The Cisco Short Questions Thread v12.4.9(WTF)

The Something Awful Forums > Discussion > Serious Hardware/Software Crap > The Cisco Short Questions Thread v12.4.9(WTF)

«‹›2 »

H110Hawk: Dec 28, 2006

Drighton posted:

I create RMAs for faulty Cisco equipment. If you think your hardware has failed, try these troubleshooting steps to confirm it.

Hope this helps

I assume this means you work for Cisco?

We have a 6509 chassis sitting here with a shipping label on it. It has been here for nine (9) months now. We have tried on 3 seperate occasions to get Cisco to take it off our hands, but they never seem to schedule someone to pick it up. We've gone through all the right steps (we thought?) on the website. This chassis is our old dead-ish one that they shipped us an RMA replacement for after having no idea why it was breaking.

Kind sir, how do we get you guys to take it off our hands? It has been sitting there on its pallet for a long time, and has turned in to a table for our cache of 4948's.

On a similar note, I have a Sup720 with what is likely a bad flash card on it. How much of a PITA is it going to be to get this thing RMA'd? I have been having a bitch of a time navigating Cisco's website to figure out where I should actually be entering this RMA. I've found at least 2 places. We have a service contract with Cisco.

# ¿ Apr 19, 2007 18:06

Adbot: ADBOT LOVES YOU

# ¿ May 4, 2024 19:41

H110Hawk: Dec 28, 2006

Drighton posted:

Sorry for taking so long to reply, I lost the thread and only just found it. I'll have to bookmark this for any further questions.

About the 6509: There is usually a prepaid FedEx/UPS shipping label included with the RMA so you can just package the faulty chassis in the same box it was shipped, slap the label on it, then call the courier to pick it up.

Concerning the sup: Send an email to TAC@cisco.com, explain the problem in more than just a few words, include the chassis serial number for entitlement verification (Processor Board ID in Show Version output), list any troubleshooting you've performed (or just make it up I guess), then shipping and site contact information.

Unless its obvious, state what part you need. In this case, do you just need to replace the flash card, or is the slot on the sup not taking them?

Thanks for the info. :v:

I had a nice long reply typed out and closed the tab. :downs:

The short summary is, as far as I can tell, the 6509 was shipped via a freight carrier or something. I'll have a look at it one of these days. We're happy to leave it sitting there forever.

I'll be certain to include all pertinent troubleshooting information. I didn't spend my time in technical support, or berating techs now that I'm a sysadmin, to go and make someone elses life hell. (Or waste my time with half-assed emails.) I'm not certain on the exact part that needs to be replaced, but I do know that 0x2142 was being ignored and my NVRAM contents were being loaded, which was corrupt. Fun times were had by all.

# ¿ May 1, 2007 06:11

H110Hawk: Dec 28, 2006

Ray_ posted:

I had thought of stepping up to Catalyst 3560 switches, but they're about double the price of the 2960 switches and I can't find any with 4 SFP ports. It's cheaper to get a 2960 and a Powerdsine injector than it is to get a 3560 with PoE.

WS-C3560G-48TS is the part you're looking for, and they do have 4 SPF ports. I love these things, they're a good switch for a good price, if you do not need line speed backplane or jumbo packets. This is our single copper uplink port on one, during non-peak hours on a Friday:

5 minute input rate 160964000 bits/sec, 63472 packets/sec
5 minute output rate 424236000 bits/sec, 77443 packets/sec

It gets up to about 700mbit output during peak hours.

If you do need jumbo packets, we use 4948's, which are a bit pricier, but line speed and "full featured."

# ¿ May 5, 2007 02:15

H110Hawk: Dec 28, 2006

I'm trying to setup my router to use an authenticated ntp server. I have the key, etc, but it is not wanting to work. Primarily I need it to output debugging messages onto a virtual terminal session, or into `show log`. Here is the nitty gritty:

code:

Cisco IOS Software, 2800 Software (C2800NM-ADVIPSERVICESK9-M),
Version 12.4(15)T1, RELEASE SOFTWARE (fc2)
Cisco 2821 (revision 53.51) with 249856K/12288K bytes of memory.

ip route 132.163.4.107 255.255.255.255 dhcp
ntp authentication-key 33831 md5 <removed>
ntp authenticate
ntp source Vlan1
ntp update-calendar
ntp max-associations 3
ntp server 132.163.4.107 key 33831 source Vlan1

#show debug
NTP:
  NTP clock adjustments debugging is on
  NTP clock parameters debugging is on
  NTP events debugging is on
  NTP loop filter debugging is on
  NTP packets debugging is on
  NTP clock synchronization debugging is on
  NTP clock selection debugging is on
  NTP peer validity debugging is on
  NTP reference clocks debugging is on
  NTP authentication debugging is on

#sh run int vlan1
Building configuration...

Current configuration : 113 bytes
!
interface Vlan1
 ip address dhcp
 ip nat outside
 ip virtual-reassembly
 crypto ipsec client ezvpn BLUH-ASA
end

I need the router to send the ntp stuff "from" the IP that's on Vlan1. Near as I can tell it is. Tracerouting looks correct, etc. My main concern is, I cannot tell what NTP is doing. "show ntp associations" is just showing me that it's trying, but nothing useful for debugging.

H110Hawk fucked around with this message at 06:12 on Jan 23, 2008

# ¿ Jan 23, 2008 06:10

H110Hawk: Dec 28, 2006

Girdle Wax posted:

If you've already turned on the debugs, you should be able to use the command 'term mon' to have it drop debug prints to your vty

Usually when troubleshooting NTP I try to go to the other end and just sniff there and see what's going on.

Thanks! Unfortunately, I cannot sniff the other side.

jwh posted:

12.4(15)T1 is really spotty. Can you try another IOS?

Yeah, perhaps tomorrow when people leave I'll reload to our old stable revision. Our CCIE had me load that one while troubleshooting ezvpn bullshit. c2800nm-advipservicesk9-mz.124-18.bin is the other version we have on there. If you are suggesting a different version, which one would that be?

# ¿ Jan 23, 2008 08:06

H110Hawk: Dec 28, 2006

Girdle Wax posted:

If you've already turned on the debugs, you should be able to use the command 'term mon' to have it drop debug prints to your vty

Thanks! Worked like a charm. Now if it would just, you know, work!

.Jan 23 18:56:04.406: NTP: xmit packet to 132.163.4.107:
.Jan 23 18:56:04.406: leap 3, mode 3, version 3, stratum 0, ppoll 64
.Jan 23 18:56:04.406: rtdel 0560 (20.996), rtdsp 0504 (19.592), refid 407D4E55 (64.125.78.85)
.Jan 23 18:56:04.406: ref CB3A1F9B.DA3B1B30 (18:40:27.852 UTC Thu Jan 17 2008)
.Jan 23 18:56:04.406: org CB420C04.765D4A9D (18:55:00.462 UTC Wed Jan 23 2008)
.Jan 23 18:56:04.406: rec CB420C04.7E334F6C (18:55:00.492 UTC Wed Jan 23 2008)
.Jan 23 18:56:04.406: xmt CB420C44.683C0AEF (18:56:04.407 UTC Wed Jan 23 2008)
.Jan 23 18:56:04.406: Authentication key 33831
.Jan 23 18:56:04.474: NTP: rcv packet from 132.163.4.107 to 192.168.1.64 on Vlan1:
.Jan 23 18:56:04.474: leap 0, mode 4, version 3, stratum 1, ppoll 64
.Jan 23 18:56:04.474: rtdel 0000 (0.000), rtdsp 0000 (0.000), refid 41435453 (65.67.84.83)
.Jan 23 18:56:04.474: ref CB420C0C.180D3389 (18:55:08.093 UTC Wed Jan 23 2008)
.Jan 23 18:56:04.474: org CB420C44.683C0AEF (18:56:04.407 UTC Wed Jan 23 2008)
.Jan 23 18:56:04.474: rec CB420C44.769CC67D (18:56:04.463 UTC Wed Jan 23 2008)
.Jan 23 18:56:04.474: xmt CB420C44.769DCCF7 (18:56:04.463 UTC Wed Jan 23 2008)
.Jan 23 18:56:04.474: inp CB420C44.7A51C067 (18:56:04.477 UTC Wed Jan 23 2008)
.Jan 23 18:56:04.474: Authentication key 0

aon#show ntp rear end detail
132.163.4.107 configured, insane, invalid, unsynced, stratum 16
ref ID 0.0.0.0, time 00000000.00000000 (00:00:00.000 UTC Mon Jan 1 1900)
our mode client, peer mode unspec, our poll intvl 64, peer poll intvl 64
root delay 0.00 msec, root disp 0.00, reach 0, sync dist 0.000
delay 0.00 msec, offset 0.0000 msec, dispersion 16000.00
precision 2**5, version 3
org time CB420C44.769DCCF7 (18:56:04.463 UTC Wed Jan 23 2008)
rcv time CB420C44.7A51C067 (18:56:04.477 UTC Wed Jan 23 2008)
xmt time CB420C44.683C0AEF (18:56:04.407 UTC Wed Jan 23 2008)
filtdelay = 0.00 0.00 0.00 0.00 0.00 0.00 0.00 0.00
filtoffset = 0.00 0.00 0.00 0.00 0.00 0.00 0.00 0.00
filterror = 16000.0 16000.0 16000.0 16000.0 16000.0 16000.0 16000.0 16000.0

I've sent an email off to the administrator of the server to ask for assistance. Hopefully life will be good shortly.

# ¿ Jan 23, 2008 22:36

H110Hawk: Dec 28, 2006

jwh posted:

There are caveats, such as TCAM size, or features that aren't supported in hardware causing packets to punt to the processor, but you haven't described the need for anything that should be a show-stopper.

Just make sure you keep your broadcast/L2 domains small and you should be fine. We use 4948's here, and they are pretty darn nice. They're similar in price to the 3750's, but pack a bigger punch, near as I can tell. If you don't need the backplane connectors, I wouldn't use them.

If you're too worried about sales people, call up M@. He always seems to have the hookups. We have very few actual routers. Catalyst 6500 series "switches" are pretty mean routers once you put a Sup720 in them.

# ¿ Jan 24, 2008 01:12

H110Hawk: Dec 28, 2006

ionn posted:

I've seen a faulty ethernet blade in a 6509 (Sup32) bring the entire switch down (despite Cisco saying it never really happened)

I've seen pulling out a Sup720 blade while in SSO mode bring the whole thing down.

Had to powercycle the chassis to get the thing to recover.

# ¿ Jan 24, 2008 01:21

H110Hawk: Dec 28, 2006

Girdle Wax posted:

Yeah, the 4948 (internally based off a 4500 I believe) will do (supported) layer 3 on every single port, up to 2048 SVIs or something crazy. But it'll cost you.

Price out a 4948 and you might be surprised. They are "only" marginally more expensive than the 3560G. If you don't need it, you don't need it, but it could be $2,000 well spent.

Stupid TCAM size. :mad:

WS-4948 posted:

*Jan 24 02:24:36 UTC: %C4K_L3HWFORWARDING-4-FWDCAMOUTOFSPACEFORVRFROUTINGTABLE: Insufficient TCAM resources to load VRF IPv4:green routing table. Switching to software forwarding for this VRF.

# ¿ Jan 24, 2008 17:06

H110Hawk: Dec 28, 2006

Girdle Wax posted:

code:
>show ip bgp summary 
BGP router identifier 206.53.255.91, local AS number 7332
BGP table version is 43841221, main routing table version 43841221
239062 network entries using 28926502 bytes of memory
Only 8000 more prefixes or so before people start to hit the 247k count in the non-XL FCs. There are also some subtle differences between 3B and 3C- the only one that comes to mind off hand is increased TCAM space for Ethernet MACs.

So why do you have less entries using more ram?

code:

#sh ip bgp summ
BGP router identifier 66.33.201.194, local AS number 26347
BGP table version is 362005910, main routing table version 362005893
240846 network entries using 27215598 bytes of memory

Guess we're going to have to start looking in to 3CXL cards.

We finally just got everything loaded onto 3BXL cards, too!

# ¿ Jan 25, 2008 02:22

H110Hawk: Dec 28, 2006

Girdle Wax posted:

3BXLs have the same prefix table size as the 3CXL, all the 3CXL has (which requires the RSP720 anyway) is a bigger Ethernet TCAM- since it's aimed at the carrier ethernet aggregation market.

YOu're fine with the 3BXLs.

Also, I think our mem usage is a bit higher because someone probably turned on soft reconfig, how many (full table) sessions do you have on that box?
code:
#show platform hardware capacity forwarding 

I thought we had soft reconfig enabled. Perhaps not?

code:

#sh ip bgp summ
BGP router identifier 66.33.201.194, local AS number 26347
BGP table version is 362328538, main routing table version 362328538
240806 network entries using 27211078 bytes of memory
2987934 path entries using 143420832 bytes of memory
239411 multipath network entries and 1101467 multipath paths
165748/58584 BGP path/bestpath attribute entries using 16574800 bytes of memory
107905 BGP AS-PATH entries using 2949706 bytes of memory
2155 BGP community entries using 92540 bytes of memory
7 BGP route-map cache entries using 224 bytes of memory
69108 BGP filter-list cache entries using 829296 bytes of memory
BGP using 191078476 total bytes of memory
1278039 received paths for inbound soft reconfiguration
BGP activity 802193/561387 prefixes, 121724795/118736861 paths, scan interval 60 secs

  V    AS MsgRcvd MsgSent   TblVer  InQ OutQ Up/Down  State/PfxRcd
  4  3549 6356787  119664 362328520    0    0 07:55:44   239091
  4  3549 6274550  119652 362328520    0    0 1w5d       239091
  4  3549 6274138  119639 362328520    0    0 1w5d       239090
  4  3549 6274137  119641 362328520    0    0 1w5d       239090
  4  3549 6186698  119635 362328520    0    0 11w6d      239090
  4 10912 103915798  119663 362328520    0    0 1w5d       128609
  4 10912 104046355  119653 362328520    0    0 1w5d       128608
  4 10912 104012597  119641 362328520    0    0 1w5d       128608
  4 10912 103589873  119646 362328520    0    0 1w5d       128609

#show platform hardware capacity forwarding
L2 Forwarding Resources
           MAC Table usage:   Module  Collisions  Total       Used       %Used
                              5                0  65536       3827          6%
                              6                0  65536       3827          6%

             VPN CAM usage:                       Total       Used       %Used
                                                    512          0          0%
L3 Forwarding Resources
             FIB TCAM usage:                     Total        Used       %Used
                  72 bits (IPv4, MPLS, EoM)     524288      290339         55%
                 144 bits (IP mcast, IPv6)      262144           5          1%


     Forwarding engine load:
                     Module       pps   peak-pps                     peak-time
                     5        2567010    4055056  15:02:03 PST Mon Jan 14 2008
                     6        2541933    3893524  15:02:11 PST Mon Jan 14 2008

Of course, today I signed a contract to combine those AS-10912 connections into a single 10-gig pipe. Good times!

# ¿ Jan 25, 2008 03:19

H110Hawk: Dec 28, 2006

jwh posted:

What in the world: http://www.cisco.com/en/US/products/ps9402/index.html

The world made sense an hour ago.

If those are what I believe them to be, there are two of them in our datacenter already. DirecTV has a pair of them. They came in HUGE crates. They're pretty awesome looking, and they seem to be consolidating a lot of bandwidth onto them. Near as I can tell they're turning 5 racks of metro fiber gear into a pair of those.

# ¿ Jan 28, 2008 22:46

H110Hawk: Dec 28, 2006

Girdle Wax posted:

If DirecTV already has some, they're probably not Nexus since I don't think it's shipping yet, the other Cisco full rack routers would be the CRS-1 single chassis, and I think there's also a GSR (XR) that takes up a full bay.

That's what they are, then. They're pretty hot poo poo looking, though!

# ¿ Jan 29, 2008 02:44

H110Hawk: Dec 28, 2006

GLUE posted:

1. Modem does PPPoE, gets IP (xxx.xxx.xxx.xxx) from Verizon. Modem is accessible to router as 192.168.1.1. Modem acts as DHCP server to the router

2. Router requests IP from modem via DHCP, and is given 192.168.1.15 for example. This is configured as the FastEthernet0, outside interface within the router. The router acts as DHCP server to all computers connected to it.

3. VLan1 is the inside interface. VLan1 is accessible to other computers as 192.168.2.1. Other computers connect through VLan1, using DHCP getting IPs in the range 192.168.2.2 - 192.168.2.255.

We have a very similar setup. Your basic configuration is going to be:

code:

ip dhcp pool blah
   network 10.0.1.0 255.255.255.0
   default-router 10.0.1.1 
   dns-server 1.2.3.4 1.2.3.5 (copy from your current modem)
!
fastethernet0
 ip address 10.0.1.1 255.255.255.0
 ip nat inside
description office here
!
fastethernet1
 description DSL thinger here
!
interface Vlan1
 ip address dhcp
 ip nat outside
!
ip route 0.0.0.0 0.0.0.0 dhcp
!
ip nat inside source list1 interface Vlan1 overload
!
access-list 1 permit any

Our router has a bunch of other stuff, so some of that might not be needed, but I believe that should get you going!

# ¿ Jan 31, 2008 00:30

H110Hawk: Dec 28, 2006

GLUE posted:

Hmm, I tried implementing your set up but to no avail. I'm confused about why you have FE0 as inside and VLAN1 as outside; it seems like it should be the other way to me? In any case, I didn't have much success either way.

Actually, come to think of it, you might not need that Vlan1 junk in there at all. Our router is setup with a little 4-port switch inside it. Try sticking all that onto Fe1 and adjusting the various lines. Note that I have Fe0 hooked up to your interior office switch, and Fe1 hooked up directly to your router/modem's LAN port.

# ¿ Jan 31, 2008 05:02

H110Hawk: Dec 28, 2006

Spazz posted:

Is there a way to configure a router, switch, etc. to push the logs to an external server? Or some sort of external log configuration for advanced debugging?

Depending on the router you can also export netflow information. I'm not certain how detailed the syslog junk gets, but netflow is fun to walk through if you have a server that can handle your bandwidth. If you want basic command logging, tacacs+ (aaa) lets you log user commands.

# ¿ Feb 20, 2008 16:23

H110Hawk: Dec 28, 2006

Walked posted:

I currently have lab access to a CCNA lab for the evening through a class I took. Anyone care to hop on AIM and give me some suggestions for things to work on configuring and whatnot? It's really kinda pointless when I have a step by step guide in front of me, yaknow?

Just read the subject and not the how to the follows. See if you can make it work.

# ¿ Feb 23, 2008 06:59

H110Hawk: Dec 28, 2006

jbiel posted:

EDIT: Apparently sporadic traffic isn't enough to keep a MAC populated in the table....bullshit if you ask me.

Set your mac address aging timer higher?

# ¿ Feb 26, 2008 18:07

H110Hawk: Dec 28, 2006

jbiel posted:

While that is a viable option, why not keep the loving MAC tied to the port as long as the port stays UP/UP? God drat Cisco.

On large networks you can run in to mac table exhaustion if you do this. If the other side is a switch it could have god knows how many mac addresses tied to it.

Why not inventory the MAC's as the servers come in to the network? Why not inventory them off your DHCP server? Why not run ARP against the known IP address and figure it out from there?

Why not have a real network that pushes traffic constantly?

# ¿ Feb 27, 2008 00:04

H110Hawk: Dec 28, 2006

inignot posted:

Multihoming with internap and another ISP would be an adventure as well. You would have to prepend the AS path with the non internap ISP since the internap connection has their clown AS between you and the ISPs they are connected to.

I'm not really up on how BGP works entirely. I see our really quite long configuration dealing with what prefixes go where, but we never had any problems I can think of homing them with L3 and GBLX.

We're trying (hear me Internap?) to turn up a 10gig line with them we ordered over a month ago at this point. They keep dropping the ball at various points. I think part of it is our sales guy, who at this point has stopped returning my calls.

Either way, we've had the least amount of technical problems from them than any other provider with which we've gone. It's great, our Internap network technician guy pretty openly hates the entire non-technical staff, but he knows his poo poo and gets the job done, so they seem to tolerate him. Global Crossing and Level3 technical support can suck it. Seriously.

# ¿ Feb 27, 2008 07:45

H110Hawk: Dec 28, 2006

CrazyLittle posted:

From what I can see, all the fiber vendors are dragging their feet with fiber installs because it tends to require significantly higher human investment in the install process.

Near as I can tell no one is pulling new fiber, or very little new fiber. I just need people to go connect jumpers.

(At least, I seriously doubt they pulled new dark fiber between wilshire connection and our 1200 w 7th datacenter. And the termination point for that pre-pulled a shitton of fiber years ago between all of the internal datacenters. I'm friends with the manager in there and the fiber is there, just needs to be patched. I have been patched from my router to Internap's patch panel for over a month.)

# ¿ Feb 27, 2008 09:00

H110Hawk: Dec 28, 2006

I would just like to thank this thread for the "packet-tracer" command. Holy poo poo is that useful. I was an ASA configuring fool today at work.

# ¿ Mar 5, 2008 04:00

H110Hawk: Dec 28, 2006

M@ posted:

Do any of you guys have experience with the new VS-S720-10G-3Cs? We're putting together a test machine and the SUP is failing to boot. It's being installed (SLOT 5) into a 6509-E w/ dual 3000W AC and a 6748-GE-TX.

Can you paste us some console output? I don't have any experience with those fancy pants new SUP's, but I have some with general Cisco junkola. Include the config register, ROMMON output, etc.

Oh, hey M@. Send it on over to me, I'll get it booting for you.

# ¿ Mar 14, 2008 20:54

H110Hawk: Dec 28, 2006

M@ posted:

Edit: After loading 12.2.18 (I think) onto our Regular SUP we now see a "Supervisor Engine" in slot 5, but it's still saying unknown for the MAC. Trying a new IOS now

That was going to be my suggestion. We're running: (s72033_rp-IPSERVICESK9-M) Version 12.2(18)SXF10

Again, we don't have that fancy pants sup. Honestly I doubt I could tell you anything you don't already know. I mainly wanted you to send it to me so it could get "lost in the mail."

If you want, I can IM you with our CCIE contractor's contact information. He charges 1.5 arms, but no legs, and can almost certainly make the both of us feel like idiots for not getting it booting.

# ¿ Mar 14, 2008 22:04

H110Hawk: Dec 28, 2006

Spazz posted:

I can't get it to route.

It looks like you're missing something along the lines of a route statement!

ip route 0.0.0.0 0.0.0.0 dhcp

# ¿ Mar 24, 2008 16:16

H110Hawk: Dec 28, 2006

permanoob posted:

In the meantime, I'll just submit a TAC request for assistance.

The TAC can be frustrating at times. We were trying to figure out why one of our etherchannel ports was getting 2x the bandwidth of the others, regardless of the balancing algorithm we picked. Lots of back and forth, disruptive troubleshooting, etc.

http://www.cisco.com/warp/public/473/4.html#cat6k

Fuckers. (Sorry for the rant.) Way to sell more switchports. Yesterday I had to burn 3 extra Cat6k GigE ports to make this actually not drop packets:

code:

  MTU 1500 bytes, BW 8000000 Kbit, DLY 10 usec,
  5 minute input rate 3572908000 bits/sec, 756909 packets/sec
  5 minute output rate 4257996000 bits/sec, 747013 packets/sec

(I can hear the cash register ringing in M@'s head.)

# ¿ Mar 26, 2008 17:44

H110Hawk: Dec 28, 2006

Girdle Wax posted:

What are you up to, 8GbE ports? Wouldn't it be cheaper at that point (assuming you're using 6724s) to get some 6704s in and do 1x10GbE instead of 8x1GbE etherchannel? Or could you just do OSPF ECMP over a pair of 2-3x1GbE etherchannels and load balance at layer 3?

We're using 6748's hooked up to 4948's. Most of this is L2 traffic going from web servers to their NAS boxes. I could swap out the 4948 for a 4948-10GE and burn the last 10gig port on my 6708-10GE-3CXL, plus a few grand in X2 modules, but 8x1gig copper seems cheaper to me.

Perhaps I should put a second 6509 in place and just load it to the gills with 6748's and use it for rack aggregation? Use a 10gig etherchannel to get it to hit our BGP gateways, and move most of the OSPF stuff for those racks to the new copper monster.

jwh posted:

Wait, you had to burn three additional ports to solve the "odd-number" etherchannel bundle problem, or you had to burn three additional ports to work around some kind of asic limitation?

The odd-number etherchannel problem. I guesstimated my bandwidth needs at 4gigs, I was pretty drat close, honestly. I put on 2 more links, and then I was sitting at 900meg/900/500/500/500/500. Those 900 meg ports were dropping a few hundred pps (thousand? I didn't look closely, I jumped out of my chair and started pulling cables.)

# ¿ Mar 26, 2008 20:49

H110Hawk: Dec 28, 2006

jwh posted:

Has anyone used Lantronix SLC console servers? I'm looking for something to replace our Avocents, which I do not like very much.

I've never used either, but we really love the Digi CM 48-port console servers. :3:

# ¿ Mar 31, 2008 23:19

H110Hawk: Dec 28, 2006

XakEp posted:

code:

Switch#sh run
!
interface VLAN1
 ip address 172.16.15.25 255.255.0.0
 ip directed-broadcast
 no ip route-cache
!

I doubt it matters with vlan1, but have you tried entering "vlan 1" ?

# ¿ Apr 14, 2008 22:28

H110Hawk: Dec 28, 2006

XakEp posted:

Entering it for what?

Just enter it in as a configuration line, then bail out.

conf t
vlan 1
exit/^z/whatever.

# ¿ Apr 14, 2008 22:59

H110Hawk: Dec 28, 2006

Girdle Wax posted:

You want (assuming you're looking for something free) RANCID. RANCID RANCID RANCID.
http://www.shrubbery.net/rancid/
Which will back up most of your devices configs (as well as other info like "show ver" and hardware info) into CVS/SVN (although SVN is a bunch of work to set up).

Seconded! This is some awesome stuff right here. What, my slot6 went from Supervisor-720 to Supervisor-Other, you say? Time to get a case going with Cisco!

# ¿ Apr 29, 2008 15:42

H110Hawk: Dec 28, 2006

jbusbysack posted:

Personally what I use is a USB/serial converter device that I then plug the rollover cable into. http://www.newegg.com/Product/Product.aspx?Item=N82E16812107108 for example. Don't mess around with ethernet jacks and console cables it's just a mess.

There can be only one.

http://www.keyspan.com/products/usa19hs/

(Just a third opinion.)

# ¿ May 10, 2008 02:09

H110Hawk: Dec 28, 2006

CrazyLittle posted:

This Keyspan one gave me a lot of grief in Vista and would frequently crash PuTTY.

Both of those problems sound self-inflicted, honestly.

The Keyspan driver for mac is also very picky. If you don't do it exactly as indicated on the packaging it will never work on that mac, near as I can tell.

# ¿ May 13, 2008 15:12

H110Hawk: Dec 28, 2006

Biggz posted:

We will be buying the new equipment shortly, what *new* hardware would you recommend?

Also, but i'm not holding my breath about this one, is it possible to get a hold of the CCNA teaching materials? When I did my CCNA at a netacademy there were brilliant slide shows and presentations along with a Lab book.

I would pick up a couple of L3 capable 12-port switches, and a few small routers with WIC's you can hook together. I don't have any specific model recommendation, but you really only need 5 total boxes to play with everything the ccna books suggest. I would get the units they sell the most of in that feature range, so that they can be familiar with the units they sell.

I assume this means something like a Cat4948, Cat 3570? Whats the new hot poo poo stacking switch? And then something like a 2600 or 1800 series router.

Or, you know, just throw a pile of 6500 series chassis into a room with various sups and line cards, then see what they can get routing!

# ¿ Jun 19, 2008 17:05

H110Hawk: Dec 28, 2006

I'm having an oddball problem with a port on our 6748-GE-TX w/ 6700 CFC line card in our 6509 chassis (Sup720-3BXL) when connected to a 4948 switch running the standard image.

We have it in a 4 port etherchannel, both sides configured identically using the range command. When the ports are connected, the 6509 side just blinks slowly green/off, nothing in logs, and it always makes me nervous to turn those on debugging/logging on that switch. The other side shows nothing, turned on all event logging for that interface and nothing comes up in the logs. Changed ports on the 6748 and it links up just fine.

I suspect the port is simply hosed. Ideas?

code:

!
interface Port-channel5
 description nav-core01
 switchport
 switchport trunk encapsulation dot1q
 switchport trunk allowed vlan 102,200
 switchport mode trunk
end

!
interface GigabitEthernet1/48
 switchport trunk encapsulation dot1q
 switchport trunk allowed vlan 102,200
 switchport mode trunk
 media-type rj45
 channel-group 5 mode desirable
end

IOS (tm) s72033_rp Software (s72033_rp-IPSERVICESK9-M), Version 12.2(18)SXF10, RELEASE SOFTWARE (fc1)
Cisco IOS Software, Catalyst 4000 L3 Switch Software (cat4000-I9S-M), Version 12.2(25)EWA11, RELEASE SOFTWARE (fc1)

# ¿ Aug 29, 2008 21:38

H110Hawk: Dec 28, 2006

atticus posted:

I suggest you try "show etherchannel 5 summary" as you bring up the interfaces so you can monitor the port-states for the ports in Po5 from an etherchannel perspective.

I'd also suggest running "debug etherchannel events" on the 6500 and the relevant equivalent command on the 4948. Everyone likes to freak out about debug commands, but certain ones aren't as bad as others and are completely invaluable troubleshooting tools.

I'll try this out with a cold 4948 and the bum port next week sometime.

We use desirable for the other quoted reasons. We used to use `on`, but it's just too annoying having some douchebag with a laptop getting 500mbit of traffic destined for somewhere else.

And we use the exact setup mentioned for core/dist(aggregation)/edge. 6509 with etherchanneled 4948's hooked up to it, and single-gig 2960's which have the servers themselves plugged in to them. Yes, 100mbit to the servers. We tend to use 3560G's for the filer edge, though.

# ¿ Sep 1, 2008 17:16

H110Hawk: Dec 28, 2006

Chuu posted:

I have a rj-45 -> db9 management cable. If I use a db9->usb adaptor (example : link) can I use this on a computer without a serial port?

You can't really have a "dumb" adapter. A USB and a RS-232 chip are both pennies per unit. You are looking at the finest in slave labor assembled/stolen/both USB adapter. I would suggest getting a keyspan.

# ¿ Sep 1, 2008 21:59

H110Hawk: Dec 28, 2006

Chuu posted:

I have the same problem when trying to connect to the tftp server directly from the bootstrap loader. Is there some way around this to get a newer IOS image on this router?

You kids and your trivial file transfer protocol witchcraft. Have you tried Xmodem, or similar?

# ¿ Sep 3, 2008 07:08

H110Hawk: Dec 28, 2006

Chuu posted:

RCP didn't come into IOS until 12.3. These routers are loaded with 12.2 and 12.1, I thought tftp or direct serial was the only option, didn't realize you could use xmodem from the bootstrap loader.

Oh, shoot. I meant to say the slowest option. Use serial set to lowest baud rate.

# ¿ Sep 4, 2008 02:33

Adbot: ADBOT LOVES YOU

# ¿ May 4, 2024 19:41

H110Hawk: Dec 28, 2006

routenull0 posted:

We used: http://shrubbery.net/rancid/ in conjunction with custom scripts that would log in to all the devices and dump the config for us.

Seconding Rancid. We use it, and it's great to just have a CVS store of your files. We also have it setup to email everyone changes. Just make sure you have all of your passwords written down somewhere secure.

# ¿ Sep 18, 2008 22:18

The Something Awful Forums > Discussion > Serious Hardware/Software Crap > The Cisco Short Questions Thread v12.4.9(WTF)

«‹›2 »