220,306,406
  switchport mode trunk
  snmp trap mac-notification change added
  snmp trap mac-notification change removed
  spanning-tree guard loop
  Here are my 2960 ports setup:
  interface GigabitEthernet1/0/47
  description Uplink to CORE01
  switchport trunk allowed vlan 1,210,214,216,220,306,406
  switchport mode trunk
  snmp trap mac-notification change added
  snmp trap mac-notification change removed
  spanning-tree guard loop
  channel-protocol lacp
  channel-group 1 mode active
  interface GigabitEthernet1/0/48
  description Uplink to CORE01
  switchport trunk allowed vlan 1,210,214,216,220,306,406
  switchport mode trunk
  snmp trap mac-notification change added
  snmp trap mac-notification change removed
  spanning-tree guard loop
  channel-protocol lacp
  channel-group 1 mode active
  interface Port-channel1
  description Uplink to CORE01
  switchport trunk allowed vlan 1,210,214,216,220,306,406
  switchport mode trunk
  snmp trap mac-notification change added
  snmp trap mac-notification change removed
  spanning-tree guard loop

  I have 1 stack of 3750, connected with flex technology.
  I have 3 stacks of 4-2960s, connected with flex technology.
  Then, each 2960 stack is connected to my 3750 stack via port channels (gig ports x2).
  Now, this is a second office site. We are connected to our datacenter via private ethernet line, and thats where most of our vlans and servers reside.
  Output from 3750
  P-DB-CORE01#sh vtp status
  VTP Version capable             : 1 to 3
  VTP version running             : 1
  VTP Domain Name                 : NULL
  VTP Pruning Mode                : Disabled
  VTP Traps Generation            : Disabled
  Device ID                       : 6c41.6a9c.a280
  Configuration last modified by 10.2.20.1 at 3-3-93 23:43:55
  Feature VLAN:
  VTP Operating Mode                : Transparent
  Maximum VLANs supported locally   : 1005
  Number of existing VLANs          : 19
  Configuration Revision            : 0
  MD5 digest                        : 0x3D 0x05 0x4D 0x8C 0x31 0x07 0x34 0xDA
                                      0x2F 0x60 0xE8 0x24 0xA6 0x27 0x59 0x24
  Output from 2960
  P-ETHSW03-20.4#sh vtp status
  VTP Version capable             : 1 to 3
  VTP version running             : 1
  VTP Domain Name                 : NULL
  VTP Pruning Mode                : Disabled
  VTP Traps Generation            : Disabled
  Device ID                       : c07b.bcb2.9a80
  Configuration last modified by 10.2.20.2 at 1-3-14 13:02:15
  Local updater ID is 10.2.20.4 on interface Vl1 (lowest numbered VLAN interface found)
  Feature VLAN:
  VTP Operating Mode                : Server
  Maximum VLANs supported locally   : 255
  Number of existing VLANs          : 7
  Configuration Revision            : 5
  MD5 digest                        : 0x89 0x91 0xBA 0xE3 0x12 0x1B 0xDB 0x1D
                                      0x75 0x43 0x7F 0x8D 0x62 0x5A 0x09 0x70