06-16-2014 04:55 PM
Hi, i cannot connect using CNA , i have "new" switch 4948-10GE.
telnet on port 80, 443 time out
tpcdupm
clinet 192.168.8.212
switch 192.168.8.11
IP 192.168.8.212.51849 > 192.168.8.11.80: S 2439935240:2439935240(0) win 8192 <mss 1360,nop,wscale 8,nop,nop,sackOK>
01:41:50.047414
IP 192.168.8.11.80 > 192.168.8.212.51849: R 0:0(0) ack 2439935241 win 0
configuration on switch
version 12.2
no service pad
service timestamps debug uptime
service timestamps log datetime localtime
no service password-encryption
service compress-config
!
hostname 4948-1
!
boot-start-marker
boot-end-marker
!
logging count
logging buffered 65536
logging monitor emergencies
logging cns-events debugging
logging event trunk-status global
enable password 1234
!
username root password 0 1234
username www privilege 15 password 0 www
aaa new-model
!
!
aaa authentication login default local
!
!
!
aaa session-id common
clock timezone UTC 2
clock calendar-valid
storm-control broadcast include multicast
vtp domain name
vtp mode transparent
ip subnet-zero
ip domain-name test.org
!
!
ip dhcp snooping vlan 100-101
ip dhcp snooping
ip vrf mgmtVrf
!
!
!
crypto pki trustpoint TP-self-signed-1447
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-1447
revocation-check none
rsakeypair TP-self-signed-1447
crypto pki certificate chain TP-self-signed-1447
certificate self-signed 01
3082023A 308201A3 A0030201 02020101 300D0609 2A864886 F70D0101 04050030
2B312930 27060355 04031320 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 31343437 301E170D 31343035 30363130 34303432 5A170D32
30303130 31303030 3030305A 302B3129 30270603 55040313 20494F53 2D53656C
662D5369 626E6564 2D436572 74622669 63617465 2D313424 3730819F 300D0609
2A864886 F70D0101 01050003 818D0030 81890281 8100C8BA 5FDFBF38 828AF680
CC507694 BA8F4B75 90F0A4AC 2F96352E C0874246 4D620BC3 61E28751 41B64FF7
87F2180D FDAF7562 41E5088C 39434F2D 09692701 19D35081 B35E90B6 1BF909C8
9BB2443F 5925F27B E20AF8CD 76F434E0 6CB181EE A1B9B710 DEB6E76C 3A399073
97D3FAB2 DE9B23E4 E26531FF 467DCF12 F49B27C7 29370203 010001A3 6E306C30
0F060355 1D130101 FF040530 030101FF 30190603 551D1104 12301082 0E343934
382D312E 692E6D70 2E706C30 1F060355 1D230418 30168014 7B076DDB A0591BD7
BFF05766 57591D39 590EB9A3 301D0603 551D0E04 1604147B 076DDBA0 591BD7BF
F0576657 591D3959 0EB9A330 0D06092A 864886F7 0D010104 05000381 8100819E
47CECEB4 07D4769A A20AD5CD 38568BBC 34F2E376 29FDC959 C93B27CB 186C0858
E1EF1716 6679805A A4ADB279 8ABCF5D7 A91B7470 A3000FAC CDC94425 624F5639
7AA3B348 2623CEE6 028D29DF C44D78B0 09B7A513 5527EA03 15744A65 A20DD243
327703A6 03BFF5EB 1A395EBC FE4C1AEE 0B19F33D 15CE33DB DF34B334 D9F2
quit
errdisable recovery interval 30
power redundancy-mode redundant
!
!
!
!
!
spanning-tree mode pvst
spanning-tree logging
spanning-tree extend system-id
!
vlan internal allocation policy ascending
!
vlan 2
name AMS_UNUSED_PORTS
!
vlan 3
name BAD_PORTS
!
vlan 4
name RESERVED_PORTS
!
vlan 10
!
vlan 11
name AMS-X7AG-MMS-7-NATIVE
!
vlan 100
private-vlan primary
private-vlan association 101
!
vlan 101
private-vlan isolated
ip ssh version 1
!
!
interface FastEthernet1
ip vrf forwarding mgmtVrf
ip address 192.168.8.11 255.255.255.0
speed auto
duplex auto
!
interface GigabitEthernet1/1
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/2
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/3
switchport private-vlan host-association 100 101
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/4
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/5
switchport private-vlan host-association 100 101
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/6
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/7
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/8
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/9
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/10
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/11
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
logging event trunk-status
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/12
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/13
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/14
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/15
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/16
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/17
switchport private-vlan host-association 100 101
switchport private-vlan mapping 100 101
switchport mode private-vlan host
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/18
switchport private-vlan host-association 100 101
switchport private-vlan mapping 100 101
switchport mode private-vlan host
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/19
switchport private-vlan host-association 100 101
switchport private-vlan mapping 100 101
switchport mode private-vlan host
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/20
switchport private-vlan host-association 100 101
switchport private-vlan mapping 100 101
switchport mode private-vlan host
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/21
switchport private-vlan host-association 100 101
switchport private-vlan mapping 100 101
switchport mode private-vlan host
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/22
switchport private-vlan host-association 100 101
switchport private-vlan mapping 100 101
switchport mode private-vlan host
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/23
switchport private-vlan host-association 100 101
switchport private-vlan mapping 100 101
switchport mode private-vlan host
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/24
switchport private-vlan host-association 100 101
switchport private-vlan mapping 100 101
switchport mode private-vlan host
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/25
switchport private-vlan host-association 100 101
switchport private-vlan mapping 100 101
switchport mode private-vlan host
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/26
switchport private-vlan host-association 100 101
switchport private-vlan mapping 100 101
switchport mode private-vlan host
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/27
switchport private-vlan host-association 100 101
switchport private-vlan mapping 100 101
switchport mode private-vlan host
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/28
switchport private-vlan host-association 100 101
switchport private-vlan mapping 100 101
switchport mode private-vlan host
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/29
switchport private-vlan host-association 100 101
switchport private-vlan mapping 100 101
switchport mode private-vlan host
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/30
switchport private-vlan host-association 100 101
switchport private-vlan mapping 100 101
switchport mode private-vlan host
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/31
switchport private-vlan host-association 100 101
switchport private-vlan mapping 100 101
switchport mode private-vlan host
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/32
switchport private-vlan host-association 100 101
switchport private-vlan mapping 100 101
switchport mode private-vlan host
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/33
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
!
interface GigabitEthernet1/34
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/35
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
ip dhcp snooping trust
!
interface GigabitEthernet1/36
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
ip dhcp snooping trust
!
interface GigabitEthernet1/37
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/38
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/39
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/40
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/41
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/42
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
!
interface GigabitEthernet1/43
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/44
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/45
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/46
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/47
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface GigabitEthernet1/48
switchport private-vlan mapping 100 101
switchport mode private-vlan promiscuous
storm-control broadcast level 60.00 40.00
storm-control action trap
!
interface TenGigabitEthernet1/49
!
interface TenGigabitEthernet1/50
!
interface Vlan1
ip address 192.168.8.10 255.255.255.0
!
ip default-gateway 192.168.8.2
ip route vrf mgmtVrf 0.0.0.0 0.0.0.0 192.168.8.2
ip http server
ip http secure-server
ip http timeout-policy idle 300 life 43200 requests 43200
ip http client username root
ip http client password 0 1234
!
!
logging history size 500
logging history notifications
logging host 192.168.8.2 vrf mgmtVrf
!
snmp-server community public RO
snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart
snmp-server enable traps transceiver all
snmp-server enable traps tty
snmp-server enable traps fru-ctrl
snmp-server enable traps entity
snmp-server enable traps ether-oam
snmp-server enable traps flash insertion removal
snmp-server enable traps power-ethernet police
snmp-server enable traps cpu threshold
snmp-server enable traps rep
snmp-server enable traps vtp
snmp-server enable traps vlancreate
snmp-server enable traps vlandelete
snmp-server enable traps auth-framework sec-violation
snmp-server enable traps dot1x auth-fail-vlan guest-vlan no-auth-fail-vlan no-guest-vlan
snmp-server enable traps envmon fan shutdown supply temperature status
snmp-server enable traps entity-diag boot-up-fail hm-test-recover hm-thresh-reached scheduled-test-fail
snmp-server enable traps port-security
snmp-server enable traps ethernet cfm cc mep-up mep-down cross-connect loop config
snmp-server enable traps ethernet cfm crosscheck mep-missing mep-unknown service-up
snmp-server enable traps ethernet cfm alarm
snmp-server enable traps ethernet evc status create delete
snmp-server enable traps rf
snmp-server enable traps cef resource-failure peer-state-change peer-fib-state-change inconsistency
snmp-server enable traps ipmulticast
snmp-server enable traps pim neighbor-change rp-mapping-change invalid-pim-message
snmp-server enable traps config-copy
snmp-server enable traps config
snmp-server enable traps config-ctid
snmp-server enable traps energywise
snmp-server enable traps bridge newroot topologychange
snmp-server enable traps stpx inconsistency root-inconsistency loop-inconsistency
snmp-server enable traps syslog
snmp-server enable traps vlan-membership
snmp-server enable traps mac-notification change move threshold
!
control-plane
!
!
line con 0
stopbits 1
line vty 0
password 1234
length 0
transport input ssh
line vty 1 4
length 0
transport input ssh
line vty 5 15
!
ntp logging
ntp clock-period 17181158
ntp server 192.168.8.2
ntp server vrf mgmtVrf 192.168.8.2
end
thx for any help
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide