cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2009
Views
5
Helpful
13
Replies

Flapping on switch impacted for down network environment

ariefwahyu30
Level 1
Level 1

lan 1 is flapping between port Gi1/0/9 and port Gi1/0/7
Feb 17 06:23:06.412: %SW_MATM-4-MACFLAP_NOTIF: Host e454.e848.cabb in vlan 1 is flapping between port Gi1/0/7 and port Po10
Feb 17 06:23:06.423: %SW_MATM-4-MACFLAP_NOTIF: Host c03f.d5ef.fec2 in vlan 1 is flapping between port Gi1/0/9 and port Gi1/0/7
Feb 17 06:23:06.430: %SW_MATM-4-MACFLAP_NOTIF: Host 6805.ca08.41fd in vlan 1 is flapping between port Gi1/0/2 and port Gi1/0/9
Feb 17 06:23:06.503: %SW_MATM-4-MACFLAP_NOTIF: Host 98fa.9ba3.eddd in vlan 1 is flapping between port Gi1/0/7 and port Gi1/0/9
Feb 17 06:23:06.507: %SW_MATM-4-MACFLAP_NOTIF: Host 88a4.c230.3c42 in vlan 1 is flapping between port Gi1/0/12 and port Gi1/0/9
Feb 17 06:23:06.514: %SW_MATM-4-MACFLAP_NOTIF: Host f4ee.089f.29b4 in vlan 1 is flapping between port Gi1/0/7 and port Gi1/0/9
Feb 17 06:23:06.618: %SW_MATM-4-MACFLAP_NOTIF: Host f4ee.08de.e189 in vlan 1 is flapping between port Po20 and port Gi1/0/7
Feb 17 06:23:06.755: %SW_MATM-4-MACFLAP_NOTIF: Host c84b.d668.d22c in vlan 1 is flapping between port Gi1/0/9 and port Gi1/0/7
Feb 17 06:23:06.867: %SW_MATM-4-MACFLAP_NOTIF: Host 54bf.6470.944c in vlan 1 is flapping between port Gi1/0/9 and port Gi1/0/7
Feb 17 06:23:06.968: %SW_MATM-4-MACFLAP_NOTIF: Host c84b.d63a.bd71 in vlan 1 is flapping between port Gi1/0/7 and port Gi1/0/9
Feb 17 06:23:07.429: %SW_MATM-4-MACFLAP_NOTIF: Host 00be.43dc.3501 in vlan 1 is flapping between port Gi1/0/9 and port Gi1/0/7
Feb 17 06:23:07.646: %SW_MATM-4-MACFLAP_NOTIF: Host 8425.3f31.afee in vlan 1 is flapping between port Gi1/0/9 and port Po20
Feb 17 06:23:07.726: %SW_MATM-4-MACFLAP_NOTIF: Host 00be.43bc.3daf in vlan 1 is flapping between port Gi1/0/7 and port Gi1/0/9
Feb 17 06:23:07.737: %SW_MATM-4-MACFLAP_NOTIF: Host 009e.1e1d.e94b in vlan 1 is flapping between port Gi1/0/9 and port Gi1/0/7
Feb 17 06:23:07.880: %SW_MATM-4-MACFLAP_NOTIF: Host 28ee.521a.7e5d in vlan 1 is flapping between port Gi1/0/7 and port Gi1/0/9
Feb 17 06:23:07.884: %SW_MATM-4-MACFLAP_NOTIF: Host c84b.d63a.ae9d in vlan 1 is flapping between port Po10 and port Gi1/0/7
Feb 17 06:23:07.982: %SW_MATM-4-MACFLAP_NOTIF: Host 0894.ef0b.f918 in vlan 1 is flapping between port Gi1/0/7 and port Po10
Feb 17 06:23:07.992: %SW_MATM-4-MACFLAP_NOTIF: Host c018.03c6.8177 in vlan 1 is flapping between port Gi1/0/7 and port Gi1/0/9
Feb 17 06:23:07.992: %SW_MATM-4-MACFLAP_NOTIF: Host 88a4.c244.d99b in vlan 1 is flapping between port Gi1/0/7 and port Gi1/0/9
Feb 17 06:23:07.999: %SW_MATM-4-MACFLAP_NOTIF: Host 54bf.6470.904e in vlan 1 is flapping between port Gi1/0/9 and port Gi1/0/7
Feb 17 06:23:08.059: %SW_MATM-4-MACFLAP_NOTIF: Host c018.03c5.7f1f in vlan 1 is flapping between port Gi1/0/9 and port Gi1/0/7
Feb 17 06:23:08.135: %SW_MATM-4-MACFLAP_NOTIF: Host 0011.32d0.6b1d in vlan 1 is flapping between port Gi1/0/3 and port Gi1/0/9
Feb 17 06:23:08.139: %SW_MATM-4-MACFLAP_NOTIF: Host c84b.d62d.991e in vlan 1 is flapping between port Gi1/0/7 and port Gi1/0/9
Feb 17 06:23:08.142: %SW_MATM-4-MACFLAP_NOTIF: Host a4bb.6d69.ce9e in vlan 1 is flapping between port Gi1/0/7 and port Gi1/0/9
Feb 17 06:23:08.146: %SW_MATM-4-MACFLAP_NOTIF: Host 14eb.b630.04f1 in vlan 1 is flapping between port Gi1/0/9 and port Gi1/0/7
Feb 17 06:23:08.146: %SW_MATM-4-MACFLAP_NOTIF: Host a4bb.6d69.06fa in vlan 1 is flapping between port Gi1/0/7 and port Gi1/0/9
Feb 17 06:23:08.163: %SW_MATM-4-MACFLAP_NOTIF: Host d894.0355.f24d in vlan 1 is flapping between port Gi1/0/7 and port Po20
Feb 17 06:23:08.251: %SW_MATM-4-MACFLAP_NOTIF: Host d894.0355.f1c1 in vlan 1 is flapping between port Gi1/0/9 and port Gi1/0/7
Feb 17 06:23:08.254: %SW_MATM-4-MACFLAP_NOTIF: Host d894.036b.e8e7 in vlan 1 is flapping between port Gi1/0/7 and port Gi1/0/9
Feb 17 06:23:08.352: %SW_MATM-4-MACFLAP_NOTIF: Host d894.036b.c82f in vlan 1 is flapping between port Gi1/0/7 and port Gi1/0/9
Feb 17 06:23:08.366: %SW_MATM-4-MACFLAP_NOTIF: Host d894.03aa.f1cb in vlan 1 is flapping between port Gi1/0/9 and port Gi1/0/7
Feb 17 06:23:50.197: %SW_MATM-4-MACFLAP_NOTIF: Host ac3f.a48b.1364 in vlan 1 is flapping between port Po10 and port Po20

 

Anyone can help for troubleshooting for flapping issue? I got "sh log" of switch like on above

13 Replies 13

first 
are the G1/0/9 is port member of PO10/20
are the G1/0/7 is port member of PO10/20 

it seem to me that the one of port member is down and hence the L2 loop hapened after the port member is UP again the Loop stop. 

can I see the config of 
PO 10 and PO 20 
can I see 
show spanning tree vlan 1 <<- in both SW

are the G1/0/9 is port member of PO10/20
are the G1/0/7 is port member of PO10/20

the answer:

ID-PTHEI-CRE#sh ether
ID-PTHEI-CRE#sh etherchannel summary
Flags: D - down P - bundled in port-channel
I - stand-alone s - suspended
H - Hot-standby (LACP only)
R - Layer3 S - Layer2
U - in use f - failed to allocate aggregator

M - not in use, minimum links not met
u - unsuitable for bundling
w - waiting to be aggregated
d - default port


Number of channel-groups in use: 3
Number of aggregators: 3

Group Port-channel Protocol Ports
------+-------------+-----------+-----------------------------------------------
10 Po10(SU) LACP Gi1/0/25(P) Gi2/0/25(P)
20 Po20(SU) LACP Gi1/0/26(P) Gi2/0/26(P)
24 Po24(SU) LACP Gi1/0/13(P) Gi2/0/13(P)

ID-PTHEI-CRE#sh lacp internal
Flags: S - Device is requesting Slow LACPDUs
F - Device is requesting Fast LACPDUs
A - Device is in Active mode P - Device is in Passive mode

Channel group 10
LACP port Admin Oper Port Port
Port Flags State Priority Key Key Number State
Gi1/0/25 SA bndl 32768 0xA 0xA 0x11A 0x3D
Gi2/0/25 SA bndl 32768 0xA 0xA 0x21A 0x3D

Channel group 20
LACP port Admin Oper Port Port
Port Flags State Priority Key Key Number State
Gi1/0/26 SA bndl 32768 0x14 0x14 0x11B 0x3D
Gi2/0/26 SA bndl 32768 0x14 0x14 0x21B 0x3D

Channel group 24
LACP port Admin Oper Port Port
Port Flags State Priority Key Key Number State
Gi1/0/13 SA bndl 32768 0x18 0x18 0x10E 0x3D
Gi2/0/13 SA bndl 32768 0x18 0x18 0x20E 0x3D

 

 

can I see the config of 
PO 10 and PO 20 
can I see 
show spanning tree vlan 1 <<- in both SW

The answer:

(on attachment)

 

 

Leo Laohoo
Hall of Fame
Hall of Fame

Turn on BPDU Guard.

Hello,

can you post the configs of this switch and the switch(es) that is/are connected to the ports that are flapping ?

ID-PTHEI-CRE#sh run
Building configuration...

Current configuration : 6496 bytes
!
! Last configuration change at 00:53:55 UTC Fri Jan 13 2023
!
version 15.2
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname ID-PTHEI-CRE
!
boot-start-marker
boot-end-marker
!
enable secret 5 $1$P3ET$IBVFjuvypRLtNuM47cSXd1
!
username admin password 0 Hei@dmin
no aaa new-model
switch 1 provision ws-c2960x-24ts-l
switch 2 provision ws-c2960x-24ts-l
!
!
no ip domain-lookup
ip domain-name hirose.com
!
!
!
!
!
!
!
crypto pki trustpoint TP-self-signed-748933760
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-748933760
revocation-check none
rsakeypair TP-self-signed-748933760
!
!
crypto pki certificate chain TP-self-signed-748933760
certificate self-signed 01
30820229 30820192 A0030201 02020101 300D0609 2A864886 F70D0101 05050030
30312E30 2C060355 04031325 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 37343839 33333736 30301E17 0D313730 35313130 36333330
325A170D 32303031 30313030 30303030 5A303031 2E302C06 03550403 1325494F
532D5365 6C662D53 69676E65 642D4365 72746966 69636174 652D3734 38393333
37363030 819F300D 06092A86 4886F70D 01010105 0003818D 00308189 02818100
B1E7B3EA 4BC4B491 8C5C2F2F 785EDF5C C696860C 4B565396 9BDC7E19 A4AD1F12
0CCEA943 2A33DDDE CBDE5E7B 6235D7FB EBEEE4CF F98928DF A1CA8268 A466ECA1
FE12CC29 BBE95E43 7D5FE521 B9EF4607 D01F47DE 82B9D161 F0CBA7B7 CFEDA9E0
F32F210C 80E18642 F864523A 439FD274 76D9A256 BD2F62BD 60063D9D 31D391F3
02030100 01A35330 51300F06 03551D13 0101FF04 05300301 01FF301F 0603551D
23041830 168014FB 5D8CD63D 1E28659E 791EC114 654494DC BE2D1B30 1D060355
1D0E0416 0414FB5D 8CD63D1E 28659E79 1EC11465 4494DCBE 2D1B300D 06092A86
4886F70D 01010505 00038181 006E46DE CABB843D 3B3D3049 E6D82006 FBC17A87
0F22039B 7ED79248 9B776415 115B9170 8382272F 418249C3 C4F7B3C9 3AF530A8
356D9BC0 8B8047F0 56F19170 21631B02 73D26DC4 8F9B9A8A 7D162FFD 4B0F8B17
B627F36B 4DBC5618 8B619E23 D574EC88 E2042E5E E9642D16 BAE01023 B47A0399
EA630C18 1BFD7B28 545D396F DC
quit
spanning-tree mode pvst
spanning-tree extend system-id
!
!
!
!
vlan internal allocation policy ascending
!
!
!
!
!
!
!
!
!
!
!
interface Port-channel10
description *** Port-channel to ID-PTHEI-L2SWZONE-A ***
!
interface Port-channel20
description *** Port-channel to ID-PTHEI-L2SWZONE-B ***
!
interface Port-channel24
description *** Port-channel to ID-PTHEI-AGT-SERVER ***
!
interface FastEthernet0
no ip address
shutdown
!
interface GigabitEthernet1/0/1
!
interface GigabitEthernet1/0/2
!
interface GigabitEthernet1/0/3
!
interface GigabitEthernet1/0/4
!
interface GigabitEthernet1/0/5
!
interface GigabitEthernet1/0/6
!
interface GigabitEthernet1/0/7
!
interface GigabitEthernet1/0/8
!
interface GigabitEthernet1/0/9
!
interface GigabitEthernet1/0/10
!
interface GigabitEthernet1/0/11
!
interface GigabitEthernet1/0/12
!
interface GigabitEthernet1/0/13
description *** Connect to ID-PTHEI-AGT-SERVER ***
channel-group 24 mode active
!
interface GigabitEthernet1/0/14
!
interface GigabitEthernet1/0/15
!
interface GigabitEthernet1/0/16
!
interface GigabitEthernet1/0/17
!
interface GigabitEthernet1/0/18
!
interface GigabitEthernet1/0/19
!
interface GigabitEthernet1/0/20
!
interface GigabitEthernet1/0/21
!
interface GigabitEthernet1/0/22
!
interface GigabitEthernet1/0/23
description *** Connect to HRS-IDN-01 (VPN Network) ***
!
interface GigabitEthernet1/0/24
description *** Connect to Cisco RV320 Firewall ***
!
interface GigabitEthernet1/0/25
description *** Connect to ID-PTHEI-L2SWZONE-A ***
channel-group 10 mode active
!
interface GigabitEthernet1/0/26
description *** Connect to ID-PTHEI-L2SWZONE-B ***
channel-group 20 mode active
!
interface GigabitEthernet1/0/27
!
interface GigabitEthernet1/0/28
!
interface GigabitEthernet2/0/1
!
interface GigabitEthernet2/0/2
!
interface GigabitEthernet2/0/3
!
interface GigabitEthernet2/0/4
!
interface GigabitEthernet2/0/5
!
interface GigabitEthernet2/0/6
!
interface GigabitEthernet2/0/7
!
interface GigabitEthernet2/0/8
!
interface GigabitEthernet2/0/9
!
interface GigabitEthernet2/0/10
!
interface GigabitEthernet2/0/11
!
interface GigabitEthernet2/0/12
!
interface GigabitEthernet2/0/13
description *** Connect to ID-PTHEI-AGT-SERVER ***
channel-group 24 mode active
!
interface GigabitEthernet2/0/14
!
interface GigabitEthernet2/0/15
!
interface GigabitEthernet2/0/16
!
interface GigabitEthernet2/0/17
!
interface GigabitEthernet2/0/18
!
interface GigabitEthernet2/0/19
!
interface GigabitEthernet2/0/20
!
interface GigabitEthernet2/0/21
!
interface GigabitEthernet2/0/22
!
interface GigabitEthernet2/0/23
description *** Connect to HRS-IDN-02 (VPN Network) ***
!
interface GigabitEthernet2/0/24
!
interface GigabitEthernet2/0/25
description *** Connect to ID-PTHEI-L2SWZONE-A ***
channel-group 10 mode active
!
interface GigabitEthernet2/0/26
description *** Connect to ID-PTHEI-L2SWZONE-B ***
channel-group 20 mode active
!
interface GigabitEthernet2/0/27
!
interface GigabitEthernet2/0/28
!
interface Vlan1
description *** Management Purpose ***
ip address 192.168.145.11 255.255.255.0
!
ip http server
ip http secure-server
!
!
ip access-list extended CISCO-CWA-URL-REDIRECT-ACL
deny udp any any eq domain
deny tcp any any eq domain
deny udp any eq bootps any
deny udp any any eq bootpc
deny udp any eq bootpc any
permit tcp any any eq www
!
!
There is a default user name and password . You must change it immediately
!
line con 0
exec-timeout 5 0
logging synchronous
login local
line vty 0 4
exec-timeout 5 0
logging synchronous
login local
transport input ssh
line vty 5 15
login local
transport input ssh
!
ntp source Vlan1
ntp server 192.168.147.2 prefer
ntp server 104.28.26.12
ntp server 104.28.27.12
end

that answer my first Q, Now I need to see show spanning tree 
interface GigabitEthernet1/0/25

description *** Connect to ID-PTHEI-L2SWZONE-A ***
channel-group 10 mode active
!
interface GigabitEthernet1/0/26
description *** Connect to ID-PTHEI-L2SWZONE-B ***
channel-group 20 mode active

ID-PTHEI-CRE#sh spann
ID-PTHEI-CRE#sh spanning-tree vlan 1

VLAN0001
Spanning tree enabled protocol ieee
Root ID Priority 32768
Address 0056.2b88.008f
Cost 7
Port 608 (Port-channel20)
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec

Bridge ID Priority 32769 (priority 32768 sys-id-ext 1)
Address 00f8.2ca3.d280
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Aging Time 300 sec

Interface Role Sts Cost Prio.Nbr Type
------------------- ---- --- --------- -------- --------------------------------
Gi1/0/2 Desg FWD 4 128.2 P2p
Gi1/0/3 Desg FWD 4 128.3 P2p
Gi1/0/4 Desg FWD 4 128.4 P2p
Gi1/0/6 Desg FWD 4 128.6 P2p
Gi1/0/7 Desg FWD 4 128.7 P2p
Gi1/0/9 Desg FWD 4 128.9 P2p
Gi1/0/12 Desg FWD 4 128.12 P2p

Interface Role Sts Cost Prio.Nbr Type
------------------- ---- --- --------- -------- --------------------------------

Gi1/0/14 Desg FWD 4 128.14 P2p
Gi1/0/15 Desg FWD 4 128.15 P2p
Gi1/0/16 Desg FWD 4 128.16 P2p
Gi1/0/17 Desg FWD 4 128.17 P2p
Gi1/0/18 Desg FWD 4 128.18 P2p
Gi1/0/23 Desg FWD 4 128.23 P2p
Gi1/0/24 Desg FWD 4 128.24 P2p
Po10 Desg FWD 3 128.528 P2p
Po20 Root FWD 3 128.608 P2p
Po24 Desg FWD 3 128.640 P2p
Gi2/0/23 Desg FWD 4 128.79 P2p


ID-PTHEI-CRE#sh spann
ID-PTHEI-CRE#sh spanning-tree inter
ID-PTHEI-CRE#sh spanning-tree interface gig1/0/25
ID-PTHEI-CRE#sh spanning-tree interface gig1/0/25

Vlan Role Sts Cost Prio.Nbr Type
------------------- ---- --- --------- -------- --------------------------------
VLAN0001 Desg FWD 3 128.528 P2p
ID-PTHEI-CRE#sh spanning-tree interface gig1/0/26

Vlan Role Sts Cost Prio.Nbr Type
------------------- ---- --- --------- -------- --------------------------------
VLAN0001 Root FWD 3 128.608 P2p


ID-PTHEI-CRE#sh mac address-table | include 88a4.c244.d99b
1 88a4.c244.d99b DYNAMIC Po10
ID-PTHEI-CRE#sh mac address-table | include 14eb.b630.04f1
1 14eb.b630.04f1 DYNAMIC Gi1/0/7
ID-PTHEI-CRE#sh mac address-table | include c018.02c5.7f1f
ID-PTHEI-CRE#

Hello,

do you have a diagram of your topology showing all switches, and how they are connected to each other ?

10009.png

The configuration that has shared is device on red square above (message who I replied from George Pauwen)

are you using Fiber optic interconnect both SW ??

Between connection SW ID-PTHEI-AGT-A to ID-PTHEI-CRE-01 using FO

Between connection SW ID-PTHEI-AGT-B to ID-PTHEI-CRE-01 using FO

understood, 
you need UDLD to prevent unidirectional FO which effect LACP and STP BDPU frames exchange between two SW. 
 Understand and Configure the UDLD Protocol Feature - Cisco 
your case is explain in above link 

what did you mean two SW?

only interface which using FO for setup UDLD ya?

Review Cisco Networking for a $25 gift card