SRW224G4 VLAN and G1/G2 failover issues

Our SRW224G4 details
HW ver: 00.03.00
Boot ver: 1.0.2
FW ver: 1.2.2b
Here is a picture of our back 2 back setup. We are trying to send a time sensitive audio traffic and IP traffic over a GbE link, 
We assigned audio traffic (port e1) to VLAN 2 and all other ports 2-24 are in default vlan 1.
issue 1:
As long as we dont connect IP traffic, audio traffic is good. The moment, we connect IP traffic the audio traffic latency increases beyond acceptable level.
The total bandwidth we use is well below 200 Mbps of 1Gbps.
How do we make sure that VLAN2 (audio traffic on e1) gets high priority so regardless of IP traffic present or not present
on other ports, the latency would remain same for audio traffic?
Issue 2:
We have assigned VLAN 1 and 2 to both G1 and G2. We are trying to accomplish a cable redundancy with G1 and G2.
G1 and G2 are configured as trunk and tagged on VLAN setup.
How do we confgure G1 and G2 ports in such a way that only one is active at any time. If the active port fails, then the other port should take over the traffic?
Thanks in advance for any help.

Thanks for your reply.
We tried following with QoS.
1. Assigned CoS 7 (highst priority) to Q4
2. E1 (audio traffic VLAN 2) assigned CoS 7
3. All other ports on CoS 0
Queue priority tried for strict and WRR - no luck
Bandwidth - we tried to assign E1 for ingress 100 Mbps - no luck
We tried to assign E7 - IP traffic for 25 Mbps ingress and egress - no luck
It would be great if some one can shpw how to do VLAN based QoS settings (if it is supported). Basically, we would like to
have the audio traffic on VLAN 2 - highest priority and all other ports (VLAN 1) lowest priority.
Thanks again for any help.

Similar Messages

  • DHCP and failover issues

    Hello,
    I am trying to implement failover in our dhcp but I don't get it right....
    I have 2 SLES/OES servers both can be used as DHCP server without failover (one active, the other not).
    server 1 => SLES11SP1 with OES11 (dhcp version is 3.1.3 ESV)
    server 2 => SLES11SP2 with OES11SP1 (dhcp version is 4.2.4-P2)
    I have defined my failover dhcp services following TID 7004294, so I have defined to services (ip_serv1 and ip_serv2), each failover service does contain:
    a) failover object ( FO2SERV2, FO2SERV1), where
    Primary server is 10.7.0.248 10.7.0.248
    Primary port is 647 847
    Secondary server is 10.7.0.250 10.7.0.250
    Secondary port is 847 647
    Failover split is 128 128
    Max. Client Lead Time 3600 3600
    b) subnet 10.11.0.0 10.11.0.0 where these subnets have following pool
    c) pool pool_10_11 pool_10_11 and these have the following failover attached to
    FO2SERV2 FO2SERV1
    I think that these parameter follow precisly the TID 7004294, but when I start the dhcpd services on the primary server I get the following messages:
    I move from recover to startup
    I move from startup to recover
    DHCPDISCOVER from 00:23:24:07:84:53 (REFERENCE) via XXX.XXX.XXX.XXX: not responding (recovering)
    and indeed I do not get any lease.
    What am I doing wrong????
    Any suggestions?
    Thanks in advance

    Originally Posted by ricard1
    Finally I got it!!.
    First I upgraded one of my servers to same release level as the second
    Then I defined the Failover Objects with the same name as you suggested and using the same port (in my case 847).
    That did the trick.
    Thanks!
    PS. it is a shame that some TID's are so wrong as this one (TID7004294).
    Please provide TID feedback on the bottom of the page: https://www.novell.com/support/kb/doc.php?id=7004294
    Thomas

  • Oracle RAC Interconnect, PowerVM VLANs, and the Limit of 20

    Hello,
    Our company has a requirement to build a multitude of Oracle RAC clusters on AIX using Power VM on 770s and 795 hardware.
    We presently have 802.1q trunking configured on our Virtual I/O Servers, and have currently consumed 12 of 20 allowed VLANs for a virtual ethernet adapter. We have read the Oracle RAC FAQ on Oracle Metalink and it seems to otherwise discourage the use of sharing these interconnect VLANs between different clusters. This puts us in a scalability bind; IBM limits VLANs to 20 and Oracle says there is a one-to-one relationship between VLANs and subnets and RAC clusters. We must assume we have a fixed number of network interfaces available and that we absolutely have to leverage virtualized network hardware in order to build these environments. "add more network adapters to VIO" isn't an acceptable solution for us.
    Does anyone know if Oracle can afford any flexibility which would allow us to host multiple Oracle RAC interconnects on the same 802.1q trunk VLAN? We will independently guarantee the bandwidth, latency, and redundancy requirements are met for proper Oracle RAC performance, however we don't want a design "flaw" to cause us supportability issues in the future.
    We'd like it very much if we could have a bunch of two-node clusters all sharing the same private interconnect. For example:
    Cluster 1, node 1: 192.168.16.2 / 255.255.255.0 / VLAN 16
    Cluster 1, node 2: 192.168.16.3 / 255.255.255.0 / VLAN 16
    Cluster 2, node 1: 192.168.16.4 / 255.255.255.0 / VLAN 16
    Cluster 2, node 2: 192.168.16.5 / 255.255.255.0 / VLAN 16
    Cluster 3, node 1: 192.168.16.6 / 255.255.255.0 / VLAN 16
    Cluster 3, node 2: 192.168.16.7 / 255.255.255.0 / VLAN 16
    Cluster 4, node 1: 192.168.16.8 / 255.255.255.0 / VLAN 16
    Cluster 4, node 2: 192.168.16.9 / 255.255.255.0 / VLAN 16
    etc.
    Whereas the concern is that Oracle Corp will only support us if we do this:
    Cluster 1, node 1: 192.168.16.2 / 255.255.255.0 / VLAN 16
    Cluster 1, node 2: 192.168.16.3 / 255.255.255.0 / VLAN 16
    Cluster 2, node 1: 192.168.17.2 / 255.255.255.0 / VLAN 17
    Cluster 2, node 2: 192.168.17.3 / 255.255.255.0 / VLAN 17
    Cluster 3, node 1: 192.168.18.2 / 255.255.255.0 / VLAN 18
    Cluster 3, node 2: 192.168.18.3 / 255.255.255.0 / VLAN 18
    Cluster 4, node 1: 192.168.19.2 / 255.255.255.0 / VLAN 19
    Cluster 4, node 2: 192.168.19.3 / 255.255.255.0 / VLAN 19
    Which eats one VLAN per RAC cluster.

    Thank you for your answer!!
    I think I roughly understand the argument behind a 2-node RAC and a 3-node or greater RAC. We, unfortunately, were provided with two physical pieces of hardware to virtualize to support production (and two more to support non-production) and as a result we really have no place to host a third RAC node without placing it within the same "failure domain" (I hate that term) as one of the other nodes.
    My role is primarily as a system engineer, and, generally speaking, our main goals are eliminating single points of failure. We may be misusing 2-node RACs to eliminate single points of failure since it seems to violate the real intentions behind RAC, which is used more appropriately to scale wide to many nodes. Unfortunately, we've scaled out to only two nodes, and opted to scale these two nodes up, making them huge with many CPUs and lots of memory.
    Other options, notably the active-passive failover cluster we have in HACMP or PowerHA on the AIX / IBM Power platform is unattractive as the standby node drives no resources yet must consume CPU and memory resources so that it is prepared for a failover of the primary node. We use HACMP / PowerHA with Oracle and it works nice, however Oracle RAC, even in a two-node configuration, drives load on both nodes unlike with an active-passive clustering technology.
    All that aside, I am posing the question to both IBM, our Oracle DBAs (whom will ask Oracle Support). Typically the answers we get vary widely depending on the experience and skill level of the support personnel we get on both the Oracle and IBM sides... so on a suggestion from a colleague (Hi Kevin!) I posted here. I'm concerned that the answer from Oracle Support will unthinkingly be "you can't do that, my script says to tell you the absolute most rigid interpretation of the support document" while all the time the same document talks of the use of NFS and/or iSCSI storage eye roll
    We have a massive deployment of Oracle EBS and honestly the interconnect doesn't even touch 100mbit speeds even though the configuration has been checked multiple times by Oracle and IBM and with the knowledge that Oracle EBS is supposed to heavily leverage RAC. I haven't met a single person who doesn't look at our environment and suggest jumbo frames. It's a joke at this point... comments like "OMG YOU DON'T HAVE JUMBO FRAMES" and/or "OMG YOU'RE NOT USING INFINIBAND WHATTA NOOB" are commonplace when new DBAs are hired. I maintain that the utilization numbers don't support this.
    I can tell you that we have 8Gb fiber channel storage and 10Gb network connectivity. I would probably assume that there were a bottleneck in the storage infrastructure first. But alas, I digress.
    Mainly I'm looking for a real-world answer to this question. Aside from violating every last recommendation and making oracle support folk gently weep at the suggestion, are there any issues with sharing interconnects between RAC environments that will prevent it's functionality and/or reduce it's stability?
    We have rapid spanning tree configured, as far as I know, and our network folks have tuned the timers razor thin. We have Nexus 5k and Nexus 7k network infrastructure. The typical issues you'd fine with standard spanning tree really don't affect us because our network people are just that damn good.

  • SRW224G4 VLAN Problem, Please help.

    Hello dear forum members;
    I have a problem with my SRW224G4 switch and a VLAN creation issue. I have upgraded my switch. Firstly i had 1.0 as firmware version; now i have the last one which i flashed using Xmodem.
    So my system information is:
    Hardware Version   00.03.01 
    Boot Version   1.0.0.06 
    Firmware Version   1.2.2a
    I want to create two virtual lans on my physical network.
    Lets say i have 3 computers over both side. PC1, PC2 and so on.
    So PC1, PC2 and PC3 will be member of my first VLAN.
    So PC4, PC5 and PC6 will be member of my second VLAN.
    On my web configuration, i'm choosing VLAN management then
    creating a VLAN.
    VlanID : 2
    Vlan Name: First VLAN
    Im saving changes; then i'm choosing "VLAN to Ports". I'm
    taking my first port (e1) and Join VLAN and choose 2. My e2
    is correctly set up on this vlan. I'm repeating this for all
    my computers in first VLAN.
    Then i have created my Second VLAN which has 3 as VLAN ID. I
    added the other computers in this VLAN.
    My question is i have another computer (lets name it as PC7)
    i should add this computer for reaching my first and second vlan.
    So lets suppose that my computer is connected on e8 port, i'm
    going over "VLAN to Ports" then Join VLAN, then i'm choosing
    2 and 3 as VLAN.
    But the issue is this computer is able to reach the first VLAN
    but cannot reach to any computer on second vlan. I'm here with my
    switch and i'm checking all options available but i'm getting nowhere.
    Please help.
    Thanks for your kindly answers;

    The solution described will work if you can cause PC7 to
    1. Send tagged traffic
    2. Select the tag (Vlan2 or Vlan3) by the desired target.
    A different thing to try would be to use PVE (Private VLAN edge) - look in port properties; This means that you have PC's in both groups officially in the same VLAN, but they still can't directly communicate, so they are in practice in different VLANs, make e8 (the common port) the "Uplink" of the PVE setting, and then both groups can talk to e8, and e8 can talk to both, all using untagged traffic.
    (There is a way for you to essentially build a PVE situation manually, which gives more flexibility, but is complex. If necessary, I'll describe this in another post)
    The opinions (if you can call them that) expressed above are mine. Mine, I tell you! Mine!

  • NEED HELP PLEASE Setting up 2 VLANS and a redundant WAN connection

    I have a remote branch office which is actually a huge bar/lounge. The bar wants to enable patrons to access the Internet with their wireless laptops. I want to prevent those patrons from accessing our private network, and also prevent them from traversing our static VPN tunnel back to HQ.
    The bar processes all credit cards via the T1 connection, and this has caused us to lose money every time the T1 goes down while we're open, since there is no WAN redundancy right now.
    Here is my current hardware configuration:
    1) one PIX 501 50-user 3des.
    2.) two Dell 3024
    3.) one Aironet 1100(g) AP.
    Current LAN Network: 10.35.35.0
    (internal employees only, static VPN tunneled to remote HQ network)
    Current Wireless SSID's:
    SSID1=PRIVATESSID
    SSID2=PUBLICSSID (not currently in use, waiting to figure this out)
    Current WAN: one T1 connection.
    WHAT I WOULD LIKE TO DO AND NEED HELP FIGURING OUT:
    #1a) I want to create two separate VLAN's that are able to share the WAN connection, but not be able to "see" each other.
    #1b) These VLAN's would be mapped to their respective SSID's on the AP (PRIVATESSID>10.35.35.0 and PUBLICSSID>192.168.1.0).
    #1c) The 192.168.1.0 network should not be able to traverse the static tunnel between the branch site and HQ.
    #2) I would like to install a backup WAN connection such as a modem 56k dial-up to an ISP or a cable modem to an ISP. In case the primary T1 goes down, I would like the router to automatically dial out over the modem conection and route all Internet bound traffic over that backup WAN connection, until the primary comes back online.
    Question 1:
    I'm assuming I need a router to do the intervlan routing. Could this router also do the on-demand WAN backup dialing to an ISP via analog modem?
    What IOS version and flavor (IP base, IP+, etc.) would I need? What is the cheapest router I can do all that with (i.e. 2620/2621/1720/3600 series)? What WIC's or NM's would I need?
    Question Two:
    I would like to prioritize PRIVATESSID's traffic over PUBLICSSID's traffic, which I know I can do on the access point. Can I do this on the router so that any 10.35.35.0 traffic takes priority over any 192.168.1.0 traffic?
    Question Three
    If the primary T1 WAN connection goes down, I don't want the router to re-route the 192.168.1.0 traffic over the backup 56k dial-up WAN connection. That traffic can wait until the T1 comes back up.
    Any help you can provide would be very much appreciated.

    Assuming your access points can place SSID into separate vlans and support 802.1q trunks then I can attempt to answer your questions. There are seperate secuity issues with both SSID for protection and VLANs for seperation but in your case in may be minimal.
    q1
    Any cisco router that will run 802.1q trunking will work. Since you are looking at older routers you will need IP+ to get it. Even 2610's will support 802.1q on their 10m ethernet at the correct code level but 10m and 802.1q is sorta nonstandard. Since your backup is only 56k you can use the internal modem port as a dial backup. A wic-2a/s will also work if you prefer not to use the modem port. You will need some wic to run your t1 line. If you are planning to leave the t1 on another router it makes the next 2 questions much harder.
    q2
    This is fairly simple and depends on your ios level. "priority queing" is supported on even the older software. I assume you do not control the far end of the t1 line since it sounds as if this goes to a ISP.
    You will need to have them do the QoS since most issues with the internet are inbound and not outbound. You can only control outbound traffic.
    q3
    If the T1 is on the same router then this is fairly simple. You can just put a floating static default route in that will cause the dialer to come up if the the t1 goes down. There is no easy way to protect against the line being up but no traffic passing. This is also why it would be best to have the t1 on the same router. If its not you will need to get very creative to solve this. You could build a GRE tunnel to a remote location and montior the tunnel or run a routing protcol over the tunnel. In the newest software you could use SAA and policy routing to force the traffic over the dialer but the router must support ios 12.4.
    3a. You mentioned a cable modem as a backup. That can be much easier sometimes since it is all routing and no dialer interfaces with nasty modem issues. This does not make the issue of the t1 not on the same router easier.

  • Problems with SRW224G4 switch and Bridged Network Cards

    Hello,
    We have recently installed a SRW224G4 switch and have discovered that when we plug our DELL PowerEdge 2900 server into the switch, the switch loses all network connectivity and all of the LED's on the switch start flashing.
    The server works perfectly well plugged into another switch, but as soon as we introduce the SRW224G4 into the network, either with the server plugged into that switch or any other, the problem re-occurs.
    The only way we found we could eliminate this issue was if we disabled the Bridged Network connection on the two network cards on the server. If we do that, everything is fine, except the network performance of the server has dropped significantly.
    The server is plugged into the 1GB ports on the switch, although we tried it on the 100MB ports and received the same problems. The switch reports that the ports are running at full-duplex.
    Has anyone noticed this behavior before, and more importantly been able to rectify it.
    Thanks in advance for your assistance,
    Paul

    I had this problem as well with any Linksys 2024 or rackmountable switch..  The trick is, you need to use the network cards management software to "team" or bridged the 2 NIC's otherwise the switch detects a loop and the whole thing locks up. So lame...  Windows built in bridge mode stinks dont use it.  When you use the Intel management software or Dell or HP's NIc management software you have the option to actually choose "redundant mode" where you can pick a Nic to be the primary, or you can choose Load Balancing where you can essentially double your throughput by joining the 2 nics.
    In Windows 2008 Server, you actually do this by going to the Properties on the NIC in  Device Manger.  the software controls are now built right into the driver.  pretty neat.  2003 you can check Device Manager the same way but not sure if it's the same as 2008, you might need to run the actual NIC management app.
    Hope this helps
    fdigi 

  • Setting Up VLAN and QoS for VOIP on SG200-18

    We recently purchased the SG200-18 smart switch to replace a Netgear unmanaged switch. We're moving our phone service to VOIP through our local ISP as well. 
    I've currently got the VOIP phone plugged into Port 17 on the SG200-18 (it's a Grandstream cordless VOIP phone).
    I want to put the VOIP phone on a separate VLAN from the rest of the network and optimize the QoS settings so that the VOIP phone has exceptional audio quality even during intense network traffic.
    Here's my questions:
    1. Do I need to adjust anything on the type of port for Port 17 (since it looks like some form of Combo port)?
    2. How do I go about isolating the VOIP phone on it's own VLAN (I'm seeing VLAN and Voice VLAN settings, not sure which one to use; I tried setting a VLAN and broke Internet connectivity to the phone until I went in and removed it)?
    3. Do I need to adjust any QoS settings on the switch to better optimize the VOIP phone?
    A couple of additional questions about the GS200-18 in general:
    1. Do I need to adjust any of the System Time Settings on the switch? I'm in Central Time.
    2. Do I need to adjust any of the Green Ethernet/Energy Saving settings or should I stick with the defaults?
    Also, a couple of "getting started" side questions to Cisco:
    1. I've registered a My Cisco account. What do I need to do to register my switch with Cisco and associate it with my My Cisco account?
    2. What are the benefits of taking out a Cisco Small Business Support Contract, and about how much would it cost on the SG200-18 (I ordered it from Provantage)? I'm curious to see if it's worth the money.
    Here's my "specs":
    Switch: SG200-18
    VOIP phone: Grandstream DP715 and 710 expandable handsets
    Plugged into: Port 17 on the SG200-18
    ISP: Local ISP (Direclynx)
    Connection type: 3M down/500k up DSL, moving to a wireless connection coming up which will give us faster speeds
    VOIP backend provider: VOIP Innovations
    Router: Apple Airport Extreme AC model (I run all Macs and iOS devices and OS X Server on the network, so using the Apple router makes setup easier, since it doesn't QoS, trying to QoS and VLAN at the switch level)
    Thanks everyone!

    Hello,
    Lots of different questions here so I'll try to make sure I don't miss anything.
    1. Do I need to adjust anything on the type of port for Port 17 (since it looks like some form of Combo port)?
       The way the combo ports work is you can either use the SFP slot for a fiber connection or the copper ethernet port, but not both at the same time.  Other then that they just function as normal network ports.
    2. How do I go about isolating the VOIP phone on it's own VLAN (I'm seeing VLAN and Voice VLAN settings, not sure which one to use; I tried setting a VLAN and broke Internet connectivity to the phone until I went in and removed it)?
       It sounds like you created the VLAN correctly and assigned the phone, however there wasn't anything doing any routing for that VLAN.  You would need to have a VLAN capable router or a layer 3 switch so that something would act as the default gateway for the voice VLAN and route the traffic for you.  Since there was nothing like this your phone lost it's connectivity to the internet when you placed it in the new VLAN.  I don't think the Airport is VLAN capable, but we will come back to that.
    3. Do I need to adjust any QoS settings on the switch to better optimize the VOIP phone?
       Once you have a seperate VLAN setup for the phone properly you only have to tell the switch what your Auto Voice VLAN is going to be and it will automatically apply recommended QoS settings for the Voice VLAN and prioritize the voice traffic.  There are ways to do this manually and even with the phone in the same VLAN however the are considerably more complicated.
    1. Do I need to adjust any of the System Time Settings on the switch? I'm in Central Time.
       The system time isn't always very important.  You can set the correct time zone, however you should know the switch does not have a battery in it to keep track of time, so if/when it reboots or loses power the clock will reset.  If you would like the switch to maintain accurate time you should setup an NTP server so the time is automatically updated from the internet.  The switch will keep your timezone settings once you save them.  Time is mostly important for logging and things like that, so you can configure it if you like but it is not necessary.
    2. Do I need to adjust any of the Green Ethernet/Energy Saving settings or should I stick with the defaults?
       Green ethernet simply reduces the power usage of the switch slightly, so unless you are having odd issues where ports are disconnecting, I would just leave them at the defaults.
    1. I've registered a My Cisco account. What do I need to do to register my switch with Cisco and associate it with my My Cisco account?
       There isn't really a way to associate your Small Business devices with your Cisco account.  If you ever call in for technical support we will use your Cisco account and your serial number to create a support case, but even then they aren't linked together.  If you decide to buy a support contract, that will be linked to your switch's S/N and your Cisco ID, so in a way that would associate them together.  Devices being associated with Cisco accounts is something more common with Enterprise equipment, and mainly has to do with technical support cases.
    2. What are the benefits of taking out a Cisco Small Business Support Contract, and about how much would it cost on the SG200-18 (I ordered it from Provantage)? I'm curious to see if it's worth the money.
       There are a few advantages to a Support Contact.  Your switch comes with a Limited Lifetime warranty that includes 1 year of technical support and return to factory hardware.  With a service contract you get 3 years of technical support and next business day Advanced Replacement of the switch if it need to be replaced.  I just did a quick google search, and it looks like a contract (part #CON-SBS-SVC2) costs about $50.
    So there are a few other things to consider however.
    As a frame of reference the average VOIP call uses about 64 - 128 kbps max.
    Since you don't have a VLAN capable router or a layer 3 switch, a separate voice VLAN may not be an option.   You also mention that the Apple Airport does not do QoS, meaning we will only be prioritizing the voice traffic while it is on the switch.  When it is passed off to the Airport to be routed out to the internet all of the QoS settings will be lost, and normal network traffic will get the same priority as voice, since that is all up to the Airport.
    With one phone the hassle of getting more equipment and setting up advanced QoS isn't really worth it, especially if the link to the internet isn't going to be participating in QoS.
    One last thing I wanted to mention is you are switching to a wireless internet connection.  I would ask them how their latency and jitter is, as these two network statistics greatly effect voice quality, and usually wireless performs worse when it comes to voice traffic.
    I hope this information helps, if you have any more questions just let me know.
    Thank you for choosing Cisco,
    Christopher Ebert - Network Support Engineer 
    Cisco Small Business Support Center

  • 1242AG Bridge, VLAN and Multiple SSIDs

    I have two buildings that I'm trying to configure a bridge in between them using 2 1242AG APs.
    Building A
    PCOFFICE SSID on VLAN 200 Radio G
    ROOT_1 SSID on Native VLAN 1 Radio A
    Root Bridge
    Building B
    FDAPC SSID on Native VLAN 1 Radio G
    ROOT_1 SSID on Native VLAN 1 Radio A
    We are using directional antenna.  I know they are lined up properly because I have them both down and in front of me.  I'm getting an error on the Building B AP that says "
    No SSID with VLAN configured. Dot11Radio1 not started." and I'm unable to get this to work.  The bridge was working before I added the VLAN and encryption/WPA information for the PCOFFICE and FDAPC SSIDs
    Any assistance would be amazing.  Thanks!  Please see attached files for configurations.  I know the switch is configured properly because I had this working before and forgot to save the damn configuration off the devices.  I'm not having to do it over from scratch.

    That did not work.
    I've managed to fix the ROOT_1 and FDAPC... now I'm having an issue where I can attempt to connect to the PCOFFICE SSID but I'm unable to get a DHCP address from the server.
    Here is the config for the AP with PCOFFICE on it and the switch.
    SWITCH
    interface GigabitEthernet3/2
    switchport trunk allowed vlan 1,200
    switchport mode trunk
    interface Vlan1
    ip address 192.168.3.4 255.255.255.0
    interface Vlan200
    ip address 192.168.30.2 255.255.255.0
    ip helper-address 192.168.3.98
    ip default-network 192.168.3.0
    ip route 0.0.0.0 0.0.0.0 192.168.3.1
    no ip http server
    ACCESS POINT
    version 12.3
    no service pad
    service timestamps debug datetime msec
    service timestamps log datetime msec
    service password-encryption
    hostname AP1_ROOT_AP
    enable secret 5 REMOVED
    ip subnet-zero
    no aaa new-model
    dot11 vlan-name VLAN1 vlan 1
    dot11 vlan-name pcCopper vlan 200
    dot11 ssid PCOFFICE
       vlan 200
       authentication open
       authentication key-management wpa
       guest-mode
       wpa-psk ascii 7 REMOVED
    dot11 ssid ROOT_1
       vlan 1
       authentication open
       authentication key-management wpa
       infrastructure-ssid optional
       wpa-psk ascii 7 REMOVED
    dot11 network-map
    dot11 arp-cache optional
    power inline negotiation prestandard source
    username Cisco password 7 REMOVED
    username admin privilege 15 password 7 REMOVED
    bridge irb
    interface Dot11Radio0
    no ip address
    no ip route-cache
    encryption mode ciphers tkip
    encryption vlan 200 mode ciphers tkip
    ssid PCOFFICE
    speed basic-2.0 5.5 11.0 12.0 18.0 24.0 36.0 48.0 54.0
    no power client local
    power client 17
    power local cck 17
    power local ofdm 17
    channel 2462
    station-role root access-point
    antenna receive right
    bridge-group 1
    bridge-group 1 subscriber-loop-control
    bridge-group 1 port-protected
    bridge-group 1 block-unknown-source
    no bridge-group 1 source-learning
    no bridge-group 1 unicast-flooding
    interface Dot11Radio0.200
    encapsulation dot1Q 200
    no ip route-cache
    bridge-group 200
    bridge-group 200 subscriber-loop-control
    bridge-group 200 block-unknown-source
    no bridge-group 200 source-learning
    no bridge-group 200 unicast-flooding
    bridge-group 200 spanning-disabled
    interface Dot11Radio1
    no ip address
    no ip route-cache
    encryption mode ciphers tkip
    encryption vlan 1 mode ciphers tkip
    ssid ROOT_1
    dfs band 3 block
    speed basic-6.0 9.0 basic-12.0 18.0 basic-24.0 36.0 48.0 54.0
    no power client local
    power client 11
    power local 11
    channel 5180
    station-role root bridge
    antenna receive right
    antenna transmit right
    interface Dot11Radio1.1
    encapsulation dot1Q 1 native
    no ip route-cache
    bridge-group 1
    bridge-group 1 spanning-disabled
    interface FastEthernet0
    no ip address
    no ip route-cache
    duplex auto
    speed auto
    hold-queue 160 in
    interface FastEthernet0.1
    encapsulation dot1Q 1 native
    no ip route-cache
    bridge-group 1
    bridge-group 1 spanning-disabled
    interface FastEthernet0.200
    encapsulation dot1Q 200
    no ip route-cache
    bridge-group 200
    bridge-group 200 spanning-disabled
    interface BVI1
    ip address 192.168.3.241 255.255.255.0
    no ip route-cache
    ip default-gateway 192.168.3.1
    ip http server
    no ip http secure-server
    ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
    control-plane
    bridge 1 route ip
    line con 0
    line vty 0 4
    login local

  • Weblogic Migrateable Server JSM client failover issue

    Hello.
    I am experiencing a failover issue with JMS client (i am using wlfullclient.jar)
    I've setup a migratable JMS Server (My cluster contains 2 servers: ManagedServer1 and ManagedServer2) and created a module with Sub Deployment to this server. On the module i created Queue and Topic.
    Whenever i forecfully ManagedServer2 (That is where JMS Server resides), JMS Client fails to reconnect with the following exception.
    How come dispatcher does not try to connect to ManagedServer1, and keeps trying to connect to ManagedServer2?
    weblogic.jms.common.JMSException: Error creating session
         at weblogic.jms.dispatcher.DispatcherAdapter.convertToJMSExceptionAndThrow(DispatcherAdapter.java:110)
         at weblogic.jms.dispatcher.DispatcherAdapter.dispatchSync(DispatcherAdapter.java:45)
         at weblogic.jms.client.JMSSession.consumerCreate(JMSSession.java:2914)
         at weblogic.jms.client.JMSSession.setupConsumer(JMSSession.java:2687)
         at weblogic.jms.client.JMSSession.createConsumer(JMSSession.java:2628)
         at weblogic.jms.client.JMSSession.createConsumer(JMSSession.java:2608)
         at weblogic.jms.client.WLSessionImpl.createConsumer(WLSessionImpl.java:880)
         at org.springframework.jms.listener.AbstractPollingMessageListenerContainer.createConsumer(AbstractPollingMessageListenerContainer.java:477)
         at org.springframework.jms.listener.AbstractPollingMessageListenerContainer.createListenerConsumer(AbstractPollingMessageListenerContainer.java:221)
         at org.springframework.jms.listener.DefaultMessageListenerContainer$AsyncMessageListenerInvoker.initResourcesIfNecessary(DefaultMessageListenerContainer.java:1005)
         at org.springframework.jms.listener.DefaultMessageListenerContainer$AsyncMessageListenerInvoker.invokeListener(DefaultMessageListenerContainer.java:981)
         at org.springframework.jms.listener.DefaultMessageListenerContainer$AsyncMessageListenerInvoker.executeOngoingLoop(DefaultMessageListenerContainer.java:974)
         at org.springframework.jms.listener.DefaultMessageListenerContainer$AsyncMessageListenerInvoker.run(DefaultMessageListenerContainer.java:876)
         at java.lang.Thread.run(Thread.java:619)
    Caused by: weblogic.jms.common.JMSException: Error creating session
         at weblogic.jms.frontend.FESession.setUpBackEndSession(FESession.java:745)
         at weblogic.jms.frontend.FESession.consumerCreate(FESession.java:963)
         at weblogic.jms.frontend.FESession.invoke(FESession.java:2931)
         at weblogic.messaging.dispatcher.Request.wrappedFiniteStateMachine(Request.java:961)
         at weblogic.messaging.dispatcher.DispatcherServerRef.invoke(DispatcherServerRef.java:276)
         at weblogic.messaging.dispatcher.DispatcherServerRef.handleRequest(DispatcherServerRef.java:141)
         at weblogic.messaging.dispatcher.DispatcherServerRef.access$000(DispatcherServerRef.java:34)
         at weblogic.messaging.dispatcher.DispatcherServerRef$2.run(DispatcherServerRef.java:111)
         at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
         at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
    Caused by: weblogic.messaging.dispatcher.DispatcherException: could not find Server ManagedServer2
         at weblogic.messaging.dispatcher.DispatcherManager.dispatcherCreate(DispatcherManager.java:176)
         at weblogic.messaging.dispatcher.DispatcherManager.dispatcherFindOrCreate(DispatcherManager.java:58)
         at weblogic.jms.dispatcher.JMSDispatcherManager.dispatcherFindOrCreate(JMSDispatcherManager.java:219)
         at weblogic.jms.dispatcher.JMSDispatcherManager.dispatcherFindOrCreateChecked(JMSDispatcherManager.java:230)
         at weblogic.jms.frontend.FESession.setUpBackEndSession(FESession.java:743)
         ... 9 more
    Caused by: javax.naming.NameNotFoundException: Unable to resolve 'weblogic.messaging.dispatcher.S:ManagedServer2'. Resolved 'weblogic.messaging.dispatcher'; remaining name 'S:ManagedServer2'
         at weblogic.jndi.internal.BasicNamingNode.newNameNotFoundException(BasicNamingNode.java:1139)
         at weblogic.jndi.internal.BasicNamingNode.lookupHere(BasicNamingNode.java:252)
         at weblogic.jndi.internal.ServerNamingNode.lookupHere(ServerNamingNode.java:182)
         at weblogic.jndi.internal.BasicNamingNode.lookup(BasicNamingNode.java:206)
         at weblogic.jndi.internal.BasicNamingNode.lookup(BasicNamingNode.java:214)
         at weblogic.jndi.internal.BasicNamingNode.lookup(BasicNamingNode.java:214)
         at weblogic.jndi.internal.BasicNamingNode.lookup(BasicNamingNode.java:214)
         at weblogic.jndi.internal.WLEventContextImpl.lookup(WLEventContextImpl.java:254)
         at weblogic.jndi.internal.WLContextImpl.lookup(WLContextImpl.java:380)
         at javax.naming.InitialContext.lookup(InitialContext.java:392)
         at weblogic.messaging.dispatcher.DispatcherManager.dispatcherCreate(DispatcherManager.java:172)
         ... 13 more

    I am not shutting down both the managed server. Only the first managed server is shut down. As the portal ear is deployed both on admin server and all the managed servers in the cluster, I should be able to access the application through the second managed server.

  • Wireless VLANs and WLC

    Hello,
    Designing a configuration for a Wireless solution. Have a 2951 with SRE-WLC and 4 port switch module. The documentation at
    http://www.cisco.com/en/US/docs/wireless/controller/controller_modules/sre/installation/guide/wlcsreinst.html#wp1072942 arised couple of questions. Exact part of diagram from documentation is attached.
    The question is that VLANs configured on SRE-WLC and ones configured on local switched belong to different subnets. Why? For example on SRE-WLC VLAN 20 - 55.20.0.0/24, but on switch - VLAN 20 - 20.1.1.0/24. Why?
    Thanks!

    Hi George,
    Today i tried implementing APs on different VLAN than MGMT. Here is what I got:
    1. New out-of-box APs didnt join to WLC once placed directly to APs VLAN. However they were able to join the WLC once I put them back to MGMT Vlan. They upgraded their IOS from WLC, joined compeletely. After that I moved them back to APs VLAN and they started to join. So, here is the procedure - Open new AP from box, connect it to MGMT VLAN, wait for joining to WLC and then move them to APs VLAN. This is a little bit strange. Also I noticed that they were unable to join teh WLC even on MGMT vlan if MGMT vlan is tagged on WLC and that tagged vlan is allowed on trunk. I have WLC on SRE, MGF trunk, VLANS and DHCP pools with option 43 configured. Will continue to investigate tomorrow.
    2. What was the most difficult and problematic issue is that the LED was disabled on all APs after joining the WLC. I have been thinking that there is an error but only then found that APs by default turned off LED after joining the WLC. Issuing config ap led-status enable all on wlc solved the problem.
    3. Also I regularly have been receiving
    %PARSER-4-BADCFG: Unexpected end of configuration file.
    during the AP joining to WLC. Dont know why. My APs are LAP1041n.
    ANyways, will continue digging tomorrow, hopefully will find a stable solution. My ideal solution will be:
    1. WLC Management is on MGMT VLAN - tagged vlan 20, static IP assignments.
    2. APs on separate AP VLAN - tagged vlan 15 - dynamic IP assignments from DHCP pool on ISR with option 43.
    3. Clients are on separate USERS VLAN - tagged vlan 10
    The native VLAN will be other VLAN - VLAN 25.

  • VLAN and Networking

    Hi,
    we have HP Blade server, where i have created the VLAN and added to the server profile, all traffic for that particular VLAN is tagged on Blade (Virtual Interconnect) and passed to network switch. the port on switch is configured as trunk port.
    I want to know that, when i configure the network on Oracle VM server, do i have to select the Network Segment inside VLAN, as untagged or Tagged ?
    thanks,

    Hi Erik,
    Can you get a sniffer of the LAN when this happens?
    Administration -> Diagnostics -> Packet Trace
    Recreate the issue and please post the trace here.
    Could you also send me your config?
    Thanks
    Steven

  • Vlans and trunks etc

    Can someone please tell me the main reason for having a vlan and server/clients setup, why do we need this setup, Please give simple explanation.
    thanks
    Carl

    The main reasons to break networks down into VLAN's is Security and to minimise broadcasts. With Security I mean the ability to block or restrict access between networks with the use of ACL's, firewalls etc. The general rule of thumb when deploying networks is /23 subnets (500 or so hosts) for IP-only networks and /24 subnets (250 hosts) when using multiprotocol. This way you reduce the broadcast domain and so can contain the amount of broadcasts within the each VLAN.
    The general practise now is also to deploy 2 unique VLAN's per access switch (1 Voice & 1 Data). This prevents the need to span VLAN's across multiple Access Layer switches and minimises the STP sizes and subsequently any STP issues from spanning network-wide. Designing your network this way also makes troubleshooting and understanding issues easier as you generally have very strict data paths between hosts; no trying to overlay your STP network over your Layer-3 network to see the logical & physical paths.
    I would also disagree with the previous post regarding VTP. Yes it does simply the creation of VLAN's in a large Layer-2 campus environment, but the Layer-2 environment is what we are trying to move away from. Using VTP Transparent or disabling VTP promotes better practise amongst your IT staff and prevents any VTP mishaps that are always network-wide.
    HTH
    Andy

  • Cisco switch 300 configure vlan and ports

    Hi i need help
    i cant see the vlan on port vlan membership
    i did create the vlan and i did configure the port the access
    but when i try to port vlan membership to tell which port to wich vlan i cant see the vlan i have created in the list
    thanks to help

    Hi,
    This forum is focusing on the issues related Windows Server.
    To get better help, please post your question on the forum of cisco.
    Here is the address,
    https://supportforums.cisco.com/
    Best Regards.
    Steven Lee
    TechNet Community Support

  • Vlan and firewall rules

    If I have 3 different vlans, are there any problems having different firewall rules between each vlan and the WAN link? I saw an earlier post about some issues with filtering between vlan's but this should'n be the same.
    /Andy

    Yes, this sounds different than the earlier post.
    Firewall rules can be applied for WAN to LAN or vice versa flows.
    As vlans are logically associated with LAN, firewall rules should be applicable for WAN to vlan traffic.
    Using source or destination IP address in the firewall rules should let one to control which rules to be applied for which vlan traffic.
    Regards,
    Richard

  • VLAN and EBS

    Hi,
    i am using OEL 5.3 and have two nodes, one for db and other for apps. Due to security reasons i want DB-NODE be in different VLAN and apps in a different VLAN. during this test i didn't apply ACL on router, and no error in oracle apps/db logs. i am using Nortel Switch/Router.
    the problem is when i change both nodes to different vlan, i am unable to view even login page of EBS app. even though no router envolment is there. both nodes are in single network 172.20.201.0/24 . no error in logs .
    After this failure i changed the scenario and moved both nodes to single VLAN id=200. but same issue on this, no login page. then i rewerted both nodes to default vlan and default network and its working fine.
    I want to know is there any problem with oracle EBS when working in VLAN?

    Hi,
    Can you ping the IP Address of the application/database nodes?
    Can you ping the database server from the application node and vice versa?
    There should be no issues in using different VLANs as long as all the nodes see each other. Just make sure you have proper entries in FND_NODES table and that AutoConfig run successfully on all tier nodes -- See (Note: 260887.1 - Steps to Clean Nonexistent Nodes or IP Addresses from FND_NODES).
    Regards,
    Hussein

Maybe you are looking for

  • In the Calendar app in Yosemite, how can I prevent the event's details window to disappear when transferring focus to another app?

    When you click on an event to get the full details in a separate window, like a phone number for the meeting, if you move to another app like Skype the details window hides and you cannot look at the comments. This is kind of annoying.

  • Integration server v/s application server

    I finally got the soademo to work. Can any one help me understand the difference between integration server and application server. what to deploy to the application server and what to register to esb? thanks

  • K1 Android Market PLEASE UPDATE THIS!!!!

    Please update the android market!! I am sick of finding incompatible apps, that if I download the apk from another market or site I can install and work fine. This device is being limited by Lenovo market from the sounds of it, which in turn google w

  • Reader X launching an exec file

    In Adobe reader 9.0+ versions, editing the registry (tBuiltinPermList) allows a user to launch certain files. Performing the same task in Reader X does not perform the same activity.  Anyone have an experience in this

  • Phone Wallpaper Display Name

    Hi all, We have uploaded the images and we can change the wallpapers as we want. But when we went to Preferences->Wallpaper, the pictures we uploaded there just showed the file names directly i.e. "pic1_thumb.png" and "pic2_thumb.png". But the system