RSPAN VLAN on a Data VLAN

Hi all.
We have offices for rent and each has a dedicated VLAN for our office staff and separate VLANs for each client that will be renting on our office.
Each office has a small topology, usually a star, and one of the edge switches has a mirrored port and the source port will be the core's uplink to the FW. So is it alright to put the RSPAN VLAN on the same VLAN as the office staff VLAN? Or should I have a dedicated VLAN for RSPAN?
The reason I'm asking is because, if I propose to create a separate VLAN, then we'll need to create it on the switches and firewalls on all offices, additional firewall rules. etc..
Please advise. Thanks!

Hi
It would be a very bad idea to use a normal VLAN as an RSPAN VLAN. You should create a new VLAN dedicated for this purpose.
Please see this list of differences in the behavior of the VLAN types:
http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst3560/software/release/12-2_52_se/configuration/guide/3560scg/swspan.html#wp1200730
Regards
Aaron

Similar Messages

  • Configure Voice and Data VLAN in CISCO SF 300 8P

    I have a couple of Cisco SF 300 8P and 24 P Switches. I have voice and Data VLAN configured as :
    Data VLAN : Default 145.17.59.0/24
    Voice VLAN : VLAN 20 172.22.20.0/24
    I have different DHCP servers as for Data VLAN we have physical server which is configured for 145.17.59.* IP Scope and Voice VLAN DHCP Server is configured in Gateway router with option 150.
    This configuation works fine with other cisco swiches like 2960 and 3750 etc except CISCO SF 300 8P and 24P. I was trying to configure both voice and Data VLAN in these CISCO Switches so that CISCO phone (Model 6941) shold get IP from Voice VLAN and PC should get IP from Data VLAN DHCP Server. I have tried several techniques like LLDP, Port to VLAN Config etc.
    Can anyone please guide me/help on this.
    Regards,
    A K.M.Sayeed

    Hi A.K.M., with Cisco phones you should be able to simply set auto voice VLAN to be VLAN20. 
    voice vlan id 20
    You should ensure CDP and/or LLDP are enabled as well. I would check this in web GUI. DHCP for the phones can come from the switch, a DHCP server on a VLAN20 access port or you can use dhcp helper to redirect DHCP to server elsewhere.
    If you prefer or have issues with CDP or LLDP you can also program ports as trunks and add tagged VLAN 20 to them.  In this scenario you need to insure inter-vlan routing is working and that phones download config file with corrrect VLAN config.
    These switches do not run ios so they are similar but different than catalyst switches you referred to.
    -- please remember to rate helpful posts --

  • Voice VLAN vs Data VLAN

    Hi,
    I have a call manager connected to switch with three VLANS configured, one voice vlan and two data vlan,
    int f0/1-2
    switchport mode access
    switchport access VLAN 200
    int f0/3-23
    switchport mode access
    switchport access VLAN 300
    switchport voice VLAN 100
    intf0/24
    switchport mode trunk
    switchport trunk encapsulation dot1q
    int g0/0.100
    encapsulation dot1q 100
    ip address 172.100.1.1 255.255.255.0
    int g0/0.200
    encapsulation dot1q 100
    ip address 172.200.1.1 255.255.255.0
    int g0/0.300
    encapsulation dot1q 100
    ip address 172.300.1.1 255.255.255.0
    I am able to access the call manager if I assign it an IP under data VLAN range, but if I assign IP under voice VLAN( 172.100.1.0/24 ) i am not able to access the call manager, If i assign an IP address to the call manager under voice VLAN I am not able to ping even the default gateway 172.100.1.1
    What may be the issue.
    Regards,
    Shaggy

    Hi,
         try this.
    int g0/0.100
    encapsulation dot1q 100
    ip address 172.100.1.1 255.255.255.0
    int g0/0.200
    encapsulation dot1q 200
    ip address 172.200.1.1 255.255.255.0
    int g0/0.300
    encapsulation dot1q 300
    ip address 172.300.1.1 255.255.255.0
    hth
    Muammer

  • Change data vlan

    How to change data vlan for PC connected behind ip phone. I've tried with switchport trunk native vlan XXX but it didn't work, here is present config
    interface FastEthernet0/12
    switchport mode dynamic desirable
    switchport voice vlan 10
    mls qos trust device cisco-phone
    mls qos trust cos
    auto qos voip cisco-phone
    wrr-queue bandwidth 20 1 80 1
    wrr-queue min-reserve 1 5
    wrr-queue min-reserve 2 6
    wrr-queue min-reserve 3 7
    wrr-queue min-reserve 4 8
    wrr-queue cos-map 1 0 1 2 4
    wrr-queue cos-map 3 3 6 7
    wrr-queue cos-map 4 5
    priority-queue out
    spanning-tree portfast
    end

    All you need is "switchport accss vlan

  • Vlans, voice and data

    I am implementing voip, we want to plug the pc into the phone and make both see the network but yet they are on different vlans, how does the port know which data is for voice and what data is for the pc ? do you enable the port to see both vlans by the swithport mode command, or does the port only go into 1 vlan ? At the moment we have vlan 200 and vlan 1, We have just plugged the phones in vlan 200 and pc's in vlan 1 but at the moment they are in seperate ports, I want to know what we will have to to when we plug both phone and pc into one port ?
    thanks
    Carlos
    thanks

    Hi Carl,
    Nops not at all this is not the normal way to configure ip phone and pc together to a switchport. Infact on switches with current code and mostaly all the switches you cannot configure 2 dats vlan on same port like you are doing now.
    If you give switchport voice vlan 200 and switch port access vlan 1 then they are 2 different kind of vlans and will work on same port.
    Now when you give switchport access vlan 1 means there will be no tag and it is justa frame without any tagging and saying it belongs to vlan 1 as as it reaches the switchport it gets pvid of vlan 1.
    When you configure switchport voice vlan 200 it will be a tagged vlan. Because ip phones are switches itlsef as soon as you give voice vlan command it will form an internal trunk and start sending voice data on tagged with vlan 200 and switchport will understand that tagged traffic and will come to know it is for vlan 200 and voice traffic,
    HTH
    Ankur

  • Passing voice and data Vlans on Cisco SG200-08P help

    Hello All,
    I'm struggling with a configuration issue on the Cisco SG200-08P.
    We are using the Cisco SG200-08P on a mobile cart that will go from class room to class room that will have computer and cisco Voip phone plugged into it. The issue is that each of our closets are in differnt VLANS ( 1 voice and 1 data....lets say data vlan 20 and voice vlan 2025 for conversation) and that we route to each closet.
    It would be great if I could just create a generic data and voice vlan to dynamically pick up what the upstream switch has however, it seems that I've been unsuccessful in doing so.
    So far I can pass the data Vlan no probablem. The upstream switch port is set to access port and a switch port access voice vlan (these are 3750x switches)
    If the above is not possible I guess I will take what I can get. Should I just create data vlan 20 and voice vlan2025 on the Cisco SG200-08P and make a trunk port on the Cisco SG200-08P and a trunk on the 3750x? Is there an option on the Cisco SG200-08P to tag voice traffic?
    I'm also concerned with VTP and I did not see an area in the Cisco SG200-08P to set that as a client and transparent mode.
    Thanks for any help,
    Dan

    On a Catalyst switch, when a port is defined as a trunk without a vlan specified on the port, all vlan pass through the port. On a small business switch it is nearly the opposite. You must specify the vlans on the links. Additionally, ingress filter discards anything not associated to the port.
    802.1q specifies there must be an untagged vlan which is the native vlan (of course you can make exceptions, tagging the default vlan..).
    One thing I did in the past with a 2960, I made an LLDP network policy and it basically "provisioned" the downstream switch connecting link and voice vlan. That may be another idea for you.
    Here's a link that may be useful-
    https://supportforums.cisco.com/message/3811376
    Here is the 2960 config I used to feed a SB switch voice info
    Switch#show run
    Building configuration...
    Current configuration : 2206 bytes
    ! Last configuration change at 00:41:16 UTC Mon Mar 1 1993
    version 12.2
    no service pad
    service timestamps debug datetime msec
    service timestamps log datetime msec
    no service password-encryption
    hostname Switch
    boot-start-marker
    boot-end-marker
    no aaa new-model
    system mtu routing 1500
    vtp mode transparent
    network-policy profile 1
    voice vlan 100 cos 4
    spanning-tree mode pvst
    spanning-tree extend system-id
    vlan internal allocation policy ascending
    vlan 2
    name test
    vlan 100
    lldp run
    interface FastEthernet0/1
    network-policy 1
    spanning-tree portfast
    interface FastEthernet0/2
    interface FastEthernet0/3
    interface FastEthernet0/4
    interface FastEthernet0/5
    interface FastEthernet0/6
    interface FastEthernet0/7
    interface FastEthernet0/8
    interface FastEthernet0/9
    interface FastEthernet0/10
    interface FastEthernet0/11
    interface FastEthernet0/12
    interface FastEthernet0/13
    interface FastEthernet0/14
    interface FastEthernet0/15
    interface FastEthernet0/16
    interface FastEthernet0/17
    interface FastEthernet0/18
    interface FastEthernet0/19
    interface FastEthernet0/20
    interface FastEthernet0/21
    interface FastEthernet0/22
    interface FastEthernet0/23
    interface FastEthernet0/24
    interface FastEthernet0/25
    interface FastEthernet0/26
    interface FastEthernet0/27
    interface FastEthernet0/28
    interface FastEthernet0/29
    interface FastEthernet0/30
    interface FastEthernet0/31
    interface FastEthernet0/32
    interface FastEthernet0/33
    interface FastEthernet0/34
    interface FastEthernet0/35
    interface FastEthernet0/36
    interface FastEthernet0/37
    interface FastEthernet0/38
    interface FastEthernet0/39
    interface FastEthernet0/40
    interface FastEthernet0/41
    interface FastEthernet0/42
    interface FastEthernet0/43
    interface FastEthernet0/44
    interface FastEthernet0/45
    interface FastEthernet0/46
    interface FastEthernet0/47
    interface FastEthernet0/48
    interface GigabitEthernet0/1
    switchport mode trunk
    interface GigabitEthernet0/2
    interface Vlan1
    no ip address
    interface Vlan100
    no ip address
    ip http server
    ip http secure-server
    logging esm config
    line con 0
    line vty 5 15
    end
    Switch#
    -Tom
    Please mark answered for helpful posts

  • Query on Vocie and Data VLan on same Swithc port

    Hi All,
    This is query regarding allowing both Vocie and data Vlans on a single switch port. I knew tehre are different ways to configure and acheive this, but not sure how techncially they are different from each other>
    Way 1:
    interface FastEthernet1/5
    description *** IP Phone/Data Port ***
    switchport trunk native vlan 10
    switchport mode trunk
    switchport voice vlan 16
    no logging event link-status
    no snmp trap link-status
    mls qos trust cos
    spanning-tree portfast
    sh int trunk
    Port      Mode         Encapsulation  Status        Native vlan
    Fa1/5     on           802.1q         trunking      10
    Fa1/7     on           802.1q         trunking      10
    Fa1/12    on           802.1q         trunking      10
    Fa1/13    on           802.1q         trunking      10
    Fa1/14    on           802.1q         trunking      10
    Port      Vlans allowed on trunk
    Fa1/5     1-1005
    Fa1/7     1-1005
    Fa1/12    1-1005
    Fa1/13    1-1005
    Fa1/14    1-1005
    Port      Vlans allowed and active in management domain
    Fa1/5     1,10,16
    Fa1/7     1,10,16
    Fa1/12    1,10,16
    Fa1/13    1,10,16
    Fa1/14    1,10,16
    Port      Vlans in spanning tree forwarding state and not pruned
    Port      Vlans in spanning tree forwarding state and not pruned
    Fa1/5     1,10,16
    Fa1/7     1,10,16
    Fa1/12    1,10,16
    Fa1/13    1,10,16
    Fa1/14    1,10,16
    sh vlan-switch
    VLAN Name                             Status    Ports
    1    default                          active    Fa1/0, Fa1/1, Fa1/2, Fa1/3
                                                    Fa1/4, Fa1/6, Fa1/8, Fa1/9
                                                    Fa1/10, Fa1/11, Fa1/15
    10  DVLAN                            active
    16  VVLAN                            active    Fa1/0, Fa1/1, Fa1/2, Fa1/3
                                                    Fa1/4, Fa1/6, Fa1/8, Fa1/9
                                                    Fa1/10, Fa1/11, Fa1/15
    In the above config, the port Fa 1/5 which is currnetly up and running( this port is ocnencted with IP phoen and a PC)  is not shown in sh vlan-switch output as assigned to vlan 10 or vlan 16. Not sure it is becuase the output was taken from ISR rotuer with NM 16-ESW module .
    sh int fa 1/5 switchp
    Name: Fa1/5
    Switchport: Enabled
    Administrative Mode: trunk
    Operational Mode: trunk
    Administrative Trunking Encapsulation: dot1q
    Operational Trunking Encapsulation: dot1q
    Negotiation of Trunking: Disabled
    Access Mode VLAN: 0 ((Inactive))
    Trunking Native Mode VLAN: 10 (DVLAN)
    Trunking VLANs Enabled: ALL
    Trunking VLANs Active: 1,10,16
    Priority for untagged frames: 0
    Override vlan tag priority: FALSE
    Voice VLAN: 16
    Appliance trust: none
    In above ocnfig, the port is configured as trunk and hence it can carry multiple vlan traffic on swithcport. As IP phones will have inbuilt switch which runs DTP by default and CDP to reciognize the conencted devcies.  I am not sure how this config works as even it's configured as trunk the DTP negotiation is disabled and how phone switch can differentiate the voice frames and data frames. Please explain in loigcal as it's known that as we have confgiured vlan 10 as native and vocie vlan 16 as trunk it carries the voice traffic.
    Way 2:
    interface FastEthernet1/2
    description *** IP Phone/Data Port ***
    switchport access vlan 10
    switchport mode access
    switchport voice vlan 16
    no logging event link-status
    no snmp trap link-status
    mls qos trust cos
    spanning-tree portfast
    In the above config, even the port is access it's carrying multiple vlan traffic despite of being trunk port. Not sure how the trunk will be formed even DTP neogotiation is off. Isi t because of voice vlan command and if so what it deos exactly.  Please can anyone elaborate in detail. Sorry, if my post is big and confusing
    sh int fa 1/2 switchport
    Name: Fa1/2
    Switchport: Enabled
    Administrative Mode: static access
    Operational Mode: static access
    Administrative Trunking Encapsulation: negotiate
    Operational Trunking Encapsulation: native
    Negotiation of Trunking: Off

    Switch - Phone - PC
    1. First question:
         # int f0/1
         # switchport mode access
         # spanning-tree portfast
         # switchport access vlan 50
         # switchport voice vlan 10
    This is the ideal way to configure and in all latest IOS Switches and in latest ISR routers, we do this as the command "switch port voice vlan" command  says to switch port that it carries the voice traffic as tagged and PC as untagged.
    As we all know the default switch port of a switch will be either Dynamic auto or Dynamic Desirable which means DTP is on and in turn it means negotiation of trunking is ON. This is as per my understanding.
    The Sub-Questions for 1st Question are below:
    1  Does the trunk negotiation happen between Access Switch switch port and Mini 3 Port Switch within the IP Phone. If mini switch in IP PHone negotiates to form  trunk based on DTP then what’s the default switch port mode of mini switch in the IP Phone.
    2. As in above config we are no where mentioning the port to be trunk. But it’s still allowing multiple vlan’s traffic to carry on access port. The switchport mode is access when you do “ sh int fa 0/1 swithcport.”.  Is it the swithcport voice vlan command does the magic?
    2. Second Question:
         # int f0/1
         # switchport trunk encapsulation dot1q
         # switchport trunk native vlan 10     (data VLAN)
         # switchport mode trunk
         # swichport voice vlan 15
    The Sub-Questions for 2nd Question are below:
    When do we use this configuration.? In my set-up the above config is seen on 2811 ISR routers with NM-16ESW modules.  Can’t we configure the data vlan a switch port access vlan 10 , instead of trunk native vlan.

  • Voice & Data VLAN Implementation

    Hello,
    We have recently purchased an asterisk based IP PBX, it is hosted in-house which uses Grandstream IP GXP1405 Phones.  We have configured and installed. we are able to receive calls and dial out.  Unfortunately our infrastructure was not up to par with the PBX.  We purchased an SG300 20 port switch, with two RV320 VPN Dual Wan Routers.  We have a total of 4 offices.  this is the current setup:
    HQ 1 - Asterisk Based IP PBX, RV320 VPN router, & SG300
    HQ2 - RV320 VPN Router
    Office 1 - Simple Linksys Router
    Office 2 - Simple Linksys Router
    We have established connectivity using the Tunnels incorporated onto the RV320 Routers, so we are able to connect to the HQ locations.
    However since the RV320 has dual WAN setup's, we have now have 2 Internet Connections independent from each other.  Our goal is to perform the following: 
    WAN 1 = to be used for Data Traffic
    WAN 2 = to be used for Voice Traffic
    We would like to do this by separating the VLAN's and directing the traffic from one VLAN to a specific WAN using the equipment above.
    We are having issues establishing the voice VLAN and redirecting the traffic once created.
    Any help would be appreciated it.
    Thanks,

    Hi Soiser,
    My name is Mehdi from Cisco Technical Support, 
    For the Voice & Data VLAN Implementation we can manage to do it with different way :
    First example hard coding the voice vlan
    1. we can have the switch Layer 2
    2. Configure on the switch Vlan Data and Vlan voice (in this example will have Vlan 1 Data and 100 is Voice vlan) --> under Vlan management --> Create Vlan
    3. Configure the port from where the switch is connected to the Router and change it to Trunk port and add vlan voice (until here we made the data traffic as untagged traffic and voice traffic as tagged) by going under Vlan managemnent --> Port Vlan Membership --> select port 20 --> click on join vlan --> by default you have 1UP in the right so now select vlan 100 and select Tagged and move it to the right
    4. And the same trunk port with both vlan for all the port on the switch where you have voice and data
    5. here we done with the switch
    Second Using Auto-voice Vlan implementation 
    1. We Can have the switch also layer 2
    2. we need to configure the AUTO-Voice Vlan under vlan management--Voice Vlan --> Properties by changing the voice vlan 100 and we have two option to choose
           Dynamic Voice VLAN: Enable Auto Voice VLAN OR  Enable Telephony OUI :  the difference is when you have Cisco Phone enable                                 auto-voice vlan and the phone will take all the informations like (Vlan ,..) via CDP protocol
           if you have 3rd part Phone select Enable Telephony OUI and configure the first 3 bits of the MAC address of the phones by going under voice                 vlan -->Telephony OUI --> add 3 bits of the MAC address of the phone but not for all the phones is by model remember first 3 bits of mac
                address is the model of the device!
     Auto Voice VLAN Activation: select "Immediate"
    3. and enable telephony OUI interface  
    -------> We didn't configure voice vlan the switch will assign voice vlan to the phones when they connect to the switch by CDP or Telephony OUI
    Now going to the router :
    - By default RV320 Has Vlan ID 100 with subnet 192.168.3.1 so we can change only the ip address of vlan interface or if you deleted by some reason we will need to create a voice vlan by going to Setup-->Network--> multiple Subnet Table --> Create the Vlan interface in my example i will put 10.10.10.1 and mask 255.255.255.0
    - Just to check if you going to port management --> Vlan Membership you will see vlan 1 is untagged and vlan voice is tagged this also in our switch !! you can connect the switch from any port of the router since all of them are the same
    - if you wantr to change and coding only port 4 for example as trunk and remove other port the voice vlan you can 
    ---> Now should work the voice vlan and data vlan 
    But we have two WAN and you want to bind the WAN 1 to Data and Wan 2 to Voice
    we need to configure Protocol Binding
    under System management --> Dual WAN --> Protocol Binding 
    there we can choose all traffic , source IP (voice network 10.10.10.1 - 10.10.10.254) , destination 1.0.0.1 to 223.255.255.254, and select WAN 2
    and another rule but the source will be the data network and select WAN 1
    This is it just example and how the Voice vlan work and how to use Protocol binding if you have two WAN 
    Please if you have the switch on L3 by some reason and you have SVI configured in the switch , please call the Cisco Technical Support Center we will be happy to help you to accomplish your need with layer 3 switch is almost the same few change and we need more information's from your topology that's why by phone is better !! :)
    Please rate the post or mark as answered to help other Cisco Customers
    Have a nice day
    Regards
    Mehdi

  • How to configure SGE2000P with CISCO 7900 phones and data VLAN

    Hello all
    I am having problem setting up SGE2000P switches to work with my default data VLAN and additional voice VLAN. I am configuring it to pick IP address for phones from voice VLAN which is working fine but when I connect a PC on phone port it is also picking up an IP from Voice VLAN while default VLAN is data with different scope of IP.
    Is there any good discussion or documents out there to help me resolve this issue before I pack these switches and purchase ESW 500 series. I have ESW 500 at another client and they are working fine out of the box but this guy is giving me hard time.
    Any suggestions help will be appreciated
    Mo

    HI Muhammed,
    I suggest you contact the Small Business Support Center for some help:
    http://www.cisco.com/en/US/support/tsd_cisco_small_business_support_center_contacts.html
    Regards,
    Cindy Toy
    Cisco Small Business Community Manager
    for Cisco Small Business Products
    www.cisco.com/go/smallbizsupport
    twitter: CiscoSBsupport

  • Voice and Data Vlan Routing for CUPC and IP Phones ?

    The IP Phones are in 10.1.1.0/24 network (Voice Vlan 10) , Desktop Computers are installed with CUPC 8.5 and they are in 11.2.2.0/24 network (DATA VLAN 20) , Unfied Communication Applications like CUCM , Cisco Unified Presence Server, Contact Center Express are in 172.16.10.0/24 network(Vlan 30). When using Clients like Cisco Unified Personal Communicator, How the Communication between  CUPC(DATA Vlan)and IP Phones(VOICE Vlan) is possible?.How network should be configured or designed ? If i make intervlan routing it creates Security problems.what is the best practiced network Configs for these kind of Scenario ? Even if i prefer to configure Intervlan routing, Which all TCP/UDP ports are to be allowed / blocked between VLANS ??

    Hi Mohammed,
    Hosts on separate vlans communicate with each other through routing, as they are not in the same broadcast domain. Some of the systems you mention use a wide range of ports and, depending on system and installed version, documentation is generally available.
    e.g
    http://www.cisco.com/en/US/docs/voice_ip_comm/cucm/port/8_5_1/portlist851.html
    or
    http://www.cisco.com/en/US/docs/voice_ip_comm/cupc/8_5/english/release/notes/cupc85.html#wp39407
    Be also aware that RTP communication uses extended ranges of ephemeral ports.

  • OVM 3.0.3 - cannot add new server to VLAN group with bonded VLANs

    I have a new OVS 3.0.3 server built with 2 bonded interfaces and a single VLAN running on top for the management interface. It gets discovered fine by OVM Manager (I'm running Version: 3.0.3.126, Build: 20111214_126)
    I am trying to add it to a VLAN group with two VLANs -- the existing management VLAN (ID=300) plus one other (ID=301). (I already have one identical server assigned to the VLAN group, with both VLAN interfaces configured and running fine.) This works OK, and I can see VLAN 301 for the new server in Oracle VM Manager with no IP address assigned to it.
    However, when I try to apply an IP address to the VLAN (via Hardware / Resources / VLAN Groups / Edit VLAN Group / Configure IP Addresses / VLAN Interfaces) it fails with this error:
    Job Internal Error (Operation)com.oracle.ovm.mgr.api.exception.FailedOperationException: com.oracle.ovm.mgr.api.exception.FailedOperationException: OVMAPI_4010E Attempt to send command: dispatch to server: whyovmprd02 failed. OVMAPI_4004E Server Failed Command: dispatch https://?uname?:[email protected]:8899/api/1 ovs_br_config start 0004fb0010be2df bond0.301, Status: org.apache.xmlrpc.XmlRpcException: exceptions.RuntimeError:Command ['/etc/xen/scripts/ovs-network-bridge', 'start', 'bridge=0004fb0010be2df', 'netdev=bond0.301'] failed (1): stderr: ovs-network-bridge Start: No such device bond0.301
    Oracle VM Manager seems to be expecting the subinterface for VLAN 301 to exist on the server already - which it doesn't of course, because the server has just been built, so it only has its management interface VLAN in place (VLAN ID 300)
    I have managed to work around this by removing VLAN segment 301 from the VLAN group completely, then adding it back in with the IP addresses for both servers in place. This seems to convince Oracle VM Manager that it needs to create the bond0.301 subinterface before it configures it. However, I obviously had to shut down all VMs to do this, and it was really messy as VLAN 301 is the storage network, so my original server lost contact with the NFS storage for a while which caused it to fence etc.
    There must be another way??! Any pointers would be very much appreciated.

    Avi Miller wrote:
    It's fixed in 3.1. In the meantime, if you can remove and reapply the Virtual Machine role on that network, it'll recreate the bridges for you.Thanks for replying Avi. (I won't ask you for a release date for 3.1 :))
    I did try that initially, but it didn't seem to help - I got this error back:
    Job Internal Error (Operation)com.oracle.ovm.mgr.api.exception.FailedOperationException: OVMAPI_4010E Attempt to send command: dispatch to server: whyovmprd02 failed. OVMAPI_4004E Server Failed Command: dispatch https://?uname?:[email protected]:8899/api/1 ovs_if_meta bond0.301 ethernet:0004fb00100a35f{why-be-301}:STORAGE, Status: org.apache.xmlrpc.XmlRpcException: exceptions.Exception:ovs_set_metadata: interface /sys/class/net/bond0.301 does not exists
    This appears to be from ovs_if_meta in /opt/ovs-agent-3.0/OVSVMNetConfig.py, which looks to be where the agent tries to write out the new roles for the network into the metadata file - it seems to be expecting the VLAN to exist already, and specifically checks in /sys to make sure that it is there.
    Should / could I add a step to my kickstart build to force the 301 VLAN to be created maybe? This would bring it into line with the other VLAN that is used for management, which is of course sitting there ready and waiting as soon as the server is built.

  • SG500 auto voice VLAN question about native VLAN

    I have been installing SG300 and SG500 switches and using the auto voice vlan feature by simply changing voice vlan to 100 and using vlan 1 for default and data.  I normally put the switch in L3 mode and make an access porteach for my IP PBX (vlan 100)  and one to connect to existing data network (vlan 1). Then I make a static route in customers default gateway to route back to vlan 100 and everything works nicely for most installs. 
    On my last install I decided to try to change the default vlan 1 to vlan 10 and go with 10 for data and 100 for voice.  The problem I ran into was that the auto generated config on my phone switchports still use vlan 1 as native vlan.  I am trying to find a way to still use auto vlan and get the desired native vlan without having to make manual config changes.
    Should this be possible?
    Thanks in advance.

    Hi Brandon, you need to modify the macro from native vlan 1 to vlan 10.
    Check out this topic how to modify the macro
    https://supportforums.cisco.com/thread/2177613
    -Tom
    Please mark answered for helpful posts

  • Nexus 1000v: Control VLAN must be same VLAN as ESX hosts?

    Hello,
    I'm trying to install nexus 1000v and came across the below prerequisite.
    The below release notes for Nexus 1000v states
    VMware and Host Prerequisites
    The VSM VM control interface must be on the same Layer 2 VLAN as the ESX 4.0 host that it manages. If you configure Layer 3, then you do not have this restriction. In each case however, the two VSMs must run in the same IP subnet.
    What I'm trying to do is to create 2 VLANs - one for management and the other for control & Data (as per latest deployment guide, we can put control & data in the same vlan).
    However, I wanted to have all ESX host management same VLAN as the VSM management as well as the vCenter Management. Essentially, creating a management network.
    However, from the above "VMWare and Host Prerequisites", does this means I cannot do this?
    I need to have the ESX host management same VLAN as the control VLAN?
    This means that my ESX host will reside in a different VLAN than my management subnet?
    Thanks...

    Control vlan is a totally seperate VLAN then your System Console. The VLAN just needs to be available to the ESX host through the upstream physical switch and then make sure the VLAN is passed on the uplink port-profile that you assign the ESX host to.
    We only need an interface on the ESX host if you decide to use L3 control. In that instance you would create or use an existing VMK interface on the ESX host.

  • Ip address on created Mangement VLAN shuts down 255 VLAN 1.0 subnet

    My predecessor created a VLAN 255 to replace VLAN 1 as the Management VLAN.  I noticed a some of the switches had there IP's on Fas0 out of band interface. To me it made more sense to put that ip address on a int vlan 255 on all the switches. As I did to my 4th Core Switch I added the ip address *.1.24 and it shut down the entire 255 vlan with affect the .1.0 subnet.  I for the life of me can can't figure out what is causing the problem. It is not like any other device is using the 1.24 ip address and even if it was it should affect access to that device not all other devices on the 1.0 subnet.
    The message in the log (doing the show log command) only shows interface 255 going up and down. The subnet mask is 255.255.255.0 (/24).  I just put the ip in the interface again and pinged devices in the 1.0 subnet when I brought the interface back up yet I could not access any services on the 1.0 subnet from my workstations. I shut the interface again and could access services In that subnet again.

    The VLAN is in the trunk. shouldn't that be enough as for as putting it in the port goes?  I already have the interface shut and configured. When I unshut the entire .1.0 subnet does down. To me it's just so unlogical.

  • WLC 7.4.110.0 where native vlan and SSID vlan is the same vlan

    Hi
    We have app. 1500 accespoints in app. 500 locations. WLCs are WiSM2s running 7.4.110.0. The AP are 1131LAPs.In a FlexConnect configuration we use vlan 410 as native vlan and the ssid (LAN) also in vlan 410. This works fine, never had any problems with this.
    Now we have started use 1602 APs and the client connection on ssid LAN becomes unstable.
    If we configure an different ssid, using vlan 420 and native vlan as 410, everything works fine.
    I can't find any recommandations regarding the use of native vlan/ssid vlan
    Is there anyone experiencing similar problems? Is this a problem with my configuration or is it a bug wittin 1602 accespoints?
    Regards,
    Lars Christian

    It is the recomended design to put FlexConnect AP mgt into native vlan & user traffic to a tagged vlan.
    From the QoS perspective if you want to enforce WLC QoS profile values, you have to tag SSID traffic to a vlan (other than native vlan) & trust CoS on the switch port connected to FlexConnect AP (usually configured as trunk port)
    HTH
    Rasika
    **** Pls rate all useful responses ****

Maybe you are looking for