Terminating Q-in-Q on WS-C3750G-24TS-S1U
Hello,
we have a connection from a service provider between location A and B where in location A i have an ethernet port and i configure a switch interface as trunk with 802.1q encapsulation and i try to pass vlans 421-423. in location B the ethernet is presented in the form of a Q-in-Q trunk. So from what i understand the vlans i put in the trunk in location A are encapsulated inside what the service provider called svlan with the id 10. i have the following configuration of the ethernet port in location B:
interface GigabitEthernet2/0/25
description Eircom_Fibre
switchport access vlan 10
switchport trunk encapsulation dot1q
switchport mode dot1q-tunnel
l2protocol-tunnel cdp
l2protocol-tunnel stp
l2protocol-tunnel vtp
no cdp enable
now i was hoping i could simply configure another interface as .1q trunk and pass traffic on via a normal trunk instead of Q-in-Q. the interface for that is configured as follows:
interface GigabitEthernet2/0/1
description Ceragon Payload
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 421,422
switchport mode trunk
unfortunately i can not pass traffic. it seems the switch is not picking the vlans out of the svlan with the id 10. can anybody advise how i can access the vlans from within the q-in-q trunk ?
Kind Regards
Jan
Actually 12.2(25)SE and has this capability but needs to be turned on using the command "service unsupported-transceiver"
3750#conf t
Enter configuration commands, one per line. End with CNTL/Z.
3750(config)#service unsupported-transceiver
Warning: When Cisco determines that a fault or defect can be traced to
the use of third-party transceivers installed by a customer or reseller,
then, at Cisco's discretion, Cisco may withhold support under warranty or
a Cisco support program. In the course of providing support for a Cisco
networking product Cisco may require that the end user install Cisco
transceivers if Cisco determines that removing third-party parts will
assist Cisco in diagnosing the cause of a support issue.
3750(config)#
Similar Messages
-
Hi:
Just need an advice on how to configure VLANs,InterVLAN routing and make Windows 2000 DHCP Server to work also for Stack C3750G-24TS Layer3 Switch..
Thanks in advance
CliffHi,
For configuring VLANs, you need to enter the following commands:
- enable
- configure terminal
- vlan 'number'
Then you need to configure the ports as the members of the vlan by giving the following command:
- switchport access vlan 'vlan-number'
If all the vlans are created on the Layer3 switch only, then you only need to enter the command 'ip routing' and your routing needs would be fulfilled.
For more details refer the following link:
http://www.cisco.com/en/US/products/hw/switches/ps5023/products_command_reference_chapter09186a00802127da.html#wp1905882
Hope this helps!
Regards,
AbhisheK
Please rate all helpful posts! -
802.1x Failed Authentication with WS-C3750G-24T
Hi,
I have already set up a lab comprising of 1x2950-24 switch, 2x3750-24T in stack mode and 2x MS Domain Controller with AD 2008 Servers and NPS enabled (Domain level 2008). I use NPS as a Radius Server. I am trying to test the 802.1x framework in two scenarios.
1. I use as client a domain laptop with Windows XP SP3 with the embedded 802.1x MS supplicant. As authenticator use the 2950 switch and as authentication servers I use the two NPS integrated in MS DCs. Everything is working fine as I expected with basic configuration guidelines from Cisco & Microsoft.
2. I use as client a domain laptop with Windows XP SP3 with the embedded 802.1x MS supplicant (the same as before). As authenticator I use the 3750 Stack switch and as authentication servers I use the two NPS integrated in MS DCs (the same as before). I have configured the supplicant for both machine or user authentication in both scenarios. However the client never pass the authentication in the second one. I disconnect and connect the same supplicant in the 2950 switch and the authentication is completed successfully. Getting back to the 3750 stack the authentication failed and the laptop gains network access in the configured Auth-Failed Vlan. I have tried several configuration changes without success. I cannot understand why does this happen. I have made some debugs and I am sending them a long with a partial basic configuration of 3750 stack switch.
If anyone could check it and suggest anything it could be appreciated!!!
Thank you in advance!Hi,
basically what happens is that the maximum EAP packet size for communication between client and RADIUS server is negotiated. Therefore, in your case the switch notifies NPS that the client is capable of handling packets up to 9000 bytes in size.
EAP messages, especially those containing the server certificate, are usually bigger than 1500 bytes and arrive at the switch in multiple fragments:
Mar 6 15:50:11.881: RADIUS(0000002C): Received from id 1645/41
Mar 6 15:50:11.881: RADIUS/DECODE: EAP-Message fragments, 253+253+253+253+253+253+253+253+20, total 2044 bytes
Having learned that 2044 bytes is acceptable for the client, the switch forwards the full message in one chunk, but since your client is likely to have set the interface MTU to 1500, the packet is oversized and never reaches its destination.
And yes, I think changing the System Jumbo MTU to 1500 bytes would lead to the same result. If my memory serves me right, a new setting takes effect only after a reboot, so I'd suggest giving it a go in your lab first.
Best regards,
Josef -
I know that idealy, all members of a stack should run the same IOS version and are the same model, but unfortunately, that's not always possible.
We currently have a WS-C3750G-24T-E, and I'm wondering if we can pair it up w/ a WS-C3750G-24TS-S1U and form a 2-switch stack?
I'll upgrade the existing switch from 12.1 to 12.2 code so that they have at least the same major version.Yes, it should but be aware of SDM mismatch as different 3750 modle might have different SDM default.
http://www.cisco.com/univercd/cc/td/doc/product/lan/cat3750/12225see/scg/swstack.htm#wp1189523
The Catalyst 3750-12S switch supports desktop and aggregator Switch Database Management (SDM) templates. All other Catalyst 3750 switches support only the desktop SDM templates.
All stack members use the SDM template configured on the stack master. If the stack master is using an aggregator template, only Catalyst 3750-12S switches can be stack members. All other switches attempting to join this switch stack enter SDM-mismatch mode. These switches can join the stack only when the stack master is running a desktop SDM template.
We recommend that your stack master use an aggregator template only if you plan to create a switch stack of Catalyst 3750-12S switches. If you plan to have a switch stack with different Catalyst 3750 switch models, configure the stack master to use one of the desktop templates.
Please rate all posts. -
Waas without subinterfaces vlans on router
Hi my name is Ivan:
I have a wave 274, wae 674 and wave 574, and i would like to deploy the WAAS in this way:
Cisco wae central manager and wae core attached in the switch core 3750 in stack ( WS-C3750G-24TS-S1U and WS-C3750G-12S-S) with IOS
c3750-ipbase-mz.122-35.SE5.bin. But i want to configuring like it:
Switch Core Stack
int gig 0/x
description Link SwitchCore>>WAECentralManager
switchport mode access
switchport access vlan 100
int gig 0/y
description Link SwitchCore>>WAECore
switchport mode access
switchport access vlan 200
int gig 0/z
description Link SwitchCore>>RouterWAN
switchport mode access
switchport access vlan 300
int vlan 100
description VlanWAECentralManager
ip wccp 61 redirect in
ip add 10.0.41.1 255.255.255.0
int vlan 200
description VlanWAECore
ip wccp redirect excluded inn
ip add 10.0.42.1 255.255.255.0
int vlan 300
descripton VlanRouterWAN
ip add 10.0.43.1 255.255.255.0
int vlan 400
description VLan ServerFarm
ip wccp 61 redirect in
ip add 10.0.44.1 255.255.255.0
Config Router WAN
Int gig 0/a
description Link WAN
ip add 190.41.227.26 255.255.255.248.0
ip wccp 62 redirect out
int gig 0/b
description Link LAN
ip add 10.0.44.2 255.255.255.0
My question is: Is OK this configuration or there is something wrong?
Please could you help me
Regards
Ivanhi,
as i wrote in my previous post, i'm using pfsense as software appliance on an intel-based server with one internal nic and extended by a 4-port nic. internal nic is WAN, 2 ports of the extended nic are LAN and DMZ.
in my opinion my problem has nothing to do with inter-vlan connectivity. i've forgotten to say, that servers have 2 nics inside, one belonging to DMZ, the other to LAN. but if a request from WAN belongs to a public ip (DMZ), the router forwards to DMZ vlan on the switch, and the switch to the DMZ nic of the server. in my opinion the response should go the other way round, but obviously it's not.
if i do a traceroute from an internal server's public ip nic to an other's LAN nic, it goes over the router. so vlan's are seeming to be ok. so what way a request to a public ip can be responded over the LAN uplink of the switch?! -
I have basic product question on cisco 3750 series switches.
I have a few different models here
WS-C3750-24TS-E
WS-C3750G-24PS-E
WS-C3750G-24PS-S
WS-C3750G-24TS-S1U
WS-C3750G-48PS-S
WS-C3750G-48TS-S
WS-C3750X-48PF-S
WS-C3750X-48T-S
Questions
1. What do the TS-E , PS-E, PS-S, PF-S, T-S etc stand for ?
2. Also within the 48 port switches if i have to create a stack , would i be able to mix models in creating a stack ?show power inline and have taken the details of my second switch ...
Interface Admin Oper Power Device Class Max
Gi2/0/1 auto off 0.0 n/a n/a 15.4
Gi2/0/2 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/3 auto off 0.0 n/a n/a 15.4
Gi2/0/4 auto off 0.0 n/a n/a 15.4
Gi2/0/5 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/6 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/7 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/8 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/9 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/10 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/11 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/12 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/13 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/14 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/15 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/16 auto off 0.0 n/a n/a 15.4
Gi2/0/17 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/18 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/19 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/20 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/21 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/22 auto off 0.0 n/a n/a 15.4
Gi2/0/23 auto off 0.0 n/a n/a 15.4
Gi2/0/24 auto off 0.0 n/a n/a 15.4
Gi2/0/25 auto on 15.4 Ieee PD 3 15.4
Gi2/0/26 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/27 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/28 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/29 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/30 auto off 0.0 n/a n/a 15.4
Gi2/0/31 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/32 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/33 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/34 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/35 auto on 10.5 IP Phone 7937 3 15.4
Gi2/0/36 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/37 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/38 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/39 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/40 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/41 auto on 6.3 IP Phone 7961 2 15.4
Gi2/0/42 auto off 0.0 n/a n/a 15.4
Gi2/0/43 auto off 0.0 n/a n/a 15.4
Gi2/0/44 auto off 0.0 n/a n/a 15.4
Gi2/0/45 auto off 0.0 n/a n/a 15.4
Gi2/0/46 auto off 0.0 n/a n/a 15.4
Gi2/0/47 auto off 0.0 n/a n/a 15.4
Gi2/0/48 auto off 0.0 n/a n/a 15.4 -
Hi All,
I have done the syslog remote configuration on the switch. However, logs are not being received to the server and when doing capture on the firewall, we have noticed that the switch is not sending the logs to the default port UDP 514 but to random port each time ( being incremented ).
Kindly find below the logs.
Can you please advise what's wrong?
Deny udp src MPROR:10.160.124.166/40865 dst To-Falcon:10.19.28.221/33437 by access-group "
Oct 28 17:56:32 Deny udp src MPROR:10.160.124.166/33007 dst To-Falcon:10.19.28.221/33438 by access-group "
Oct 28 17:56:35 Deny udp src MPROR:10.160.124.166/32790 dst To-Falcon:10.19.28.221/33439 by access-group "
Oct 28 17:56:38 Deny udp src MPROR:10.160.124.166/37362 dst To-Falcon:10.19.28.221/33440 by access-group "
Oct 28 17:56:41 Deny udp src MPROR:10.160.124.166/35964 dst To-Falcon:10.19.28.221/33441 by access-group "
Oct 28 17:56:44 Deny udp src MPROR:10.160.124.166/33659 dst To-Falcon:10.19.28.221/33442 by access-group "
Oct 28 17:56:47 Deny udp src MPROR:10.160.124.166/33024 dst To-Falcon:10.19.28.221/33443 by access-group "
Oct 28 17:56:50 Deny udp src MPROR:10.160.124.166/36429 dst To-Falcon:10.19.28.221/33444 by access-group "
Oct 28 17:56:53 Deny udp src MPROR:10.160.124.166/38646 dst To-Falcon:10.19.28.221/33445 by access-group "
Oct 28 17:56:56 Deny udp src MPROR:10.160.124.166/37650 dst To-Falcon:10.19.28.221/33446 by access-group "
Oct 28 17:56:59 Deny udp src MPROR:10.160.124.166/34049 dst To-Falcon:10.19.28.221/33447 by access-group "
Oct 28 17:57:02 Deny udp src MPROR:10.160.124.166/39291 dst To-Falcon:10.19.28.221/33448 by access-group "
Oct 28 17:57:05 Deny udp src MPROR:10.160.124.166/33938 dst To-Falcon:10.19.28.221/33449 by access-group "
Oct 28 17:57:08 Deny udp src MPROR:10.160.124.166/42739 dst To-Falcon:10.19.28.221/33450 by access-group "
Oct 28 17:57:11 Deny udp src MPROR:10.160.124.166/33979 dst To-Falcon:10.19.28.221/33451 by access-group "
Thanks.
JeanNPE_SWITCH#sh version
Cisco IOS Software, C3750 Software (C3750-IPBASE-M), Version 12.2(35)SE5, RELEASE SOFTWARE (fc1)
Copyright (c) 1986-2007 by Cisco Systems, Inc.
Compiled Thu 19-Jul-07 19:15 by nachen
Image text-base: 0x00003000, data-base: 0x01080000
ROM: Bootstrap program is C3750 boot loader
BOOTLDR: C3750 Boot Loader (C3750-HBOOT-M) Version 12.2(25r)SEE4, RELEASE SOFTWARE (fc1)
NPE_SWITCH uptime is 46 weeks, 4 days, 23 hours, 47 minutes
System returned to ROM by power-on
System image file is "flash:c3750-ipbase-mz.122-35.SE5/c3750-ipbase-mz.122-35.SE5.bin"
cisco WS-C3750G-24TS-1U (PowerPC405) processor (revision F0) with 118784K/12280K bytes of memory.
Processor board ID FOC1332Z2UY
Last reset from power-on
2 Virtual Ethernet interfaces
56 Gigabit Ethernet interfaces
The password-recovery mechanism is enabled.
512K bytes of flash-simulated non-volatile configuration memory.
Base ethernet MAC Address : 00:26:CA:2E:C2:80
Motherboard assembly number : 73-10219-07
Power supply part number : 341-0098-02
Motherboard serial number : FOC13311PW2
Power supply serial number : DCA132891JW
Model revision number : F0
Motherboard revision number : D0
Model number : WS-C3750G-24TS-S1U
System serial number : FOC1332Z2UY
Top Assembly Part Number : 800-26859-01
Top Assembly Revision Number : E0
Version ID : V03
CLEI Code Number : CNMWS00ARC
Hardware Board Revision Number : 0x09
Switch Ports Model SW Version SW Image
1 28 WS-C3750G-24TS-1U 12.2(35)SE5 C3750-IPBASE-M
* 2 28 WS-C3750G-24TS-1U 12.2(35)SE5 C3750-IPBASE-M
Logging Configuration :
logging source-interface Vlan668
logging 10.19.28.221
Thanks. -
Port Channel Issue on Cisco 2960s-24ts
Hi All
Last week at a customer site we installed a 2nd 2960s 24 port switch to form a stack using flexstack cables, and the switch stack is working as expected as I can see a master switch and 2nd switch as a member.
For redundancy / resilience we decided to use port 24 on each switch over copper for trunk uplinks to our core switch. The issue that we're having is I can't ping the switch management address. I can however see the address in the arp table and the edge switch is visible when I run show cdp nei. As a work around I've shutdown one of the ports to the downlink from core to edge in order to ping the management address of the switch which is in vlan 1. I'd like to get the port-channel working on both sides for resilience.
ANY HELP IS APPRECIATED...
Core switch is a WS-C3750G-24TS-1U running software version C3750 Boot Loader (C3750-HBOOT-M) Version 12.2(25r)SEE4, C3750 Software (C3750-IPBASE-M)
Edge switch is a WS-C2960S-24TS-L running software version C2960S Boot Loader (C2960S-HBOOT-M) Version 12.2(53r)SE,C2960S Software (C2960S-UNIVERSALK9-M)
The config on the edge switch which goes to the core is :
interface GigabitEthernet1/0/24
description *****
switchport mode trunk
channel-group 6 mode on
end
interface GigabitEthernet2/0/24
description *****
switchport mode trunk
channel-group 6 mode on
end
interface Port-channel6
description ******
switchport mode trunk
end
The config on the downlink ports from the core to the edge:
interface GigabitEthernet1/0/20
description Edge
switchport trunk encapsulation dot1q
switchport mode trunk
channel-group 20 mode on
end
interface GigabitEthernet2/0/20
description Edge
switchport trunk encapsulation dot1q
switchport mode trunk
shutdown
channel-group 20 mode on
end
interface Port-channel20
description Edge
switchport trunk encapsulation dot1q
switchport mode trunk
endwhen using channel-group # on mode you must make sure the ports are on same duplex and speed setting
what happens when you use active mode? -
Latest IOS for C3750G 16MB flash
Hi,
I have a couple Cisco WS-C3750G-24T with 16MB flash memory.
Using IOS c3750-ipservices-mz.122-50.SE5.bin
Can't get ssh to work and think it is because of my IOS version.
What is the latest IOS version I can use for my switches that support SSH? I need to use the "ipservices" to support VRF lite.
ThanksYou are using an image "without crypto". The image name misses the "k9". When you use one that has crypto, you can enable SSH. The recommended version is 12.2.55-SE9. All the images run with 16MB Flash.
For enabling SSH, here are some recommendations. -
Switch 3750G and 3560G and IPSEC
Hi Everyone,
Need to confirm if switches below
Cisco WS-C3560G-48PS-S Catalyst 35600G 48PT 10/100/1000T 4 SFP
or
Cisco WS-C3750G-24TS-S Catalyst Switch 4 x SFP
Do they support IPSEC VPN?
Regards
MAheshDisclaimer
The Author of this posting offers the information contained within this posting without consideration and with the reader's understanding that there's no implied or expressed suitability or fitness for any purpose. Information provided is for informational purposes only and should not be construed as rendering professional advice of any kind. Usage of this posting's information is solely at reader's own risk.
Liability Disclaimer
In no event shall Author be liable for any damages whatsoever (including, without limitation, damages for loss of use, data or profit) arising out of the use or inability to use the posting's information even if Author has been advised of the possibility of such damage.
Posting
If you mean do they support IPSec VPN termination, no they do not.
If you mean will they forward IPSec VPN packets, they do. -
Can't make LOM working more than 20 seconds after startup
Hi.
This bottle in the sea because I don't succeed to make LOM working.
The story is the following.
I have 5 Xserve Intel involved in a Xsan installation. Port 1 is used for public LAN, port 2 for private LAN, as usual.
I've configured the LOM settings for port 1 locally with Server Monitor with another IP in the public LAN.
Then I've added the Xserve in the Server Monitor of an iMac used for the administration of the SAN.
The messages I get are a waiting for an answer of the Xserve or the fact that the information have not been updated... for a long time. All the Xserve present the same problem. At this moment, it's not possible to ping the LOM Port 1.
If I add the server locally in its own Server Monitor with its LOM IP, it doesn't work either but if I try "127.0.0.1", I get the hardware informations as expected.
I've tried to shutdown a Xserve, unplug the power cords, wait one minute, plug the power cords, start it but it doesn't fix the problem. Perhaps I should have unplug the other cables ?
Finally, I've noticed that :
- when the Xserve is shut down, I can ping the LOM Port 1
- during the start up of the Xserve, the iMac gets its hardware informations for a couple of seconds
- at the moment when the login window is visible in ARD, the LOM Port 1 is no longer ping-able
- the Server Monitor on the iMac says that the connection with the Xserve has been lost.
That is to say that the iMac receives the hardware informations of the Xserve during 20 seconds after their startup, not more
I've tried to use the command sudo IPMITool lan print 1 and it seems that the configuration is correct.
I have also another problem with Server Monitor. If I try locally (with the 127.0.0.1 address) to edit notifications, I don't succeed to complete the "To" field whereas I can comlete the "From" field. Is there a known problem with the GUI here or do I have to change my glasses ?
Any idea is welcome now ! I'm lost.
All the best.Hi.
I've investigated the problem. It's simple but I 've found no solution at the moment.
The problem appears when the Xserve is connected to the Cisco Catalyst 3750G switch, can't be reproduced when the Xserve is in direct attachement with my Mac.
All the ports of this switch have been set to "Desktop" with the Web interface (after Express Setup) and the negociation (speed/duplex) is auto by default.
When the Ethernet negociation setting on the Xserve is "Automatic", the Xserve doesn't fully boot. When it is started, you have to unplug and plug the Ethernet cable so the startup is completed. Very strange.
When the Ethernet negociation setting on the Xserve is manually fixed to 1000-FD, the Xserve starts up without problem. When the Xserve is stopped, the LOM Port in pingable. When it starts a little, the LOM Port is still pingable but at the moment I think the manual setting is applied, the LOM Port is no longer pingable. This is the key of the problem.
So I tried to fix the speed/duplex in the switch and leave the Xserve on "Automatic". The story is the same: the LOM Port is desactivated after a few seconds of startup.
When the Xserve is on "Automatic" and plugged directly to my Mac, the problem doesn't exist.
The problem does not exist with the Mac Pro leaved on "Automatic".
So the problem is between the Xserve Intel and the Cisco Switch. Perhaps something to do with its settings but I do not speak "Cisco" regularly
The Cisco has product ID WS-C3750G-48TS and the Software is 12.2(25)SEE3.
I made the same test with the "private" Cisco switch product ID WS-C3750G-24T and the problem is the same.
For the moment, I leave the Xserve with the speed/duplex fixed because I prefer that the machines boot, rather than being able to consult LOM remotely when they are hanged (it works locally on 127.0.0.1 on each Xserve started).
Next step would be to play with setting the spanning tree "portfast" on the Cisco ; if it lets the Xserve to be set on "Automatic", perhaps it will solve the LOM problem and by the way the edit notification problem.
All the best ! -
Hello,
I'm diving into switching details and saw the following:
# show controllers cpu-interface
ASIC Rxbiterr Rxunder Fwdctfix Txbuflos Rxbufloc Rxbufdrain
ASIC0 0 0 0 0 0 0
ASIC1 0 0 0 0 0 0
ASIC2 0 0 0 0 0 0
ASIC3 0 0 0 0 0 0
ASIC4 0 0 0 0 0 0
ASIC5 0 0 0 0 0 0
ASIC6 0 0 0 0 0 0
Above is an output of 4 switches in a stack:
Switch Ports Model SW Version SW Image
1 28 WS-C3750G-24TS 12.2(46)SE C3750-IPSERVICES-M
* 2 28 WS-C3750G-24TS 12.2(46)SE C3750-IPSERVICES-M
3 28 WS-C3750G-24TS-1U 12.2(46)SE C3750-IPSERVICES-M
4 28 WS-C3750G-24TS-1U 12.2(46)SE C3750-IPSERVICES-M
When my math would be correct, I should see 4 switches with each 2 suppervisors: 4 * 2 = 8 ASIC's. But I only see 7 (0 t'm 6)
Where did my ASIC go?
I have to say that one ASIC doesn't have any sfp's inserted, so it's not in use probably, but is this the reason it's not showing up here?Hello p.bevilacqua,
When I read the following paper (page 49), I see 2 asic's for a 24 port 3750, and 3 for a 48 port:
http://www.cisco.com/en/US/prod/collateral/switches/ps5718/ps5023/prod_presentation09186a0080161372.pdf
I want to know more about this missing piece to understand it completely. -
Catalyst (3750 24 10/100/1000T) and (3750 12 SFP) Stacking Problems
Dear all
I'm having a very strange situation here (at least for me)
we have 4 core switches
2 x WS-C3750G-24T-S Catalyst 3750 24 10/100/1000T + IPB Image
and
2 x WS-C3750G-12S-S Catalyst 3750 12 SFP + IPB Image
Stack configuration is done this way
when the switches are powered on, the first two SFP core switches are seen as a single stack with the stack master LED turned green on the first switch
the other two (24 10/100/1000T) switches have the RPS LEDs always green, mode cannot be changed, and cannot be accessed by Console connection
but when the (24 10/100/1000T) are powered off, the first (SFP) switch in the stack reports that " Switch 3 and 4 has been removed from Stack "
which means they are stacked but there's something wrong, because
only the SFP ports are shown in the " Show interfaces status " , the ethernet ports of the bottom switches are not present !!!
can you please tell me what's the poblem ?Dear Daniel
Sorry for my delayed response but i was actually quite busy
but the problem was actually in another sense
the default profile for the Catalyst 3750 SFP is the Aggregate SDM Template
while the 3750 10/100/1000 ethernet Switch Default SDM profile was Desktop profile
so i had an SDM mismatch
DATACENTER#sh switch detail
Switch/Stack Mac Address : 081f.f3cf.1c80
H/W Current
Switch# Role Mac Address Priority Version State
*1 Master 081f.f3cf.1c80 1 0 Ready
2 Member 081f.f3cf.5900 1 0 Ready
3 Member aca0.16ac.0180 1 2 SDM Mismatch
4 Member aca0.16a3.bc80 1 2 SDM Mismatch
Stack Port Status Neighbors
Switch# Port 1 Port 2 Port 1 Port 2
1 Ok Ok 2 4
2 Ok Ok 3 1
3 Ok Ok 4 2
4 Ok Ok 1 3
all i did was changing the default profile of the SFP switches into the Desktop Profile and problem was solved
switch 1 provision ws-c3750g-12s
switch 2 provision ws-c3750g-12s
switch 3 provision ws-c3750g-24t
switch 4 provision ws-c3750g-24t
system mtu routing 1500
ip subnet-zero
no file verify auto
spanning-tree mode pvst
spanning-tree extend system-id
vlan internal allocation policy ascending
interface GigabitEthernet1/0/1
interface GigabitEthernet1/0/2
interface GigabitEthernet1/0/3
interface GigabitEthernet1/0/4
interface GigabitEthernet1/0/5
interface GigabitEthernet1/0/6
interface GigabitEthernet1/0/7
interface GigabitEthernet1/0/8
interface GigabitEthernet1/0/9
interface GigabitEthernet1/0/10
interface GigabitEthernet1/0/11
interface GigabitEthernet1/0/12
interface GigabitEthernet2/0/1
interface GigabitEthernet2/0/2
interface GigabitEthernet2/0/3
switchport trunk encapsulation dot1q
switchport mode trunk
interface GigabitEthernet2/0/4
interface GigabitEthernet2/0/5
interface GigabitEthernet2/0/6
interface GigabitEthernet2/0/7
interface GigabitEthernet2/0/8
interface GigabitEthernet2/0/9
interface GigabitEthernet2/0/10
interface GigabitEthernet2/0/11
interface GigabitEthernet2/0/12
interface GigabitEthernet3/0/1
interface GigabitEthernet3/0/2
interface GigabitEthernet3/0/3
interface GigabitEthernet3/0/4
interface GigabitEthernet3/0/5
interface GigabitEthernet3/0/6
interface GigabitEthernet3/0/7
interface GigabitEthernet3/0/8
interface GigabitEthernet3/0/9
interface GigabitEthernet3/0/10
interface GigabitEthernet3/0/11
interface GigabitEthernet3/0/12
interface GigabitEthernet3/0/13
interface GigabitEthernet3/0/14
interface GigabitEthernet3/0/15
interface GigabitEthernet3/0/16
interface GigabitEthernet3/0/17
interface GigabitEthernet3/0/18
interface GigabitEthernet3/0/19
interface GigabitEthernet3/0/20
interface GigabitEthernet3/0/21
interface GigabitEthernet3/0/22
interface GigabitEthernet3/0/23
interface GigabitEthernet3/0/24
interface GigabitEthernet4/0/1
interface GigabitEthernet4/0/2
interface GigabitEthernet4/0/3
interface GigabitEthernet4/0/4
interface GigabitEthernet4/0/5
interface GigabitEthernet4/0/6
interface GigabitEthernet4/0/7
interface GigabitEthernet4/0/8
interface GigabitEthernet4/0/9
interface GigabitEthernet4/0/10
interface GigabitEthernet4/0/11
interface GigabitEthernet4/0/12
interface GigabitEthernet4/0/13
interface GigabitEthernet4/0/14
interface GigabitEthernet4/0/15
interface GigabitEthernet4/0/16
interface GigabitEthernet4/0/17
interface GigabitEthernet4/0/18
interface GigabitEthernet4/0/19
interface GigabitEthernet4/0/20
interface GigabitEthernet4/0/21
interface GigabitEthernet4/0/22
interface GigabitEthernet4/0/23
interface GigabitEthernet4/0/24
that's it !
: D
cheers -
DHCP Server in the Aironet 1520
Hi Everyone,
I have a 1250 AP connected to an Switch Cisco 3750. We have a SSID(vlan 1 - native) which get an IP Adress from our DHCP Server(located in a Windows 2003 server).
I added a new SSID in VLAN 2 and I would like no to use the DHCP Server but to make the AP get an IP Address from the pool I created in the own AP (ip dhcp pool Guest) but everytime I try to connect the new vlan, it doesnt get an ip address.
Follow the settings of the AP. Any help, it would be very appreciate.
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
hostname BETA
enable secret 5 $1$65KK$cvnK849DOoWzq8QiMA9On.
no aaa new-model
no ip dhcp use vrf connected
ip dhcp excluded-address 10.150.4.1
ip dhcp pool Guest
network 10.150.4.0 255.255.255.0
default-router 10.150.1.1
dns-server 10.150.1.48
domain-name xxx
dot11 ssid GUEST
vlan 2
authentication open
mbssid guest-mode
dot11 ssid INTERNAL
vlan 1
authentication open
mbssid guest-mode
bridge irb
interface Dot11Radio0
no ip address
no ip route-cache
encryption vlan 1 key 1 size 128bit 7 BD4BDA5C243413C59A1115891509 transmit-key
encryption vlan 1 mode wep mandatory
encryption vlan 2 key 1 size 128bit 7 BD4BDA5C243413C59A1115891509 transmit-key
encryption vlan 2 mode wep mandatory
ssid GUEST
ssid INTERNAL
mbssid
station-role root
interface Dot11Radio0.1
encapsulation dot1Q 1 native
no ip route-cache
bridge-group 1
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
bridge-group 1 spanning-disabled
interface Dot11Radio0.2
encapsulation dot1Q 2
no ip route-cache
bridge-group 2
bridge-group 2 subscriber-loop-control
bridge-group 2 block-unknown-source
no bridge-group 2 source-learning
no bridge-group 2 unicast-flooding
bridge-group 2 spanning-disabled
interface Dot11Radio1
no ip address
no ip route-cache
shutdown
encryption key 1 size 128bit 7 FC38FBE1CFEC896823254FB402C4 transmit-key
encryption mode wep mandatory
antenna gain 4
no dfs band block
channel width 40-below
channel dfs
station-role root
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
bridge-group 1 spanning-disabled
interface GigabitEthernet0
no ip address
no ip route-cache
duplex auto
speed auto
interface GigabitEthernet0.1
encapsulation dot1Q 1 native
no ip route-cache
bridge-group 1
no bridge-group 1 source-learning
bridge-group 1 spanning-disabled
interface GigabitEthernet0.2
encapsulation dot1Q 2
no ip route-cache
bridge-group 2
no bridge-group 2 source-learning
bridge-group 2 spanning-disabled
interface BVI1
ip address 10.150.1.122 255.255.0.0
no ip route-cache
ip http server
no ip http secure-server
ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
snmp-server community Public RO
bridge 1 route ipStephen,
I changed the scope of my new range because it was overlapping with vlan 1 native. Well, I set the ip address of interface vlan 2 on my switch l3 3750 to 10.152.0.1 and set the ip helper-address to 10.150.1.122(ip address of the AP where is the DHCP pool). My laptop coulnt get the ip address.
Remenber I enabled "ip routing" on 3750 switch. Follow the config. The AP is connected in the Gi 1/0/16 port.
version 12.2
no service pad
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
hostname BR-SW-02
no aaa new-model
clock timezone UTC -3
switch 1 provision ws-c3750g-24t
system mtu routing 1500
ip subnet-zero
ip routing
no file verify auto
spanning-tree mode pvst
spanning-tree extend system-id
vlan internal allocation policy ascending
interface GigabitEthernet1/0/16
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 1,2
switchport mode trunk
interface Vlan1
ip address 10.150.1.102 255.255.0.0
interface Vlan2
ip address 10.152.0.1 255.255.0.0
ip helper-address 10.150.1.122
ip default-gateway 10.150.1.1
ip classless
ip http server -
3750G won't "age out" old arp table entries
WS-C3750G-24TS running
12.2(20)SE4, RELEASE SOFTWARE (fc1).
sho mac-address-table aging-time
Vlan Aging Time
253 300
252 300
254 300
255 300
1 300
251 300
The aging is not working. I can failover some devices I have and the mac-address of the old device associated the the IP never ages out. "Clear arp" makes the standby unit respond to pings and connectivity to the standby unit is 100% after the "clear arp".
Showing the arp cache, I can see the IP associated with the old mac-address and the "age" keeps increasing, not decreasing with the old mac-address.
It also doesn't matter if the Primary unit has been rebooted, switch keeps the old mac-address associated the Primary unit.
Suggestions?I think permanent entry should have been made into the arp cache using the "arp ip-address hardware-address type" command.
To remove this arp entry, you can try "clear arp-cache".This will delete all dynamic entries from the ARP table.
for more details, refer the following page:
http://www.cisco.com/en/US/products/sw/iosswrel/ps1828/products_command_reference_chapter09186a00800ca5b0.html#1017562
Maybe you are looking for
-
Dont want to display "Report Successfully Run" applet
Dear Users....I Dont want to display "Report Successfully Run" applet after my report runs successfully. I'm calling report from Forms-10g Rel.2 and my browser is Internet Explorer ver.6. I'm sending my report directly to printer using Web.Show_Docum
-
Default problems with msi p35 neo 2 pc works fine when using windows and the net and emails only when using 3d mark or games do i ever get problems just help in getting the hole story 6 months ago got a msi neo2 install all my old compone
-
I have CS5 64 upgrade. Recently removed CS4 and now bridge or other programs will not alow me to open any image with PS. Can open non-PSD's with Camera Raw and then open in PS but since I save images as PSD doesn't help much. Any help would be app
-
Editing text after designing a new form and converting it in to pdf
I designed a form and converted it in to PDF format for printing. The form has some formatting errors and needs to be edited. However attempt to do so results in a message stating that it is a secure documents and can not be edited. This is inspite o
-
I tunes at launch shows (-42110) code error and doesní reconize or sync wirT. Ipod
I tunes at launch shows (-42110) code error and doesní reconize or sync with. Ipod Could get me some help?