11-15-2018 02:52 AM - edited 03-05-2019 11:03 AM
Hi all!
I have multiple 2960's and connected their dedicated management port to a switch (2960X) for easier access.
Each management port on the 2960's have a IP in the 10.32.3.0/24 network.
I'm able to connect to all the management ports via SSH from a operations client (other VLAN).
Currently I have the issue that I can't connect to the management port of the switch where all the management ports are connected to.
The management port of the switch (10.32.3.16) is connected to the switch itself.
However I can't SSH into this management port.
I've a included a small mock-up of the network infrastructure below
11-19-2018 05:41 AM
11-19-2018 05:45 AM
11-19-2018 06:31 AM
I don't have the Mgmt-vrf on my 2960X's, I think I created the arp entries on my core (3850) in the Mgmt-vfr and I also created the entry in my 2960X.
Below is the show arp:
"Switch"-switch
SWITCH(config)#arp vrf Mgmt-vrf 10.32.3.11 7001.b501.c400 arpa % IP routing table Mgmt-vrf does not exist. Create first SWITCH(config)#arp 10.32.3.11 7001.b501.c400 arpa SWITCH#show arp Protocol Address Age (min) Hardware Addr Type Interface Internet 10.32.3.1 1 b496.9139.5879 ARPA FastEthernet0 Internet 10.32.3.11 - 7001.b501.c400 ARPA Internet 10.32.3.16 - 00bf.77a2.9c39 ARPA FastEthernet0 Internet 10.32.3.101 0 80fa.5b57.da74 ARPA FastEthernet0 SWITCH#ping 10.32.3.16 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.32.3.16, timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 1/1/3 ms SWITCH#
Core-switch:
SERVER(config)#arp vrf Mgmt-vrf 10.32.3.16 00bf.77a2.9c39 arpa SERVER(config)#arp 10.32.3.16 00bf.77a2.9c39 arpa SERVER(config)#do show arp Protocol Address Age (min) Hardware Addr Type Interface Internet 10.32.3.16 - 00bf.77a2.9c39 ARPA SERVER(config)#do show arp vrf Mgmt-vrf Protocol Address Age (min) Hardware Addr Type Interface Internet 10.32.3.1 0 b496.9139.5879 ARPA GigabitEthernet0/0 Internet 10.32.3.11 - 7001.b501.c400 ARPA GigabitEthernet0/0 Internet 10.32.3.16 - 00bf.77a2.9c39 ARPA Internet 10.32.3.101 0 80fa.5b57.da74 ARPA GigabitEthernet0/0 SERVER#ping 10.32.3.16 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.32.3.16, timeout is 2 seconds: ..... Success rate is 0 percent (0/5)
As you can see I can ping the Management Port on the "Switch"-switch from the Switch terminal, but I can't acess it from my core.
11-15-2018 04:25 AM
Hello
Hasn't this already been solved by Jon via this post
11-15-2018 04:31 AM
11-17-2018 10:03 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide