Interesting problem 3550 etherchannel problem

Rose International MIDDLETOWN, NJ

Intellectual Capital Services Jersey City, NJJob description: ...the NJ area. This position will involve the design, development and implementation of a global financial network. CCNP or CCIE preferred. CCNA will be considered based on combined experience. Previous financial industry experience, as well...

Project Manager

ThinkEnergyGroup.com Newark, NJJob description: ...Paid Vacation401KHealth Insurance, and more... Related Words: ccie, certified cisco, ccna, ccnp, ccdp, ccna, ccda, cisco certified, ccne, ccda, cvoice, call center, calling center, call volume, monitored...

Senior Network Engineer

Kforce Technology Staffing New York, NYJob description: ...* BS degree in Electronic Engineering or Computer Science* 5+ years of experience in the network industry* CCIE, CCNA, and CCNP qualification are pluses

July 2009
M	T	W	T	F	S	S
« Jun		Aug »
	1	2	3	4	5
6	7	8	9	10	11	12
13	14	15	16	17	18	19
20	21	22	23	24	25	26
27	28	29	30	31

CCIE jobs – US

Sr. Data Consultant

Insight Costa Mesa, CA

Network Engineer

Rose International MIDDLETOWN, NJ

Sr. Systems Engineer

Heartland Business Systems Chicago, ILJob description: ...security (SSH, SSL, 802.1x, etc.)o Secure Wireless solutionso Network monitoring and managemento CCNP, CCIE, or HP ASE/MASE preferred* Securityo SANS GIAC second level certification (GCFW, GCIA, GCUX, GCWN, etc....

Sr. Network Engineer

CONNECT: The Knowledge Network Spokane, WAJob description: ...- Advanced knowledge of Windows Server Operating Systems, Cisco IOS, firewalls, switches, and routing equipment- Cisco certifications (especially CCIE) strongly desiredSalary is competitive and commensurate with experience. Preference will be given to candidates in the...

CCIE - Cisco Pre Sales Architect - Enterprise Data Center SE

CyberCoders Seattle, WAJob description: Minimum Required Skills:Cisco, CCIE, Pre Sales Engineer, Nexus, UCS, CCNP, Network Architect, Network Engineer, CCSP, CCVP, VVMWareCCIE - Cisco Pre Sales...

Packet Life

RIPE plays with 1.1.1.1 and 1.2.3.4 following APNIC allocation

Last month, IANA allocated the 1.0.0.0/8 and 27.0.0.0/8 networks to APNIC (the Internet registry for the Asia-Pacific region), pushing the total IPv4 address space utilization above the ominous 90% mark. Passing this benchmark should not come as a surprise to anyone, given the painfully slow adoption of IPv6. But what's interesting about the first range […]

Understanding IP prefix lists

IOS prefix lists work like access lists for route advertisements (prefixes). While extended (and to a limited extent, standard) access lists can be employed to match prefix announcements, prefix lists are generally more graceful. Prefix lists work very similarly to access lists; a prefix list contains one or more ordered entries which are processed sequentia […]

A call for educational IOS licensing

As Greg Ferro of Etherealmind has pointed out, IOS 15.0 will be introducing some significant complexity into the way we install and manage IOS images on Cisco routers. This brings some potentially devastating changes to the way we've been maintaining IOS devices for the last decade or so. Up to and including IOS 12.4, the software image to be installed […]

EtherChannel considerations

EtherChannel is Cisco's term for bundling two or more physical Ethernet links for the purposes of aggregating available bandwidth and, to a lesser extent, providing a measure of physical redundancy. Under normal conditions, all but one redundant physical link between two switches will be disabled by STP at one end. With EtherChannel configured, multiple […]

Fight Lab

The rules of Fight Lab are: You do not talk about IOS licensing. YOU DO NOT TALK ABOUT IOS LICENSING. If someone yells "stop," goes limp, or taps out, the lab is over. Only two guys (or girls) to a pod. One lab a time. No formatting, no deletions. Labs will go on as long as they have to. If this is your first lab, you have to write erase & relo […]

Review of the Opengear CM4116

For years, I've wanted to put together a collection of lab hardware for public use, but had many technical obstacles to overcome. Many people starting out in networking have grown accustomed to deploying old Cisco 2511 routers as access servers for labs. While these might suffice for an individual, they're hardly a robust solution and simply unfit […]

BGP peer templates

When Cisco introduced peer groups for BGP neighbors, their intention was to associate neighbors which shared routing policies in an effort to optimize CPU utilization. A side effect of peer-group configuration is reduced syntax. For example, consider the following verbose configuration: neighbor 192.168.0.1 remote-as 100 neighbor 192.168.0.1 ttl-security hop […]

Understanding NAT address types

My first networking job was an airman in the US Air Force. Having been deepy involved with early Internet development, the US military owns significant chunks of the IPv4 address space. As such, network address translation (NAT) is often unnecessary on DoD-owned networks. While this made for convenient design, it prevented me from gaining vital real-world ex […]

Routing table profiling

As of 12.0, Cisco IOS routers include a little-known feature to aid in tracking changes to the routing table: ip route profile. Here we examine how this feature offers an indicator of the network's stability. The routing table of any router in the above topology is predictable: R1# show ip route Codes: C - connected, S - static, R - RIP, M - mobile, B - […]

Learn the phonetic alphabet

How often have you been on one end of a telephone conversation that went like this? A: "Okay, give me the MAC address." B: "Zero zero, zero two, six bee--" A: "Six what?" B: "Bee." A: "Bee?" B: "No, bee!" A: "Dee?" B: "Yeah. Six bee, four dee--" A: "Four bee?" ...and so […]

Interesting problem 3550 etherchannel problem

Posted by Peter Kurdziel on July 8, 2009

ref: http://forum.internetworkexpert.com/ubbthreads.php/ubb/showflat/Number/14757/page/1#Post14757

If you use a 3550 as SW3 or SW4 it doesn’t like traffic being routed out a layer 3 port and then back across the switch in layer 2. 3560’s are fine with this behaviour. I think this is because a 3550 will send traffic for it’s own L3 port to the CPU:

My SW4 is a 3550 and my SW3 is a 3560:

Rack1SW4#sh run int fa0/20
Building configuration…

Current configuration : 87 bytes
!
interface FastEthernet0/20
no switchport
ip address 204.12.1.10 255.255.255.0
end

Rack1SW4#sh int fa0/20 | i bia
Hardware is Fast Ethernet, address is 000c.ced3.c580 (bia 000c.ced3.c580)

Rack1SW4#sh mac-address-table address 000c.ced3.c580
Mac Address Table
——————————————-

Vlan Mac Address Type Ports
—- ———– ——– —–
All 000c.ced3.c580 STATIC CPU
Total Mac Addresses for this criterion: 1

Rack1SW3#sh run int fa0/21
Building configuration…

Current configuration : 86 bytes
!
interface FastEthernet0/21
no switchport
ip address 204.12.1.9 255.255.255.0
end

Rack1SW3#sh int fa0/21 | i bia
Hardware is Fast Ethernet, address is 001a.6c81.15c1 (bia 001a.6c81.15c1)

Rack1SW3#sh mac-address-table address 001a.6c81.15c1
Mac Address Table
——————————————-

Vlan Mac Address Type Ports
—- ———– ——– —–
53 001a.6c81.15c1 DYNAMIC Fa0/19
Total Mac Addresses for this criterion: 1

So you can see that SW3 knows at layer 2 to get to the layer 3 port you need to go out via the trunk to SW4 and back over the access-vlan to the layer 3 interface.

SW4 thinks that to get to this mac address you go to the CPU, not out the trunk to SW3 and back over the access-vlan to the layer 3 interface.

For this reason SW4 cannot ping SW3 or R5, only BB3 (which is connected to SW3 so the traffic needn’t transit back over SW4 at layer 2).

Rack1SW4#ping 204.12.1.255

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 204.12.1.255, timeout is 2 seconds:

Reply to request 0 from 204.12.1.254, 28 ms
Reply to request 1 from 204.12.1.254, 28 ms
Reply to request 2 from 204.12.1.254, 8 ms
Reply to request 3 from 204.12.1.254, 28 ms
Reply to request 4 from 204.12.1.254, 20 ms

This makes this lab impossible to complete on 3550’s as SW3 or SW4 without modification. Just make the Fa0/20 into a vlan interface so that it doesn’t have to double hop SW4.

Rack1SW4(config)#do sh run int fa0/20
Building configuration…

Current configuration : 87 bytes
!
interface FastEthernet0/20
no switchport
ip address 204.12.1.10 255.255.255.0
end

Rack1SW4(config)#int fa0/20
Rack1SW4(config-if)#no ip add
Rack1SW4(config-if)#int vlan 53
11:23:51: %LINEPROTO-5-UPDOWN: Line protocol on Interface Vlan53, changed state to up
Rack1SW4(config-if)#ip add 204.12.1.10 255.255.255.0
Rack1SW4(config-if)#end
11:24:00: %SYS-5-CONFIG_I: Configured from console by console
Rack1SW4#ping 204.12.1.255

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 204.12.1.255, timeout is 2 seconds:

Reply to request 0 from 204.12.1.9, 1 ms
Reply to request 0 from 204.12.1.254, 32 ms
Reply to request 0 from 204.12.1.5, 4 ms
Reply to request 1 from 204.12.1.9, 1 ms
Reply to request 1 from 204.12.1.254, 24 ms
Reply to request 1 from 204.12.1.5, 4 ms
Reply to request 2 from 204.12.1.9, 1 ms
Reply to request 2 from 204.12.1.254, 20 ms
Reply to request 2 from 204.12.1.5, 12 ms
Reply to request 3 from 204.12.1.9, 1 ms
Reply to request 3 from 204.12.1.5, 1 ms
Rack1SW4#

This entry was posted on July 8, 2009 at 13:47 and is filed under Routing & Switching Lab. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

« Oh no the switch crashed… Unexpected exception to CPUvector 1100

TEN TIPS FOR TAKING THE LAB EXAM »

Pete’s Packet

I don’t think I can. I know I can!

Categories

Blog Stats

Global visitors

US visitors

CCIE Jobs – Metro NY area

Meta

Archives

Recent Posts

Subscribe

Blogroll

CCIE lab sudy links

Tools

CCIE jobs – US

Packet Life

Interesting problem 3550 etherchannel problem

Leave a Reply