10-20-2024 07:22 PM
Hello,
When i try to backup the startup config to the TFTP server the result always timeout. TFTP server is reachable and the ping showing no any problem.
Then it try issue command ip tftp source-interface loopback0 for example and the backup to the TFTP is working.
What the logic that we should issue ip tftp source-interface? I believe all my interfaces is able to reach the TFTP server.
10-20-2024 07:30 PM
Is there any firewall in between the device and the tftp server or access list on the device.
.
Keep in mind that ping and TCP communication may be treated differently on the network.
10-20-2024 07:36 PM
No firewall, just add ip tftp source-interface and it's worked. Seem strange for me..
10-20-2024 07:38 PM
@hs08 which device is It?
10-20-2024 07:40 PM
Many devices, ISR4321, ISR4431, C3750.
10-20-2024 07:48 PM - edited 10-20-2024 07:49 PM
It does not make much Sense, as you realized yourself. Reasons to explain this behavior, in my opinion, relies on firewall, which you already told is not the case, or some config on the device or on the server side.
Basically you are right to suppose this is weird as you have connectivity to tftp server from other interface
Is It possible to shared the show running of one device to double check?
10-20-2024 08:03 PM
10-20-2024 08:29 PM - edited 10-20-2024 08:30 PM
The config does not give any hint.
One way to try to figure this out would be using wireshark capturing on loop back and do the same in a different interface to compare.
10-20-2024 07:53 PM - edited 10-20-2024 08:14 PM
@hs08 wrote:
Then it try issue command ip tftp source-interface loopback0 for example and the backup to the TFTP is working.
Because there are many interfaces to choose from.
This command is mandatory in IOS-XE even if the switch has only one interface with an IP address.
10-20-2024 08:13 PM
But what i feel strange is all interface is can reach to the TFTP server, so even we don't have ip tftp source-interface and the devices pick any random interface, this should will be fine.
10-20-2024 08:16 PM
Classic IOS is fine without the command. IOS-XE is different.
Never make the mistake that classic IOS and IOS-XE are the same. Always treat IOS-XE as a completely different OS because it is.
Cisco is re-inventing the wheel with IOS-XE.
10-20-2024 08:00 PM
I don't recall whether the later IOS versions place TFTP into a management VRF. If they do, using the TFTP source interface would likely get that interface into the global VRF.
10-21-2024 02:43 AM
What do you see if you try to tracerotue the TFTP server from one of these routers? does it take the expected path?
10-21-2024 03:00 AM
since ping is okay with or without ip tftp source-interface so all used same path.
10-21-2024 04:29 AM
Not necessarily. Ping requests could go one way and their replies could come another way.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide