[c-nsp] WS-C2960G-48TC-L issue
Customer has a WS-C2960G-48TC-L. They are saying that switch can receive but not transmitting. Not sure if it's a setting/configuration issue or something else. Can anyone help me with this issue? -- regards, Nathaniel Bernadeau Gallant Systems, LLC 11064 Livingston RD Suite 106-C Fort Washington, MD 20744 Ph: 301-627-6358 ext 401 Direct: 301-970-9911 Fax: 240-823-6897 Cell: 202-246-2229 nbernad...@gallantsys.com www.gallantsys.com ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] WS-C2960G-48TC-L issue
Need some info so we can help. Show run Sh int des Show vlan Sh ver -Original Message- From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of Nathaniel Bernadeau Sent: Thursday, December 27, 2012 1:32 PM To: cisco-nsp@puck.nether.net Subject: [c-nsp] WS-C2960G-48TC-L issue Customer has a WS-C2960G-48TC-L. They are saying that switch can receive but not transmitting. Not sure if it's a setting/configuration issue or something else. Can anyone help me with this issue? -- regards, Nathaniel Bernadeau Gallant Systems, LLC 11064 Livingston RD Suite 106-C Fort Washington, MD 20744 Ph: 301-627-6358 ext 401 Direct: 301-970-9911 Fax: 240-823-6897 Cell: 202-246-2229 nbernad...@gallantsys.com www.gallantsys.com ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ CONFIDENTIALITY NOTICE: This e-mail transmission, and any documents, files or previous e-mail messages attached to it may contain confidential information that is legally privileged. If you are not the intended recipient, or a person responsible for delivering it to the intended recipient, you are hereby notified that any disclosure, copying, distribution or use of any of the information contained in or attached to this transmission is STRICTLY PROHIBITED. If you have received this transmission in error please notify the sender immediately by replying to this e-mail. You must destroy the original transmission and its attachments without reading or saving in any manner. Thank you. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] 7206 NVRAM issue
Correct me if I am wrong, but NVRAM is non-volatile RAM, i.e. it doesnt need power to retain its contents. If that is failing, I would suspect something worse than a dud battery. On 27 December 2012 11:52, Wilkinson, Alex alex.wilkin...@cba.com.auwrote: 0n Thu, Dec 27, 2012 at 09:09:48AM +1100, Joseph Mays wrote: Got a used 7206 I am trying to bring back to life. It seems to be able to read the PCMCIA card in the slot okay, but after a power cycle it loses config and claims the NVRAM is corrupt, throwing me to rommon. From there I can tell it to boot from disk0 and it boots alright from the PCMCIA card into the default config. Needless to say, any config I have entered gets lost. Which NVRAM is it referring to? The 4 meg on the motherboard? Is there anyway to clear and reset that, or does it just need to be replaced? Warning: monitor nvram area is corrupt ... using default values C7200 platform with 131072 Kbytes of main memory [after a power cycle] System Bootstrap, Version 12.2(4r)B, RELEASE SOFTWARE (fc1) TAC Support: http://www.cisco.com/tac Copyright (c) 2002 by cisco Systems, Inc. Warning: monitor nvram area is corrupt ... using default values C7200 platform with 131072 Kbytes of main memory rommon 1 boot disk0 I have seen a very similar hardware bug on 65K-SUP720s: http://www.cisco.com/en/US/ts/fn/200/fn27595.html -Alex ** IMPORTANT MESSAGE * This e-mail message is intended only for the addressee(s) and contains information which may be confidential. If you are not the intended recipient please advise the sender by return email, do not use or disclose the contents, and delete the message and any attachments from your system. Unless specifically indicated, this email does not constitute formal advice or commitment by the sender or the Commonwealth Bank of Australia (ABN 48 123 123 124) or its subsidiaries. We can be contacted through our web site: commbank.com.au. If you no longer wish to receive commercial electronic messages from us, please reply to this e-mail by typing Unsubscribe in the subject line. ** ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] ASA VPN Tunnels
Got a little bit of a tricky one... I have an existing ASA5510 acting as a remote access gateway, serving AnyConnect VPN clients and ASA VPN Clients. Almost everyone is having no problems. I have 1 user who has a ASA5505 set up as a client. User has CenturyLink DSL at his house. I had him configure the DSL Modem to provide DMZ functions to his ASA5505. I have Turned up the lifetime on the tunnel, as well as the timeout functions. I have dropped MTU from 1492 to 1300 on the ASA inside and outside. When it works, it works beautifully, however about every 10 minutes the 5505 drops off the tunnel. Nothing in logs on either side, just a Tearing down IKE session message. Anyone have any additional suggestions? ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] ASA VPN Tunnels
I should follow this up with the fact that I cannot just do bridge mode and the put the IP directly on the ASA. For compliance reasons the only 2 things that can be connected to the ASA are a Cisco phone and a work laptop. So his home network lives off a Linksys on another port of the DSL Modem. I should also say I have 18 more in this identical setup using Comcast or similar that have no problems. Those ones don't even have the DMZ set up and they work fine. -Original Message- From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of Blake Pfankuch Sent: Thursday, December 27, 2012 3:39 PM To: cisco-nsp@puck.nether.net Subject: [c-nsp] ASA VPN Tunnels Got a little bit of a tricky one... I have an existing ASA5510 acting as a remote access gateway, serving AnyConnect VPN clients and ASA VPN Clients. Almost everyone is having no problems. I have 1 user who has a ASA5505 set up as a client. User has CenturyLink DSL at his house. I had him configure the DSL Modem to provide DMZ functions to his ASA5505. I have Turned up the lifetime on the tunnel, as well as the timeout functions. I have dropped MTU from 1492 to 1300 on the ASA inside and outside. When it works, it works beautifully, however about every 10 minutes the 5505 drops off the tunnel. Nothing in logs on either side, just a Tearing down IKE session message. Anyone have any additional suggestions? ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] 7206 NVRAM issue
Seems I am wrong. :-) http://www.cisco.com/en/US/docs/routers/7200/install_and_upgrade/7200_i.o_controller_install/4447io.html#wp174391 5 The NVRAM on some I/O controllers is replaced by a 32-pin nonsocketed SRAM component that is soldered onto the card. The SRAM component is made to act like the NVRAM by the addition of some external components, one of which is a 1-inch (2.54-cm) button-type lithium battery. Though I suppose the key words are made to act like. :-P On 28 December 2012 09:30, Tom Storey t...@snnap.net wrote: Correct me if I am wrong, but NVRAM is non-volatile RAM, i.e. it doesnt need power to retain its contents. If that is failing, I would suspect something worse than a dud battery. On 27 December 2012 11:52, Wilkinson, Alex alex.wilkin...@cba.com.auwrote: 0n Thu, Dec 27, 2012 at 09:09:48AM +1100, Joseph Mays wrote: Got a used 7206 I am trying to bring back to life. It seems to be able to read the PCMCIA card in the slot okay, but after a power cycle it loses config and claims the NVRAM is corrupt, throwing me to rommon. From there I can tell it to boot from disk0 and it boots alright from the PCMCIA card into the default config. Needless to say, any config I have entered gets lost. Which NVRAM is it referring to? The 4 meg on the motherboard? Is there anyway to clear and reset that, or does it just need to be replaced? Warning: monitor nvram area is corrupt ... using default values C7200 platform with 131072 Kbytes of main memory [after a power cycle] System Bootstrap, Version 12.2(4r)B, RELEASE SOFTWARE (fc1) TAC Support: http://www.cisco.com/tac Copyright (c) 2002 by cisco Systems, Inc. Warning: monitor nvram area is corrupt ... using default values C7200 platform with 131072 Kbytes of main memory rommon 1 boot disk0 I have seen a very similar hardware bug on 65K-SUP720s: http://www.cisco.com/en/US/ts/fn/200/fn27595.html -Alex ** IMPORTANT MESSAGE * This e-mail message is intended only for the addressee(s) and contains information which may be confidential. If you are not the intended recipient please advise the sender by return email, do not use or disclose the contents, and delete the message and any attachments from your system. Unless specifically indicated, this email does not constitute formal advice or commitment by the sender or the Commonwealth Bank of Australia (ABN 48 123 123 124) or its subsidiaries. We can be contacted through our web site: commbank.com.au. If you no longer wish to receive commercial electronic messages from us, please reply to this e-mail by typing Unsubscribe in the subject line. ** ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] spanning tree on me3600x
That's correct. EVC only supports MST. Regards, Waris -Original Message- From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of Reuben Farrelly Sent: Wednesday, December 26, 2012 1:08 PM To: Aaron Cc: cisco-nsp@puck.nether.net Subject: Re: [c-nsp] spanning tree on me3600x Hi Aaron See: http://www.cisco.com/en/US/docs/switches/metro/me3600x_3800x/software/release/15.2_4_S/configuration/guide/swevc.html#wp1002521 *When STP mode is PVST+ or PVRST, EFP information is not passed to the protocol. EVC only supports only MSTP. We're running Rapid-PVST but it only operates on normal trunk and access ports, and not via EVCs. I had a TAC case going where there was suspicions that STP was the cause of a problem we were seeing, advice from the BU engineer at the time was that Rapid-PVST would and could never be supported across EFP. It's MST or nothing. Reuben On 27/12/2012 2:02 AM, Aaron wrote: I don't see any instances of spanning tree running for various efp's I've created in my ME3600. Is there something different with spanning tree and the Me3600x that is much different than older cisco switches ? voice-3600#sh spanning-tree interface g0/4 efp 336 no spanning tree info available for GigabitEthernet0/4 voice-3600#sh run | in span spanning-tree mode rapid-pvst spanning-tree extend system-id spanning-tree vlan 336 priority 24576 voice-3600#sh spann vl 336 Spanning tree instance(s) for vlan 336 does not exist. voice-3600#sh run in g0/4 interface GigabitEthernet0/4 description ring 3 - 3y6 vlans switchport trunk allowed vlan none switchport mode trunk load-interval 30 service instance 316 ethernet encapsulation dot1q 316 rewrite ingress tag pop 1 symmetric bridge-domain 316 ! service instance 336 ethernet encapsulation dot1q 336 rewrite ingress tag pop 1 symmetric l2protocol peer stp bridge-domain 336 ! End ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] ASR9K Netflow nextas/prevas only?
It's been a while since I've played with netflow, but back in the olden days, I seem to remember srcas and dstas were pretty useful. I'd use that to figure where my traffic was going and figure out what IX I should pull to or what upstream I should buy from. Now in the ASR9K/v9/IPFIX days, it seem that Cisco has done something silly and turned off bgpSourceAsNumber (16)/bgpDestinationAsNumber (17) fields in favor of bgpNextAdjacentAsNumber (128) and bgpPrevAdjacentAsNumber (129). Pretty much rendering any sort of decent traffic engineering useless. What are folks doing to workaround this? The only thing I can see is something like pmacct that can correlate real-time BGP data to get source/destination AS. as-stats looked interesting, but it's v8 only. Any advice? Thanks in advance. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] ASR9K Netflow nextas/prevas only?
You can also use a tool like nprobe to add in the AS data and push it on Sent from some sort of iDevice. On 28/12/2012, at 1:57 PM, Jason Lixfeld ja...@lixfeld.ca wrote: It's been a while since I've played with netflow, but back in the olden days, I seem to remember srcas and dstas were pretty useful. I'd use that to figure where my traffic was going and figure out what IX I should pull to or what upstream I should buy from. Now in the ASR9K/v9/IPFIX days, it seem that Cisco has done something silly and turned off bgpSourceAsNumber (16)/bgpDestinationAsNumber (17) fields in favor of bgpNextAdjacentAsNumber (128) and bgpPrevAdjacentAsNumber (129). Pretty much rendering any sort of decent traffic engineering useless. What are folks doing to workaround this? The only thing I can see is something like pmacct that can correlate real-time BGP data to get source/destination AS. as-stats looked interesting, but it's v8 only. Any advice? Thanks in advance. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] ASR9K Netflow nextas/prevas only?
I believe nprobe's proxy mode should do what you want Sent from some sort of iDevice. On 28/12/2012, at 2:19 PM, Mark Tees markt...@gmail.com wrote: You can also use a tool like nprobe to add in the AS data and push it on Sent from some sort of iDevice. On 28/12/2012, at 1:57 PM, Jason Lixfeld ja...@lixfeld.ca wrote: It's been a while since I've played with netflow, but back in the olden days, I seem to remember srcas and dstas were pretty useful. I'd use that to figure where my traffic was going and figure out what IX I should pull to or what upstream I should buy from. Now in the ASR9K/v9/IPFIX days, it seem that Cisco has done something silly and turned off bgpSourceAsNumber (16)/bgpDestinationAsNumber (17) fields in favor of bgpNextAdjacentAsNumber (128) and bgpPrevAdjacentAsNumber (129). Pretty much rendering any sort of decent traffic engineering useless. What are folks doing to workaround this? The only thing I can see is something like pmacct that can correlate real-time BGP data to get source/destination AS. as-stats looked interesting, but it's v8 only. Any advice? Thanks in advance. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/