Port Channel
Hi all,
Got a query
I have got following command configured under two interfaces connected to WLC distribution ports
gi1/2
qos vlan-based
gi1/3
qos vlan-based
I have a port-channel configured for both gi1/2 and gi1/3
Do I need to configure qos vlan-based under port-channel as well?
Typically you just need to define QoS on the physical port and not the port channel.
Thanks,
Scott
*****Help out other by using the rating system and marking answered questions as "Answered"*****
Similar Messages
-
Right way of configuring higher MTU over a Port Channel
Hi guys,
I have a running critical Port-Channel between two locations.
Here's the config
SW1:
interface Port-channel2
switchport
switchport trunk encapsulation dot1q
switchport mode trunk
end
interface GigabitEthernet1/45
switchport trunk encapsulation dot1q
switchport mode trunk
channel-protocol lacp
channel-group 2 mode active
end
interface GigabitEthernet1/46
switchport trunk encapsulation dot1q
switchport mode trunk
channel-protocol lacp
channel-group 2 mode active
end
SW2
interface GigabitEthernet1/1
switchport trunk encapsulation dot1q
switchport mode trunk
channel-protocol lacp
channel-group 2 mode passive
end
interface GigabitEthernet1/2
switchport trunk encapsulation dot1q
switchport mode trunk
channel-protocol lacp
channel-group 2 mode passive
end
interface Port-channel2
switchport
switchport trunk encapsulation dot1q
switchport mode trunk
end
Now I need to increase the MTU from default value to 9198. What the right way to do it and avoid any connectivity loss, PortChannel restart.
Does it matter what switch I start first?
Thanks!
L.E. both SW are WS-C4948Hi,
Because you are using layer 2 interfaces - there is no fragmentation support at layer 2, and interfaces receiving frames which have an unsupported size will be dropped.
I think the best way for you to proceed is to lab this up; and verify what happens - it may be that you need to make changes on switches at either end of the channel within a very short time frame to prevent too large an outage.
When you are ready to maike your change - think the best way to do this is to use the interface range command, and apply the 'mtu' command to all the interfaces in this range. I don't think it matters which switch you apply this change to first, and I don't believe if you are hinting at the 802.3ad (controlled by system-priority) decision maker, that it makes any difference.
HTH
Mike -
How to configure a port channel with VLAN trunking (and make it work..)
We're trying to configure a port channel group with trunked ports to connect a NetApp HA pair. We want to create two data LIFs and connect them to the switch stack. We are trying to create 2 data lifs, one for cifs and one for nfs that are on different vlans.
We want the same ports to be able to allow multiple vlans to communicate. (trunked)
These data lifs should be able to fail over to different nodes in the HA pair and still be able to communicate on the network.
What this means is that we have to connect 4 ports each for each node in the NetApp HA Pair to the switches and create a port channel of some type that allows for trunked vlans. When we configure the ports, the configuration is as follows (below):
We are only able to configure an IP on one of the vlans.
When we configure an IP from another vlan for the data lif, it does not respond to a ping.
Does anyone have any idea what I'm doing wrong on the Cisco switch?
interface GigabitEthernet4/0/12
description Netapp2-e0a
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 10,20,511,519
channel-protocol lacp
channel-group 20 mode active
end
interface GigabitEthernet4/0/13
description Netapp2-e0c
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 10,20,511,519
channel-protocol lacp
channel-group 20 mode active
end
interface GigabitEthernet6/0/12
description Netapp2-e0b
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 10,20,511,519
channel-protocol lacp
channel-group 20 mode active
end
interface GigabitEthernet6/0/13
description Netapp2-e0d
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 10,20,511,519
channel-protocol lacp
channel-group 20 mode active
end
interface Port-channel20
description Netapp2-NFS
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 10,20,511,519
spanning-tree portfast
spanning-tree bpduguard enable
endOur problem was fixed by the storage people. They changed the server end to trunk, and the encapsulation / etherchannel.
I like all the suggestions, and they probably helped out with the configuration getting this to work.
Thanks!
interface Port-channel20
description Netapp2-NFS
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 10,20,511,519
switchport mode trunk
interface GigabitEthernet4/0/12
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 10,20,511,519
switchport mode trunk
channel-protocol lacp
channel-group 20 mode active
interface GigabitEthernet4/0/13
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 10,20,511,519
switchport mode trunk
channel-protocol lacp
channel-group 20 mode active
interface GigabitEthernet6/0/12
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 10,20,511,519
switchport mode trunk
channel-protocol lacp
channel-group 20 mode active
interface GigabitEthernet6/0/13
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 10,20,511,519
switchport mode trunk
channel-protocol lacp
channel-group 20 mode active -
Disappointed: ASA 8.4 Redundant using Port-channels
So I finally got all our ASAs upgrade to version 8.4 and was all sorts of excited to configure port-channels to our 6500 + SUP7203B switches. I was severally disappointed to discover that I cannot configure two port-channels and have them be members of a redundant interface pair. It would seem like a logical topology.
Port-channel1 = Gig0/0 & Gig0/1
Port-channel2 = Gig0/2 & Gig0/3
Redundant1 = Port-channel1 & Port-channel2
Port-channel1 would connect to the primary 6500
Port-channel2 would connect to the backup 6500
What would it take to make this work? Am I going to have to wait for 8.5? Will we finally get BGP then too? (Had to get that in there)
http://www.cisco.com/en/US/docs/security/asa/asa84/configuration/guide/interface_start.html#wp1329357
EtherChannel Guidelines
•You can configure up to 48 EtherChannels.
•Each channel group can have eight active interfaces. Note that you can assign up to 16 interfaces to a channel group. While only eight interfaces can be active, the remaining interfaces can act as standby links in case of interface failure.
•All interfaces in the channel group must be the same type and speed. The first interface added to the channel group determines the correct type and speed.
•The device to which you connect the ASA 5500 EtherChannel must also support 802.3ad EtherChannels; for example, you can connect to the Catalyst 6500 switch.
•All ASA configuration refers to the logical EtherChannel interface instead of the member physical interfaces.
•You cannot use a redundant interface as part of an EtherChannel, nor can you use an EtherChannel as part of a redundant interface. You cannot use the same physical interfaces in a redundant interface and an EtherChannel interface. You can, however, configure both types on the ASA if they do not use the same physical interfaces.Hello Yaplej,
Agree with you but unfortunetly this is not supported yet,
We migh need to wait some time before this desing can be accomplish,
Regards,
If you do not have any other question please mark the question as answered -
I want to create a port-channel with 2 10Gbs interfaces on 2 ASA 5585 firewalls, and set them up in a failover pair.
In order to do this, do I simply put two 10Gbs interfaces into a channel and then configure the IP addressing and failover address on the logical port-channel interface? (aka interface po1).
Any limitations with this?Yes, that is exactly what you do..
Create portchannel on switch and ASA
Trunk the vlan on switch side
Create logical interfaces on ASA -
hey I have a question about port-channel.
we have a port-channel 10 which contains 4 interfaces as below.
my question is how the port-channel associated with the servers? I mean the output "sh flogi database" as below........
do we need to add port-channel as a zone member ? I think the answer is no since I don;t see the port-channel as a zone member....
=================================================================
tormds01# sh interface port-channel 10
port-channel 10 is up
Hardware is Fibre Channel
Port WWN is 24:0a:54:7f:ee:a0:d5:48
Admin port mode is auto, trunk mode is on
snmp link state traps are enabled
Port mode is F
Port vsan is 510
Speed is 32 Gbps
5 minutes input rate 124316072 bits/sec, 15539509 bytes/sec, 9919 frames/sec
5 minutes output rate 2205921104 bits/sec, 275740138 bytes/sec, 141424 frames/sec
43540499847 frames input, 70772376296224 bytes
0 discards, 0 errors
0 CRC, 0 unknown class
0 too long, 0 too short
237450525827 frames output, 442040501099476 bytes
0 discards, 0 errors
0 input OLS, 0 LRR, 0 NOS, 0 loop inits
0 output OLS, 0 LRR, 0 NOS, 0 loop inits
Member[1] : fc1/1
Member[2] : fc1/5
Member[3] : fc1/9
Member[4] : fc1/13
Interface last changed at Tue Apr 8 22:16:49 2014
tormds01# sh flogi database
INTERFACE VSAN FCID PORT NAME NODE NAME
fc1/3 510 0x860000 50:06:01:64:3d:e0:24:d0 50:06:01:60:bd:e0:24:d0
[torvnx01_spa0]
fc1/7 510 0x860100 50:06:01:6c:3d:e0:24:d0 50:06:01:60:bd:e0:24:d0
[torvnx01_spb0]
fc1/11 510 0x860200 50:06:01:60:3d:e0:24:d0 50:06:01:60:bd:e0:24:d0
[torvnx01_spa2]
fc1/15 510 0x860300 50:06:01:68:3d:e0:24:d0 50:06:01:60:bd:e0:24:d0
[torvnx01_spb2]
port-channel 10 510 0x860400 24:0a:54:7f:ee:92:3e:80 21:fe:54:7f:ee:92:3e:81
port-channel 10 510 0x860401 20:01:04:25:b5:3a:00:8f 20:01:00:25:b5:30:00:8f
[mcvhes0101hba0]
port-channel 10 510 0x860402 20:01:04:25:b5:3a:00:9f 20:01:00:25:b5:30:00:9f
[mcvhes0102hba0]
port-channel 10 510 0x860404 20:01:04:25:b5:3a:00:6f 20:01:00:25:b5:30:00:6f
[mcvhes0103hba0]
port-channel 10 510 0x860408 20:01:04:25:b5:3a:00:7f 20:01:00:25:b5:30:00:7f
[mcvhes0104hba0]
port-channel 10 510 0x86040f 20:01:04:25:b5:3a:00:4f 20:01:00:25:b5:30:00:4f
[mcvhes0105hba0]
port-channel 10 510 0x860410 20:01:04:25:b5:3a:00:5f 20:01:00:25:b5:30:00:5f
[mcvhes0106hba0]
port-channel 10 510 0x860417 20:01:04:25:b5:3a:00:2f 20:01:00:25:b5:30:00:2f
[mcvhes0107hba0]
port-channel 10 510 0x860418 20:01:04:25:b5:3a:00:0f 20:01:00:25:b5:30:00:0f
[mcvhes0109hba0]
port-channel 10 510 0x86041b 20:01:04:25:b5:3a:00:bf 20:01:00:25:b5:30:01:bf
[mcvhes0110hba0]
port-channel 10 510 0x86041d 20:01:04:25:b5:3a:00:1f 20:01:00:25:b5:30:00:1f
[mcvhes0111hba0]
port-channel 10 510 0x86041e 20:01:04:25:b5:3a:00:3f 20:01:00:25:b5:30:00:3f
[mcvhes0108hba0]
port-channel 10 510 0x86041f 20:01:04:25:b5:3a:00:ff 20:01:00:25:b5:30:01:ff
[mcvhes0112hba0]
port-channel 10 510 0x860423 20:01:04:25:b5:3a:00:df 20:01:00:25:b5:30:01:df
[mcvhes0113hba0]
port-channel 10 510 0x860425 20:01:04:25:b5:3a:00:ef 20:01:00:25:b5:30:01:ef
[mcvhes0114hba0]
port-channel 10 510 0x860426 20:01:04:25:b5:3a:00:cf 20:01:00:25:b5:30:01:cf
[mcvhes0115hba0]
port-channel 10 510 0x860427 20:01:04:25:b5:3a:00:8e 20:01:00:25:b5:30:01:8f
[MCDBWS0200hba0]
port-channel 10 510 0x860429 20:01:04:25:b5:3a:00:9e 20:01:00:25:b5:30:01:9f
[MCDBWS0201hba0]
port-channel 10 510 0x86042a 20:01:04:25:b5:3a:00:7e 20:01:00:25:b5:30:01:7f
[mcvhes0118hba0]
port-channel 10 510 0x86042b 20:01:04:25:b5:3a:00:af 20:01:00:25:b5:30:01:af
[mcvhes0116hba0]
port-channel 10 510 0x86042c 20:01:04:25:b5:3a:00:6e 20:01:00:25:b5:30:01:6f
[mcvhes0117hba0]
port-channel 10 510 0x86042d 20:01:04:25:b5:3a:00:4e 20:01:00:25:b5:30:01:4f
[mcvhes0119hba0]
port-channel 10 510 0x86042e 20:01:04:25:b5:3a:00:5e 20:01:00:25:b5:30:01:5f
[mcvhes0120hba0]
port-channel 10 510 0x860431 20:01:04:25:b5:3a:00:2e 20:01:00:25:b5:30:01:2f
[awotorprodsql01hba0]
port-channel 10 510 0x860432 20:01:04:25:b5:3a:00:3e 20:01:00:25:b5:30:01:3f
[awotorprodsql02hba0]
port-channel 10 510 0x860435 20:01:04:25:b5:3a:00:fe 20:01:00:25:b5:30:00:ef
[dbcactv01n3hba0]
port-channel 10 510 0x860436 20:01:04:25:b5:3a:00:de 20:01:00:25:b5:30:00:bf
[dbcactv01n4hba0]
port-channel 10 510 0x860439 20:01:04:25:b5:3a:00:ce 20:01:00:25:b5:30:00:8e
[mcvhes0123hba0]
port-channel 10 510 0x86043a 20:01:04:25:b5:3a:00:be 20:01:00:25:b5:30:00:af
[mcvhes0122hba0]
port-channel 10 510 0x86043c 20:01:04:25:b5:3a:00:ae 20:01:00:25:b5:30:00:9e
[mcvhes0124hba0]
port-channel 10 510 0x860443 20:01:04:25:b5:3a:00:8d 20:01:00:25:b5:30:00:6e
[mcvhes0125hba0]
port-channel 10 510 0x860445 20:01:04:25:b5:3a:00:ee 20:01:00:25:b5:30:00:cf
[mcvhes0121hba0]
port-channel 10 510 0x860446 20:01:04:25:b5:3a:00:9d 20:01:00:25:b5:30:00:7e
[mcvhes0126hba0]
port-channel 10 510 0x860447 20:01:04:25:b5:3a:00:6d 20:01:00:25:b5:30:00:4e
[mcvhes0127hba0]
port-channel 10 510 0x860449 20:01:04:25:b5:3a:00:7d 20:01:00:25:b5:30:00:5e
[mcvhes0128hba0]I think what you do is F-Port trunking channeling !
port-channel as a zone member ? I assume you will do pwwn based zoning; in which case the answer is NO ! -
SAN Switch 9148 UPG procedure when using Port Channel
Hi,
I am kind of new to the UPG procedure of Cisco Switch, and the customer i am working with is using Port Channel.
Do i have to shutdown the port channel before executing the switch UPG or if everything can stay up? Will i lose connection when the UPG will proceed ?
If anyone has some documentation that describe the process, it would be much appreciated.
Thank you
ChristianHi,
I am kind of new to the UPG procedure of Cisco Switch, and the customer i am working with is using Port Channel.
Do i have to shutdown the port channel before executing the switch UPG or if everything can stay up? Will i lose connection when the UPG will proceed ?
If anyone has some documentation that describe the process, it would be much appreciated.
Thank you
Christian -
I have 2 dlsw router at head quater office, named dlswA and dlswB.
From branches router, dlswA is a primary peer and dlswB is a backup peer.
Both dlswA and B have 2 fast ethernet interfaces.
The current configuration of dlswA and dlswB are 1 port as IP port and other port as sna/bridge port.
With this configuration the problem is when SNA port at dlswA problem, then dlsw circuit will have the problem, because dlsw peer from branches still connected to dlswA.
if I configure 2 fast ethernet port become a port channel. And configure IP and bridge group at port channel interface (IP and SNA at the same interfaces), so when the port channel is down, then branches will connect to dlswB as a backup peer
Are the port channel configuration will solve the problem ? How about the stability of this configuration?Thank Matthias for your reply.
Both of head end routers are on the same vlan and the host is using same mac address.
As far as i know if from branch have 2 active peer with cost setup, there will loops posibility because both head end routers are using ethernet with same vlan and same host mac address.
I test the port channel within my LAB using netbios, seem works as expected. when single port at port channel down, branch circuit still remain at dlswA router, when all port channel member down, the branch peering move to dlswB.
Here are the config:
hostname dlswA
dlsw local-peer peer-id 192.168.255.1 promiscuous
dlsw bridge-group 1
interface Port-channel10
ip address 192.168.255.1 255.255.255.248
bridge-group 1
interface FastEthernet0/0
no ip address
duplex auto
speed auto
channel-group 10
interface FastEthernet0/1
no ip address
duplex auto
speed auto
channel-group 10
end
hostname dlswB
dlsw local-peer peer-id 192.168.255.10 promiscuous
dlsw bridge-group 1
interface Port-channel11
ip address 192.168.255.10 255.255.255.248
bridge-group 1
interface FastEthernet0/0
no ip address
duplex auto
speed auto
channel-group 11
interface FastEthernet0/1
no ip address
duplex auto
speed auto
channel-group 11
end
Hostname Branch
dlsw local-peer peer-id 172.16.0.1
dlsw remote-peer 0 tcp 192.168.255.1
dlsw remote-peer 0 tcp 192.168.255.10 backup-peer 192.168.255.1 linger 0
dlsw bridge-group 1
interface Loopback0
ip address 172.16.0.1 255.255.255.255
interface FastEthernet0/1
no ip address
duplex auto
speed auto
bridge-group 1
But I'm not sure this scenario will work for sna application like ATM machine, and SNA SAA gateway.
Please kindly advised, Is there any alternatif ? -
Design help related to ACE to Switch connectivity using Port-Channel
Hi,
I have a Cisco ACE 4710 configured in One-Arm mode. This ACE is getting connected with 2 3750 switches. These 2 3750 switches connected in trunk mode.
ACE is connected to these 3750 switches using Port-channel.
ACE Config:
================================
interface gigabitEthernet 1/1
description One-arm mode port to DMZ Switch 1 port 20
channel-group 1
no shutdown
interface gigabitEthernet 1/2
description One-arm mode port to DMZ Switch 2 port 20
channel-group 1
no shutdown
interface port-channel 1
switchport access vlan 51
port-channel load-balance src-dst-ip
no shutdown
interface vlan 51
ip address 10.40.56.131 255.255.255.128
access-group input everyone
access-group output everyone
nat-pool 1 10.40.56.215 10.40.56.215 netmask 255.255.255.255 pat
service-policy input LB
service-policy input remote-access
no shutdown
===========================================================
The problem is that 3750 switches are not stacked.
Application is working fine. But i am getting a lot of MAC flapping messages..
kindly suggest whether this design is OK or something needs to be done to rectify it...
Attached a small diagram..Hello acharyr123,
I don't think this design is ok, and it would cause mac flapping since the two indepedendent 3750 switches will learn the ace mac addresses off of two different interfaces. The 3750s would have to be stacked so that they would act as one switch then this should work correctly.
Thanks
Joel Lamousnery
TAC CSE -
Interfaces in port-channel keep err-disabling because of keepalives
Below is the current portchannel that I am having problems with. The interfaces on Switch A keep going into an error disabled state because they receive their own loopback. Cisco says to disable keepalives and that it will fix the problem, but I do not like the idea of disabling keepalives. Has anyone found a solution other than disabling keepalives? Notice that ios's are different, but am not convinced that this is the issue. Also one is PoE and the other isn't. Lastly, i found this article "Keepalives are sent on all interfaces by default in Cisco IOS Software Release 12.1EA-based software. In Cisco IOS Software Release 12.2SE-based software and later, keepalives are not sent by default on fiber and uplink interfaces". I would think trunked interfaces in a port-channel would be uplink interfaces and if this is true, it should be sending out keepalives anyway since i am running the 12.2SE based ios. Thanks for whatever input you may have.
Switch A
C3750E Boot Loader (C3750X-HBOOT-M) Version 12.2(53r)SE2, RELEASE SOFTWARE (fc1)
System image file is "flash:/c3750e-universalk9-mz.122-55.SE3/c3750e-universalk9-mz.122-55.SE3.bin"
cisco WS-C3750X-48P
Port-channels in the group:
Port-channel: Po52
Age of the Port-channel = 219d:04h:32m:49s
Logical slot/port = 10/39 Number of ports = 4
GC = 0x00000000 HotStandBy port = null
Port state = Port-channel Ag-Inuse
Protocol = -
Port security = Disabled
Ports in the Port-channel:
Index Load Port EC state No of bits
------+------+------+------------------+-----------
0 00 Gi1/0/35 On 0
0 00 Gi1/0/36 On 0
0 00 Gi2/0/45 On 0
0 00 Gi2/0/46 On 0
%ETHCNTR-3-LOOP_BACK_DETECTED: Loop-back detected on GigabitEthernet1/0/35.
%PM-4-ERR_DISABLE: loopback error detected on Gi1/0/35, putting Gi1/0/35 in err-disable state
%LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet1/0/35, changed state to down
%LINEPROTO-5-UPDOWN: Line protocol on Interface Port-channel39, changed state to down
%LINK-3-UPDOWN: Interface Port-channel39, changed state to down
Switch B
C3750E Boot Loader (C3750X-HBOOT-M) Version 12.2(53r)SE2, RELEASE SOFTWARE (fc1)
System image file is "flash:/c3750e-universalk9-mz.122-58.SE2/c3750e-universalk9-mz.122-58.SE2.bin"
cisco WS-C3750X-48
Port-channels in the group:
Port-channel: Po52
Age of the Port-channel = 443d:18h:43m:06s
Logical slot/port = 10/39 Number of ports = 4
GC = 0x00000000 HotStandBy port = null
Port state = Port-channel Ag-Inuse
Protocol = -
Port security = Disabled
Ports in the Port-channel:
Index Load Port EC state No of bits
------+------+------+------------------+-----------
0 00 Gi1/0/35 On 0
0 00 Gi1/0/36 On 0
0 00 Gi1/0/45 On 0
0 00 Gi1/0/46 On 0PER CISCO
Symptom:
An interface on a Catalyst switch is errordisabled after detecting a loopback.
Mar 7 03:20:40: %ETHCNTR-3-LOOP_BACK_DETECTED: Loop-back detected on
GigabitEthernet0/2. The port is forced to linkdown.
Mar 7 03:20:42: %LINK-5-CHANGED: Interface GigabitEthernet0/2, changed state
to administratively down
Mar 7 03:20:43: %LINEPROTO-5-UPDOWN: Line protocol on Interface
GigabitEthernet0/2, changed state to down
Conditions:
This might be seen on a Catalyst 2940, 2950, 2950-LRE, 2955, 2970, 3550, 3560
or 3750 switch running 12.1EA or 12.2SE based code.
Workaround:
Disable keepalives by using the no keepalive interface command. This
will prevent the port from being errdisabled, but it does not resolve the root
cause of the problem. Please see section below for more information.
Additional Information:
The problem occurs because the keepalive packet is looped back to the port that
sent the keepalive. There is a loop in the network. Although disabling the
keepalive will prevent the interface from being errdisabled, it will not remove
the loop.
The problem is aggravated if there are a large number of Topology Change
Notifications on the network. When a switch receives a BPDU with the Topology
Change bit set, the switch will fast age the MAC Address table. When this
happens, the number of flooded packets increases because the MAC Address table
is empty. -
I am trying to monitor the load on an 8 port ISL between 2 MDS FC switches, on DCNM.
Since it is a plain trunk link, I am able to monitor the stats of every ISL port individually.
My question is, since port channel shows up as a single interface on DCNM, is there a way to monitor the per port utilization in that port channel?Thanks for the update! If anyone else has the same question, the answer is that in order to extract the bus log information in the TDMS file, you should use the DIAdem Bus Log Converter tool. It is expected (though confusing) that the file looks mostly empty in the Data Portal until you use this tool to extract the information.
Also, this is a fantastic tutorial from a very bright engineer on how to correlate data from multiple sources, such as raw frame files, in DIAdem. Highly recommended reading. It also has some data on the bus log converter.
Jarrod S.
National Instruments -
Lacp port channel shows down on one 5k
I got one side of my lacp port channel down.
the topology is shown but the left side is showing down
20 Po20(SD) Eth LACP Eth1/5(s) Eth1/6(s)
# sh int port-channel 20
port-channel20 is down (No operational members)
Hardware: Port-Channel, address: 547f.eebb.644d (bia 547f.eebb.644d)
Description: **To-VA-7004**
MTU 1500 bytes, BW 100000 Kbit, DLY 10 usec
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation ARPA
Port mode is trunk
auto-duplex, 10 Gb/s
Input flow-control is off, output flow-control is off
Switchport monitor is off
EtherType is 0x8100
Members in this channel: Eth1/5, Eth1/6
Last clearing of "show interface" counters never
30 seconds input rate 80 bits/sec, 0 packets/sec
30 seconds output rate 176 bits/sec, 0 packets/sec
Load-Interval #2: 5 minute (300 seconds)
input rate 112 bps, 0 pps; output rate 288 bps, 0 pps
RX
4286 unicast packets 785765 multicast packets 1493093 broadcast packets
2283144 input packets 248607161 bytes
13 jumbo packets 0 storm suppression bytes
0 runts 0 giants 0 CRC 0 no buffer
0 input error 0 short frame 0 overrun 0 underrun 0 ignored
0 watchdog 0 bad etype drop 0 bad proto drop 0 if down drop
0 input with dribble 0 input discard
0 Rx pause
TX
0 unicast packets 3397636 multicast packets 0 broadcast packets
3397636 output packets 399463036 bytes
0 jumbo packets
0 output errors 0 collision 0 deferred 0 late collision
0 lost carrier 0 no carrier 0 babble 0 output discard
0 Tx pause
2 interface resets
sh run interface port-channel 20 membership
!Command: show running-config interface port-channel20 membership
!Time: Mon Feb 2 23:04:37 2015
version 5.1(3)N2(1b)
interface port-channel20
description **To-VA-7004**
switchport mode trunk
switchport trunk allowed vlan 1,200-202,251
interface Ethernet1/5
description **TO-VA-7004-ETH3/45**
switchport mode trunk
switchport trunk allowed vlan 1,200-202,251
channel-group 20 mode active
interface Ethernet1/6
description **To-VA-7004-ETH4/46**
switchport mode trunk
switchport trunk allowed vlan 1,200-202,251
channel-group 20 mode active
but on the right side everything is up,
20 Po20(SU) Eth LACP Eth1/5(P) Eth1/6(P)It seems have a problem on interfaces => 20 Po20(SD) Eth LACP Eth1/5(s) Eth1/6(s)
Can you share us the status about interfaces 1/5 - 6 & 3/45, 4/45 of 7k?
Do you have configured per Ethernet interfaces or on the Po ? -
I'm doing some L2 cleanups across mutliple 6509E environments and I've found something consistent that I can't find in documentation.
On all my pairs of 6509s where I have FWSMs bundled (6509-A has FWSM-1 is Slot 1 and 6509-B has FWSM-2 in Slot 1) I also have a port channel 305. Obviously when I do a "show run" or "show int desc" I don't see anything in slot one. It's a service module. But the port channel is referencing ports 1/1-6. And it's all in service/up. I was about to delete this as I thought it was some leftover config (TEST 6509s) until I went and saw the same things on our PROD 6509s. Can anyone explain this or provide some documentation on it? Is it cosmetic? Necessary? Can I delete it as part of my audit cleanup? Don't want to mess with it even in TEST without some information. Nothing on google that's clear and I can't find anything on CCO.
6509-1#sho etherch 305 summ
Flags: D - down P - bundled in port-channel
I - stand-alone s - suspended
H - Hot-standby (LACP only)
R - Layer3 S - Layer2
U - in use N - not in use, no aggregation
f - failed to allocate aggregator
M - not in use, no aggregation due to minimum links not met
m - not in use, port not aggregated due to minimum links not met
u - unsuitable for bundling
d - default port
w - waiting to be aggregated
Number of channel-groups in use: 11
Number of aggregators: 11
Group Port-channel Protocol Ports
------+-------------+-----------+-----------------------------------------------
305 Po305(SU) - Gi1/1(P) Gi1/2(P) Gi1/3(P)
Gi1/4(P) Gi1/5(P) Gi1/6(P)
Last applied Hash Distribution Algorithm: -
6509-1#sho etherch 305 det
Group state = L2
Ports: 6 Maxports = 8
Port-channels: 1 Max Port-channels = 1
Protocol: -
Minimum Links: 0
Ports in the group:
Port: Gi1/1
Port state = Up Mstr In-Bndl
Channel group = 305 Mode = On Gcchange = -
Port-channel = Po305 GC = - Pseudo port-channel = Po305
Port index = 0 Load = 0x41 Protocol = -
Age of the port in the current state: 46d:06h:53m:39s
Port: Gi1/2
Port state = Up Mstr In-Bndl
Channel group = 305 Mode = On Gcchange = -
Port-channel = Po305 GC = - Pseudo port-channel = Po305
Port index = 1 Load = 0x02 Protocol = -
Age of the port in the current state: 46d:06h:53m:39s
Port: Gi1/3
Port state = Up Mstr In-Bndl
Channel group = 305 Mode = On Gcchange = -
Port-channel = Po305 GC = - Pseudo port-channel = Po305
Port index = 2 Load = 0x04 Protocol = -
Age of the port in the current state: 46d:06h:53m:41s
Port: Gi1/4
Port state = Up Mstr In-Bndl
Channel group = 305 Mode = On Gcchange = -
Port-channel = Po305 GC = - Pseudo port-channel = Po305
Port index = 3 Load = 0x88 Protocol = -
Age of the port in the current state: 46d:06h:53m:41s
Port: Gi1/5
Port state = Up Mstr In-Bndl
Channel group = 305 Mode = On Gcchange = -
Port-channel = Po305 GC = - Pseudo port-channel = Po305
Port index = 4 Load = 0x10 Protocol = -
Age of the port in the current state: 46d:06h:53m:41s
Port: Gi1/6
Port state = Up Mstr In-Bndl
Channel group = 305 Mode = On Gcchange = -
Port-channel = Po305 GC = - Pseudo port-channel = Po305
Port index = 5 Load = 0x20 Protocol = -
Age of the port in the current state: 46d:06h:53m:41s
Port-channels in the group:
Port-channel: Po305
Age of the Port-channel = 46d:06h:55m:56s
Logical slot/port = 14/11 Number of ports = 6
GC = 0x00000000 HotStandBy port = null
Port state = Port-channel Ag-Inuse
Protocol = -
Fast-switchover = disabled
Load share deferral = disabled
Ports in the Port-channel:
Index Load Port EC state No of bits
------+------+------+------------------+-----------
0 41 Gi1/1 On 2
1 02 Gi1/2 On 1
2 04 Gi1/3 On 1
3 88 Gi1/4 On 2
4 10 Gi1/5 On 1
5 20 Gi1/6 On 1
Time since last port bundled: 46d:06h:53m:41s Gi1/6
Last applied Hash Distribution Algorithm: -
NOC-SW-ITEST-AGG1#The connection between the FWSM and the switch is a 6-GB 802.1Q trunking EtherChannel. This EtherChannel is automatically created when you install the FWSM.
http://cisconetwork.org.ua/1587051893/ch04lev1sec1.html
http://www.cisco.com/en/US/docs/security/fwsm/fwsm23/configuration/guide/switch.pdf
Thanks
Ajay -
Nexus 7010 port-channel to ESXi host running on Dell 910 and 810
Was wondering has anyone had any experience with configuring a port-channel going back to ESXi host. My basic config is below. My issue is with what to put in the spanning-tree port type. Do I use normal, edge, network, or edge trunk?? Yes I have read most of the documentation out there but am just a lil confused. I just wanna be right.
Also if anyone has any suggestions for the Vswitch config as well that would be much appreciated.
int PO 201
desc 01_6-1
switchport mode trunk
switchport access vlan 99
switchport trunk native vlan 777
switchport trunk allowed vlan 220,300,310,320-321,350,390-391
switchport trunk allowed vlan add 420,777
spanning-tree port type normal (what should go here)
speed auto
medium p2p
no shutdown
int e8/11
desc 01_6-1
channel-group 201 force
int e10/11
desc 01_6-1
channel-group 201 force
Thanks GuysShort answer: You could use spanning tree port type edge (trunk; if it's going to be a trunk). The vswitch isn't really a switch, it doesn't participate in spanning tree, so it's fine to make it an edge port.
In my experience, many VMware guys don't like port channels as much as the other more host-centric NIC teaming methods. I think this has to do with ESX having a less than stellar implementation of etherchannel/LACP early on. -
i have an sg300-28 running the latest firmware, and would like some insight on port-channel options. below are the port configs i have for a LAG to my router. i am currently using 802.3ad with LACP. my router is a linux machine pulling duty as a basic (no dynamic routing) router, firewall and internet gateway. the bonding options on the routers side explained at
http://docs.fedoraproject.org/en-US/Fedora/16/html/System_Administrators_Guide/sec-Using_Channel_Bonding.html. the mode is 4 or 802.3ad and the xmit_hash_policy is 2 or layer2+3. i also have 2 servers setup in a similar fashion with 2 interfaces in a LAG.
when i run a bandwidth test, iperf, between the two servers, i only get 900+ mbps which indicates that the GB ports are running fine. this also indicates to me that the traffic is not being "striped" across the port-channeled interfaces, thereby giving me the aggregated bandwidth of all interfaces in the LAG. i have found no options to use the balance-xor mode to create port-channels, which as i understand it, would aggregate the total bandwidth of all interfaces in the LAG. is the sg300 capable of creating a LAG that will combine the throughput of all the members of the LAG? for example, create a 2 GB pipe when 2 interfaces are port-channeled? is the balance-xor mode what would do this (regardless of the sg300's ability to do this)
interface gigabitethernet25
description "Port Channel to Router"
channel-group 1 mode auto
lldp notifications enable
lldp optional-tlv port-desc sys-name sys-desc sys-cap 802.3-mac-phy 802.3-lag 802.3-max-frame-size
lldp management-address automatic
interface gigabitethernet26
description "Port Channel to Router"
channel-group 1 mode auto
lldp notifications enable
lldp optional-tlv port-desc sys-name sys-desc sys-cap 802.3-mac-phy 802.3-lag 802.3-max-frame-size
lldp management-address automatic
interface gigabitethernet27
description "Port Channel to Router"
channel-group 1 mode auto
lldp notifications enable
lldp optional-tlv port-desc sys-name sys-desc sys-cap 802.3-mac-phy 802.3-lag 802.3-max-frame-size
lldp management-address automatic
interface gigabitethernet28
description "Port Channel to Router"
channel-group 1 mode auto
lldp notifications enable
lldp optional-tlv port-desc sys-name sys-desc sys-cap 802.3-mac-phy 802.3-lag 802.3-max-frame-size
lldp management-address automatic
interface Port-channel1
description "Port Channel to Router"
switchport mode general
switchport general allowed vlan add 2-3,25,37,50,52,253-255 tagged
switchport general pvid 255Hi Brendan,
You said "i only get 900+ mbps which indicates that the GB ports are running fine. this also indicates to me that the traffic is not being "striped" across the port-channeled interfaces, thereby giving me the aggregated bandwidth of all interfaces in the LAG. i have found no options to use the balance-xor mode to create port-channels, which as i understand it, would aggregate the total bandwidth of all interfaces in the LAG."
As the Admin guide says on page 130, http://www.cisco.com/en/US/docs/switches/lan/csbms/sf30x_sg30x/administration_guide/78-19308-01.pdf
Load Balancing
Traffic forwarded to a LAG is load-balanced across the active member ports, thus achieving an effective bandwidth close to the aggregate bandwidth of all the active member ports of the LAG.
Traffic load balancing over the active member ports of a LAG is managed by a hash-based distribution function that distributes Unicast and Multicast traffic based on Layer 2 or Layer 3 packet header information.
The switch supports two modes of load balancing:
By MAC Addresses—Based on the destination and source MAC addresses of all packets.
By IP and MAC Addresses—Based on the destination and source IP addresses for IP packets, and destination and source MAC addresses for
non-IP packets.
So, an IP host running running IPERF maybe checking unicast throughput between the two IP hosts. There will be a Source and Desination IP address in that test. The switch will direct the traffic over one of the LAG port members . It wont Round robin the unicast traffic over multiple LAG ports, if the Source and Desination IP address of the traffic is the same. .
If the PC running IPerf, had another concurrent IPerf session to another or different IP host, the hash algorithm on the switch may direct that stream , maybe, over a different physical LAG interface.
So your comment about achieving 900+mbps sounds normal Yes LAG spreads the load, the benefit comes when lots of hosts on both sides of the switches.
You hay find with just two hosts on either side of a LAG, that the switch may run the traffic between two hosts over just one member of the LAG group.
regards Dave -
OSPF load balancing across multiple port channels
I have googled/searched for this everywhere but haven't been able to find a solution. Forgive me if I leave something out but I will try to convey all relevant information. Hopefully someone can provide some insight and many thanks in advance.
I have three switches (A, B, and C) that are all running OSPF and LACP port channelling among themselves on a production network. Each port channel interface contains two physical interfaces and trunks a single vlan (so a vlan connecting each switch over a port channel). OSPF is running on each vlan interface.
Switch A - ME3600
Switch B - 3550
Switch C - 3560G
This is just a small part of a much larger topology. This part forms a triangle, if you will, where A is the source and C is the destination. A and C connect directly via a port channel and are OSPF neighbors. A and B connect directly via a port channel and are OSPF neighbors. B and C connect directly via a port channel and are OSPF neighbors. Currently, all traffic from A to C traverses B. I would like to load balance traffic sourced from A with a destination of C on the direct link and on the links through B. If all traffic is passed through B, traffic is evenly split on the two interfaces on the port channel. If all traffic is pushed onto the direct A-C link, traffic is evenly balanced on the two interfaces on that port channel. If OSPF load balancing is configured on the two vlans from A (so A-C and A-B), the traffic is divided to each port channel but only one port on each port channel is utilized while the other one passes nothing. So half of each port channel remains unused. The port channel on B-C continues to load balance, evenly splitting the traffic received from half of the port channel from A.
A and C port channel load balancing is configured for src-dst-ip. B is a 3550 and does not have this option, so it is set to src-mac.
Relevant configuration:
Switch A:
interface Port-channel1
description Link to B
port-type nni
switchport trunk allowed vlan 11
switchport mode trunk
interface Vlan11
ip address x.x.x.134 255.255.255.254
interface Port-channel3
description Link to C
port-type nni
switchport trunk allowed vlan 10
switchport mode trunk
interface Vlan10
ip address x.x.x.152 255.255.255.254
Switch B:
interface Port-channel1
description Link to A
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 11
switchport mode trunk
interface Vlan11
ip address x.x.x.135 255.255.255.254
interface Port-channel2
description Link to C
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 12
switchport mode trunk
interface Vlan12
ip address x.x.x.186 255.255.255.254
Switch C:
interface Port-channel1
description Link to B
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 12
switchport mode trunk
interface Vlan12
ip address x.x.x.187 255.255.255.254
interface Port-channel3
description Link to A
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 10
switchport mode trunk
interface Vlan10
ip address x.x.x.153 255.255.255.254This is more FYI. 10.82.4.0/24 is a subnet on switch C. The path to it is split across vlans 10 and 11 but once it hits the port channel interfaces only one side of each is chosen. I'd like to avoid creating more vlan interfaces but right now that appears to be the only way to load balance equally across the four interfaces out of switch A.
ME3600#sh ip route 10.82.4.0
Routing entry for 10.82.4.0/24
Known via "ospf 1", distance 110, metric 154, type extern 1
Last update from x.x.x.153 on Vlan10, 01:20:46 ago
Routing Descriptor Blocks:
x.x.x.153, from 10.82.15.1, 01:20:46 ago, via Vlan10
Route metric is 154, traffic share count is 1
* x.x.x.135, from 10.82.15.1, 01:20:46 ago, via Vlan11
Route metric is 154, traffic share count is 1
ME3600#sh ip cef 10.82.4.0
10.82.4.0/24
nexthop x.x.x.135 Vlan11
nexthop x.x.x.153 Vlan10
ME3600#sh ip cef 10.82.4.0 internal
10.82.4.0/24, epoch 0, RIB[I], refcount 5, per-destination sharing
sources: RIB
ifnums:
Vlan10(1157): x.x.x.153
Vlan11(1192): x.x.x.135
path 093DBC20, path list 0937412C, share 1/1, type attached nexthop, for IPv4
nexthop x.x.x.135 Vlan11, adjacency IP adj out of Vlan11, addr x.x.x.135 08EE7560
path 093DC204, path list 0937412C, share 1/1, type attached nexthop, for IPv4
nexthop x.x.x.153 Vlan10, adjacency IP adj out of Vlan10, addr x.x.x.153 093A4E60
output chain:
loadinfo 088225C0, per-session, 2 choices, flags 0003, 88 locks
flags: Per-session, for-rx-IPv4
16 hash buckets
< 0 > IP adj out of Vlan11, addr x.x.x.135 08EE7560
< 1 > IP adj out of Vlan10, addr x.x.x.153 093A4E60
< 2 > IP adj out of Vlan11, addr x.x.x.135 08EE7560
< 3 > IP adj out of Vlan10, addr x.x.x.153 093A4E60
< 4 > IP adj out of Vlan11, addr x.x.x.135 08EE7560
< 5 > IP adj out of Vlan10, addr x.x.x.153 093A4E60
< 6 > IP adj out of Vlan11, addr x.x.x.135 08EE7560
< 7 > IP adj out of Vlan10, addr x.x.x.153 093A4E60
< 8 > IP adj out of Vlan11, addr x.x.x.135 08EE7560
< 9 > IP adj out of Vlan10, addr x.x.x.153 093A4E60
<10 > IP adj out of Vlan11, addr x.x.x.135 08EE7560
<11 > IP adj out of Vlan10, addr x.x.x.153 093A4E60
<12 > IP adj out of Vlan11, addr x.x.x.135 08EE7560
<13 > IP adj out of Vlan10, addr x.x.x.153 093A4E60
<14 > IP adj out of Vlan11, addr x.x.x.135 08EE7560
<15 > IP adj out of Vlan10, addr x.x.x.153 093A4E60
Subblocks:
None
Maybe you are looking for
-
How to refer a field created at the paper layout?
Hi, I created a field for total pages of a report in the paper layout. How do I refer to it in the formattrigger since I don't want to show it if there is only 1 page. I tried putting & or : in front of the field name but it is not valid since the fi
-
Hi! I am using CS3 on a Mac. Recently, every time I create a .jpg file in PS, and try to either email it, or post it on Flickr, etc... the colors all of a sudden turn ugly neon shades. I used to be able to import them into iPhoto, and then email them
-
Question about the Audigy 2 ZS Platin
Does the volume control nob and the mic nob push in so that a case door can properly close over it's Also does it come with any music creation applications?
-
Moved message from trash to inbox, but it does not appear in box ?
Hello, I use gmail account as my default mail account. Accidently, I deleted one my message. To retrieve it, I clicked and open the message in the trash box.Tthere is a "folder" icon on the bottom at second order, I clicked it and I choose inbox fold
-
Answer text not showing up on fillable form
I created a fillable PDF and occasionally when it is returned with filled in information you can't see the text they entered until clicking on that particular line. Example we ask for the persons name, address etc. When looking at the form it looks c