Solved: how to find on which switch port an IP address is accessible?

Majid Jalinousi · ‎06-06-2015

Hi

There were tow 6513 switches that were VSSed.

I did "sh IP cef 172.20.3.15" on these VSSed switches and I saw:

172.20.3.0/24
nexthop 172.22.194.57 Vlan699

Then I did "sh int vlan699" and I saw IP address for interface Vlan699 was 172.22.194.59 with mask 255.255.255.248.

After that I did "sh vlan id 699" and I saw vlan 699 was active on these interfaces: Te1/9/2, Te1/10/1, Te1/10/5, Te1/11/5, Te1/11/6, Te2/9/2, Te2/10/1,Te2/10/5, Te2/11/5, Te2/11/6, Po4, Po40, Po70, Po79, Po90, Po581, Po597

Then I did "sh ip arp 172.22.194.57" and I saw mac-address for this IP address was "4055.39dd.b900" and then I searched this mac-address in mac-address-table and I saw this mac-address for vlan 699 has been learned through interface Po597.

When I did "ip int Po597" or "sh run int port-channel 597" surprisingly there was no such interface, but I could ping this IP address.

I want to know how this is possible? how is this IP address accessible?

Thanks in advance

Charles Hill · ‎06-07-2015

Hey Morteza,

"The connection between the FWSM and the switch is a 6-GB 802.1Q trunking EtherChannel. This EtherChannel is automatically created when you install the FWSM. "

For more info see doc below.

https://www.cisco.com/c/en/us/td/docs/security/fwsm/fwsm32/configuration/guide/fwsm_cfg/switch_f.pdf

hope this helps

please rate helpful posts

thanks

View solution in original post

Charles Hill · ‎06-06-2015

Do you see the port channel if you do a show etherchannel summary?

Majid Jalinousi · ‎06-06-2015

Thanks for your response

Yes I can see po597 when I do a sh etherchannel summary and members of this etherchannel are like below:

Gi2/5/1(P), Gi2/5/2(P), Gi2/5/3(P), Gi2/5/4(P), Gi2/5/5(P), Gi2/5/6(P)

But there are no such interfaces!

How is it possible?

Charles Hill · ‎06-06-2015

Does show cdp neighbor g2/5/1

show anything?

Majid Jalinousi · ‎06-06-2015

No, there is nothing as output of that command,

I think there is no such interfaces, but output of command " sh run int gig 2/5/1" is like below"

"sh run interface gigabitEthernet 2/5/1
Building configuration...

Current configuration : 5 bytes
end"

what does it mean?

Charles Hill · ‎06-06-2015

If you do a show module,

what is module 5?

Majid Jalinousi · ‎06-06-2015

Hi again

I did "sh module 5" and I saw like below:

Mod Ports              Card Type                       Model           Serial No.
---     -----    -------------------------------------- ------------------     ---------------
5   6         Firewall Module            WS-SVC-FWM-1       SAL1526GX7V

How is it possible? Because I know this module hasn't any physical port.

Are they virtual ports? how can i find them in configuration script?

Charles Hill · ‎06-07-2015

Hey Morteza,

"The connection between the FWSM and the switch is a 6-GB 802.1Q trunking EtherChannel. This EtherChannel is automatically created when you install the FWSM. "

For more info see doc below.

https://www.cisco.com/c/en/us/td/docs/security/fwsm/fwsm32/configuration/guide/fwsm_cfg/switch_f.pdf

hope this helps

please rate helpful posts

thanks

Majid Jalinousi · ‎06-07-2015

Thanks for your help.

Charles Hill · ‎06-07-2015

Your welcome

Charles Hill · ‎06-06-2015

It could be the port channel that connects your wism to the infrastructure, if you have a wism.

if so, do a

show wism switch 1 module 5 controller 1 status

this will show the port channel on the wism.

hope this helps.