MAC address flapping on 2 x Cisco 3750 (Stacked)
Hi All,
I am having some issue with my connectivity.
The setup with HP virtual connect (VC) is as below:
Server A NIC 1 -- VC 1 -- Switch A
NIC 2 -- VC 2 -- Switch A
Server B NIC 1 -- VC 1 -- Switch A
NIC 2 -- VC 2 -- Switch A
The VLAN configuration are done on individual NIC card on the servers and the switchport on Switch A facing the VC connect are all on trunk mode.
Currently I am seeing MAC address flapping on my Switch. The switches are CISCO 3750 and are being stacked so it appears logically as 1 switch.
Any idea what might be the problem?
Below is an output of the flapping on the switch.
%SW_MATM-4-MACFLAP_NOTIF: Host xxxx.xxxx.0637 in vlan 1 is flapping between port Gi2/0/3 and port Gi2/0/5
%SW_MATM-4-MACFLAP_NOTIF: Host xxxx.xxxx.46eb in vlan 1 is flapping between port Gi1/0/5 and port Gi1/0/7
%SW_MATM-4-MACFLAP_NOTIF: Host xxxx.xxxx.661d in vlan 1 is flapping between port Gi2/0/15 and port Gi2/0/7
Hi,
Problem of MAC FLAP could resolve by following methods:.
Check with the server providers to see if the OS and server platform support 'NIC' Teaming (NIC Bonding).
FYI - NIC teaming allows users to group two or more physical NICs into a single logical network device called a bond. Once a logical NIC is configured, the virtual machine is not aware of the underlying physical NICs. Packets sent to the logical NIC are dispatched to one of the physical NICs in the bond and packets arriving at any of the physical NICs are automatically directed to the appropriate logical NIC. If one of the underlying physical NICs is broken or its cable has been unplugged, server will detect the fault condition and automatically move traffic to another NIC in the bond.
Hope that help
If helpful do rate
Ganesh.H
Similar Messages
-
MAC Address Flapping - Wireless
Friends,
I am having an issue here (not serious i guess).
I have 4 Wisms running on a VSS setup. with 400 APs.
I have been receiving the following logs on the VSS
Sep 12 19:39:10: %MAC_MOVE-SW1_SP-4-NOTIF: Host 001c.bf81.b7bb in vlan 220 is flapping between port Po704 and port Po736
Sep 12 19:39:10: %MAC_MOVE-SW1_SP-4-NOTIF: Host 0024.c454.fac6 in vlan 212 is flapping between port Po735 and port Po736
These are just 2 logs that i have put in, but im getting many more of them.
vlan 220 and 212 are user vlans in the network.
Now, my guess is that they are clients roaming between access points connected to different controllers.
or if Im wrong, is there something serious that i need to look into.
Thanks,
PhilHi Vinay Sir, I need your support for wireless issue.
I getting multiple mac flap error messge in cisco 4507 Core switch while my mobile clietnts roaming from one AP to another AP due to this my whole lan network goes down.
And im having cisco AIR-CT2504-K9 controller also.
Requesting you to kindly help me in this case.
Thanks
dhanraj poojari -
Etherchannel two cisco 3750 stacks for iscsi?
I have two sites connected by 96 strands of fibre. At each site I have an IBMv7000 relicating to the other one. For iSCSI traffic I have two Cisco 3750 switches, each are in 2 switch stack.
SAN A Fibre Link SAN B
| |
Cisco Stack A =========================Cisco Stack B
| |
| |
iSCSI Clients iSCSI Clients
My question: Is it ok to connect the the two stacks with etherchannel using the fibre links? Will is provide the necessary redundancy, if one of the interfaces goes down?What model numbers of 3750 are you using?
What is the distance between the stacks as this will dictate your fiber run modules. -
Power Redundancy problem for cisco 3750 stack switches
Hi Team,
I have installed and configured cisco 3750X series switches in stackwise. Those are having dual power supply.
Power redundancy test performed:
1. Removed one of the power supply and inserted it back.
2. once the first power supply is ready, removed another power supply and switch got rebooted.
please find the below stack-power output:
JP2-RDC-DIS-02#sh stack-power detail
Power Stack Stack Stack Total Rsvd Alloc Unused Num Num
Name Mode Topolgy Pwr(W) Pwr(W) Pwr(W) Pwr(W) SW PS
Powerstack-2 SP-PS Stndaln 700 477 223 0 1 2
Powerstack-1 SP-PS Stndaln 700 477 223 0 1 2
Power stack name: Powerstack-2
Stack mode: Power sharing
Stack topology: Standalone
Switch 2:
Power budget: 223
Power allocated: 223
Low port priority value: 22
High port priority value: 13
Switch priority value: 4
Port 1 status: Not connected
Port 2 status: Not connected
Neighbor on port 1: 0000.0000.0000
Neighbor on port 2: 0000.0000.0000
Power stack name: Powerstack-1
Stack mode: Power sharing
Stack topology: Standalone
Switch 1:
Power budget: 223
Power allocated: 223
Low port priority value: 22
High port priority value: 13
Switch priority value: 4
Port 1 status: Not connected
Port 2 status: Not connected
Neighbor on port 1: 0000.0000.0000
Neighbor on port 2: 0000.0000.0000
Can anyone help what went wrong here?
Thanks
ManishCosmetic bug
CSCui21029 3750X Stack no standalone stays in running configureation as standalone
Symptom:
When you are configuring a 3750x stack and initially putting it into a stack ring topology by configuring the following.
Switch(config)#stack-power switch 1
Switch(config-switch-stackpower)#sta
Switch(config-switch-stackpower)#no stan
Switch(config-switch-stackpower)#no standalone
You will see that in the running configuration it shows up as standalone mode
stack-power switch 1
switch mode: standalone
stack-power switch 2
switch mode: standalone
Conditions:
3750X stacks with any license level
Workaround:
none -
Etherchannel issue between 3750 stack and WS-CBS3012 for IBM blade centre
Hi,
We are trying to configure Etherchannel between four ports of cisco 3750 stack(2ports from one switch of stack and two ports from another switch of same stack). We are facing issues with this setup. The ports in WS-CBS3012 are going to err disable mode.
Is there any limitations associated with such a cross-stack etherchannel configuration. Please suggest if there is any particular sequence of configuration involved.
Switch1 in stack
int gi 3/0/3
switchport mo trunk
switchport trunk allowed vlan 10-30
sw tr en dot1q
channel-group 1 mode on
spanning-tree guard root
switch 2 in stack
int gi 3/0/3
switchport mode trunk
switchport trunk allowed vlan 10-30
sw tr en dot1q
channel-group 1 mode on
spanning-tree guard root
int port-channel 1
switchport mode trunk
switchport trunk allowed vlan 10-30
sw tr en dot1q
channel-group 1 mode on
spanning-tree guard root
in WS-CBS3012 ports are configured with trunk,allowed vlan and etherchannel configuration with mode on.
With Regards,
Madhan kumar GHi,
The commnad "no spanning-tree etherchannel guard misconfig" on WS-CBS3012 resolved the issue.
Regards,
Madhan kumar G -
Mac-Address Different format for Authorization on Cisco ISE
Dear All,
I have problem with my Cisco ISE,
This is the design :
ISE ---- Core Switch ---- 3Com Switch --- PC User
My Case:
Authorization is based on Mac-address and Active Directory,
But user with PC that connect to 3Com swtich is Deny by ISE because the Format Mac-address is different with Cisco,
Mac-address Cisco format : XX:XX:XX:XX:XX:XX
Mac-address 3Com format : XXXX-XXXX-XXXX
3Com Switch type is TRICOM 4210 26-PORT.
Anyone have experience with this? and how change the mac-address format in 3Com so user can authorized by Cisco ISE.
note:
authorization based on Active Directory is not problem with 3Com Switch.
Based on my experience, Different product is different format mac-address, so this case not only for 3Com Switch.
Thanks,
Arika WahyonoI do not think Cisco will add these vendors to the supported switch matrix because then it would be a support issue that cisco would have to deal with, much like most of the AD issues I experienced when I worked in TAC. Your best bet would be to run the evaluation license instance in a lab and have a 3com switch point against that.
Other than that I do not recommend upgrading to 1.2 without validating that the new "multi-vendor" MAB support will work on your switch.
PS- Keep in mind that my comments is just my opinion so you may need to open a TAC case for an official answer.
Tarik Admani
*Please rate helpful posts* -
Cisco ISE 1.1.4 Patch 7 (Internal Endpoint Mac Addresses Getting Disppeared)
Hi Folks,
I am having issue that mac addresses which we are trying to add under Internal Endpoint Group for MAB getting disappear automatically after few minutes. We tried multiple mac addresses but result same. We can see the mac address which we added earlier but new mac address getting disappear. Is there any limit to add mac address under Internal Endpoint. We have following licenses.
L-ISE-ADV-1K-M= Cisco ISE 1000 EndPoint Advanced + Base Migration License
ThanksTabish,
We'll update the latest patch and then look for the work around from any one of our Cisco experts -
Cisco Aiornet 1042 with MAC address
Hi,
I have a Cisco Aiornet, model AIR-AP1042N-E-K9.
I need to configure the AP to only certain MAC access.
I'm doing the configuration through the console.
The wireless network is not showing up in devices, anyone know why?
version 15.2
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
hostname ap_disi
logging rate-limit console 9
enable secret 5 xxxxx.
aaa new-model
aaa group server radius rad_eap
aaa group server radius rad_mac
aaa group server radius rad_acct
aaa group server radius rad_admin
aaa group server tacacs+ tac_admin
aaa group server radius rad_pmip
aaa group server radius dummy
aaa authentication login default local
aaa authentication login eap_methods group rad_eap
aaa authentication login mac_methods local
aaa authorization exec default local
aaa accounting network acct_methods start-stop group rad_acct
aaa session-id common
no ip routing
no ip cef
dot11 syslog
dot11 ssid DISI-WLAN24
authentication open
dot11 ssid DISIWIFI
authentication open mac-address mac_methods
authentication key-management wpa version 2
infrastructure-ssid
dot11 guest
username Cisco password 7 xxxx
username Admin privilege 15 password 7 xxxx
bridge irb
interface Dot11Radio0
no ip address
no ip route-cache
encryption mode ciphers aes-ccm
ssid DISI-WLAN24
ssid DISIWIFI
antenna gain 0
speed basic-1.0 2.0 5.5 11.0 6.0 9.0 12.0 18.0 24.0 36.0 48.0 54.0 m0. m1. m2. m3. m4. m5. m6. m7. m8. m9. m10. m11. m12. m13. m14. m15.
station-role root
l2-filter bridge-group-acl
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 spanning-disabled
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
interface Dot11Radio1
description AP SITAS
no ip address
no ip route-cache
encryption mode ciphers aes-ccm
ssid DISIWIFI
antenna gain 0
peakdetect
no dfs band block
speed basic-6.0 9.0 12.0 18.0 24.0 36.0 48.0 54.0 m0. m1. m2. m3. m4. m5. m6. m7. m8. m9. m10. m11. m12. m13. m14. m15.
channel dfs
station-role root
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 spanning-disabled
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
interface GigabitEthernet0
no ip address
no ip route-cache
duplex auto
speed auto
l2-filter bridge-group-acl
no keepalive
bridge-group 1
bridge-group 1 spanning-disabled
no bridge-group 1 source-learning
interface BVI1
ip address 192.168.0.252 255.255.254.0
no ip route-cache
ipv6 address dhcp
ipv6 address autoconfig
ipv6 enable
ip default-gateway 192.168.1.254
ip forward-protocol nd
ip http server
ip http authentication aaa
no ip http secure-server
ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
ip radius source-interface BVI1
access-list 700 permit 8830.8a24.7eb5 0000.0000.0000
access-list 700 deny 0000.0000.0000 ffff.ffff.ffff
snmp-server view dot11view ieee802dot11 included
snmp-server community public view dot11view RO
snmp-server location DISI
snmp-server contact SITAS
snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart
snmp-server enable traps tty
snmp-server enable traps entity
snmp-server enable traps disassociate
snmp-server enable traps deauthenticate
snmp-server enable traps authenticate-fail
snmp-server enable traps dot11-qos
snmp-server enable traps switch-over
snmp-server enable traps rogue-ap
snmp-server enable traps wlan-wep
snmp-server enable traps config-copy
snmp-server enable traps config
snmp-server enable traps syslog
snmp-server enable traps cpu threshold
snmp-server enable traps aaa_server
snmp-server host 192.168.1.6 public
radius-server attribute 32 include-in-access-req format %h
radius-server vsa send accounting
bridge 1 route ip
line con 0
line vty 0 4
transport input all
sntp server 192.168.1.215
sntp broadcast client
endPlease refer: http://www.cisco.com/c/en/us/td/docs/wireless/access_point/12-4-25d-JA/Configuration/guide/cg_12_4_25d_JA/scg12-4-25d-JA-chap16-filters.html#wp1034897
-
Sh mac-address command in Cisco RSP4
Hello guys,
Need your ideas on how to know to which port a device connected to using mac-address information on Cisco DLSw RSP4.
I did tried using command "sh mac-address add" but it is not recognized in this IOS.
See below outputs:
RSP-Core#sh ver
Cisco Internetwork Operating System Software
IOS (tm) RSP Software (RSP-DSV-M), Version 12.1(13), RELEASE SOFTWARE (fc3)
Copyright (c) 1986-2002 by cisco Systems, Inc.
Compiled Wed 30-Jan-02 13:58 by kellythw
Image text-base: 0x60010958, data-base: 0x61186000
cisco RSP4 (R5000) processor with 131072K/2072K bytes of memory. >>>>>>>>>
R5000 CPU at 200Mhz, Implementation 35, Rev 2.1, 512KB L2 Cache
RSP-Core>sh ip arp tok 1/1/0
Protocol Address Age (min) Hardware Addr Type Interface
Internet 146.X.3.76 5 0060.9435.63e2 SNAP TokenRing1/1/0
Internet 146.X.3.77 5 4000.2030.2410 SNAP TokenRing1/1/0
RSP-Core#sh mac-address add ?
% Unrecognized command
RSP-Core#sh mac-Interesting hardware you have there.
Is this perhaps a cat 5xxx with an RSM module?
In that case, the RSM is in fact a router blade.
The command "sh mac-adress " is only found on switches. This info is there already but you need to get it from the supervisor which will be running CatOS.
http://www.cisco.com/en/US/docs/switches/lan/catalyst5000/catos/4.5/configuration/guide/5000_cfg.html
regards,
Leo -
Cisco Aironet Remove Local MAC Address List (all)
Hi All,
I need to remove all MAC addresses in the LOCAL MAC Address List on a Cisco Aironet. I do not want to remove running config on the device as we have changed over to a RADIUS Server.
Can anyone give me some advice please?I have found a solution, please close this forum post.
-
Cisco WLC Client MAC address backup to new Controller & ISE
Hi All,
We have an existing 4400 controller with MAC filtering for clients configured. Right Now, we are migrating to 5500 WLC and ISE setup.
We want to use MAC filtering due to company policies on the new Controller as well as ISE.
Is there a way (from GUI/CLI) that we can export the client MAC Addresses into an Excel file from existing WLC to new WLC & ISE?
Thanks,
CJOn the CLI issue a show macfilter summary and then import that into excel or a text editor.
Sent from Cisco Technical Support iPhone App -
MAC Address FF:FF:FF:FF:FF:FF on a Cisco 7920
Hi!
Maybe someone of you can help me about my problem. I have my 7920 that can not authenticate to the CallManager and no signal for wireless is detected. When checking the Mac address I could see that it reflects ff:ff:ff:ff:ff:ff
Can this be fixed? How?
Thank you,
Oscar.Try upgrading the firmware through the Configuration Utility.
http://www.cisco.com/en/US/docs/voice_ip_comm/cuipph/7920/3_3/english/administration/guide/7920frm.html -
Mac-Address Locking on ML-1000 for the Cisco 15454
Does anyone know if you can do mac-address locking on the ML-1000 card on the Cisco 15454. I would like to enter the command "mac-address-table secure", but it does not look like it is possible to do this.
Thanks,
EricThe command is not supported on the ML-1000 card.
-
Cisco Aironet 1240 AG Access Point - configure Mac Address using Telnet
Hi there,
IÂve got a problem hopefully someone can help me with. I have the above mentioned AP and it is configured, working well and providing wireless access to several laptops on our domain.
The thing is I canÂt get access to the web-based interface to add new laptops Mac addresses to the AP as I currently have them secured with local list Mac address authentication but my user name and password when entered in the web browser login dialog box wonÂt allow me in although strangely it does allow me to login using the same credentials when I telnet into the AP.
Does anyone know why I canÂt get logged in using the web interface even though the user name and password does appear to be correct as I can telnet in? Also if you have any suggestions how I could sort this without having to perform the password recovery procedure, as I donÂt want all the config on the AP wiped and want to avoid having the set the whole thing up again.
As I workaround if anyone knows what the commands are to allow me to add the Mac addresses of the new laptops so they are added to the local list Mac address authentication list so the new laptops are secured that would be great.
Thanks in anticipation,
TonyYour AP is probably configured to use the enable secret as the password. Try entering nothing for the username, and enter your enable secret for the password ('Cisco' by default).
If that doesn't work, post your running-config and we'll be able to see why it's doing that. It's a standard configuration, and no worries because wiping the AP won't be necessary since you can successfully Telnet in.
Jeff -
Blocking MAC-Address on Cisco Router
Can anyone tell me how to block a particular mac-address on cisco router 2900 series? There are few pc's in the network which i dont want to get them into the network anyhow. Can anyone help me out with this?
Regards,
AbhishekWith your problem-description
There are few pc's in the network which i dont want to get them into the network anyhow
the strategy of using the router to block them is the wrong way because the PCs are already on the network and the blocking has to be done at the entry-points which are the switches.
But if you want to stop them leaving your network on the router by filtering the MAC, you could also use modified QoS-mechanisms:
class-map match-any UNWANTED-PCs
match source-address mac AAAA.BBBB.CCCC
match source-address mac DDDD.EEEE.FFFF
policy-map IN-POLICY
class UNWANTED-PCs
drop
int GigabitEthernet0/0
description LAN-Interface
service-policy input IN-POLICY
Don't stop after you've improved your network! Improve the world by lending money to the working poor:
http://www.kiva.org/invitedby/karsteni
Maybe you are looking for
-
BSOD on restart after installing Boot Camp 4 Support Software
My install of Windows 7 Ultimate on a separate Boot Camp works until I try to install the Apple Boot Camp 4 Support Software. After I do so the system gives me BSOD on restart. I've tried the following suggestions from other threads: - Renaming/remov
-
Hi all, I am facing two problems in polling. 1. I want to select fields from more than one table. Is that possible in polling designing steps. 2. Currently I am using the Logical Delete in polling. The problem is, polling flag is getting updated even
-
Can I use the small 3" 2.6 GB DVD+R DL Disc in the MacBook Pro?
Well we have some vacation footage from a Sony Handycam that is on a 3" 2.6 GB DVD+R DL disc. Can I feed this in my MacBook Pro Optical drive without it getting stuck in there? Will it read? I'm wanting to edit the footage in iMovie HD if it will wor
-
Can't get Opera mini to connect - symbian S60 3rd ...
I have installed Opera Mini v7.1.32448 on my Nokia 6700 slide which runs symbian S60 3rd edition. I keep getting the error that it can't connect. (The phone does not have WiFi and I connect using Vodafone). The phones built in web browser connects to
-
AQ resource provider in Weblogic 10.3
Hello, Can you plz tell me how to create Resource Provider in WL Admin console to Oracle DB Q (AQ) ? Thanks