10-16-2020 05:21 AM - edited 10-16-2020 05:25 AM
We are using Cisco Switch - C9300-24P when we are doing traceroute directly from to destination 8.8.8.8, its working but when doing from specific vlan ip, traceroute even not going to next hop.
Cisco IOS XE Software, Version 16.09.04
sw1#traceroute 8.8.8.8
Type escape sequence to abort.
Tracing the route to dns.google (8.8.8.8)
VRF info: (vrf in name/id, vrf out name/id)
1 10.125.252.252 [AS 65000] 333 msec 370 msec 258 msec
2 192.168.218.117 [AS 65000] 265 msec 272 msec 405 msec
3 192.168.218.125 [AS 21302] 374 msec 373 msec 347 msec
4 192.168.218.126 [AS 21302] 280 msec 380 msec 348 msec
5 10.125.96.217 [AS 65022] 366 msec 258 msec 263 msec
6 10.125.96.113 [AS 200610] 366 msec 382 msec 324 msec
7 * * *
8 10.125.96.102 [AS 200610] [MPLS: Label 685 Exp 0] 375 msec 358 msec 348 msec
9 * *
#traceroute
Protocol [ip]:
Target IP address: 8.8.8.8
Ingress traceroute [n]:
Source address or interface: 10.125.0.1
DSCP Value [0]:
Numeric display [n]:
Timeout in seconds [3]:
Probe count [3]:
Minimum Time to Live [1]:
Maximum Time to Live [30]:
Port Number [33434]:
Loose, Strict, Record, Timestamp, Verbose[none]:
Type escape sequence to abort.
Tracing the route to dns.google (8.8.8.8)
VRF info: (vrf in name/id, vrf out name/id)
1 * * *
2 * * *
3 * * *
4 * * *
5 * * *
6 * * *
7 * * *
8 * * *
9 * * *
10 * * *
11 * * *
12 * * *
13 * * *
14 * * *
15 * * *
16 * * *
17 * * *
18 * * *
19 * * *
20 * * *
21 * * *
22 * * *
23 * * *
24 * * *
25 * * *
26 * * *
27 * * *
28 * * *
29 * * *
30 * * *
interface Vlan1
no ip address
shutdown
!
interface Vlan8
no ip address
ip helper-address 10.125.97.20
!
interface Vlan10
ip address 10.125.0.1 255.255.254.0
no ip redirects
no ip unreachables
no ip proxy-arp
!
interface Vlan11
ip address 10.125.4.1 255.255.254.0
no ip redirects
no ip unreachables
no ip proxy-arp
!
interface Vlan14
ip address 193.142.14.1 255.255.255.0
no ip redirects
no ip unreachables
no ip proxy-arp
!
interface Vlan91
ip address 10.125.6.1 255.255.255.0
no ip redirects
no ip unreachables
no ip proxy-arp
interface Vlan91
ip address 10.125.6.1 255.255.255.0
ip helper-address 10.125.97.12
ip helper-address 10.125.97.13
ip helper-address 10.125.97.20
no ip redirects
no ip unreachables
no ip proxy-arp
!
interface Vlan254
ip address 10.125.7.1 255.255.255.224
no ip redirects
no ip unreachables
no ip proxy-arp
10-16-2020 05:26 AM
Hello my friend,
We need more information abour your infrastructure to understand better.
Please, provide information belo:
1. A simple image of your topology.
2. Configuration of your devices (routing table, nat (inside and outside).
3. Is there a firewall in your environment?
4. Is there a router using NAT to translate address?
Best regards,
Jaderson Pessoa.
10-16-2020 05:34 AM
Can you post full configuration to look.
looking at your output below success one - the next IP of the trace is 10.125.252.252
sw1#traceroute 8.8.8.8
1 10.125.252.252 [AS 65000] 333 msec 370 msec 258 msec
where as second trace using Source address or interface: 10.125.0.1
there is no route found.
can you post
show ip route
show run
show ip interface brief
10-16-2020 06:29 AM
sw1#show ip int br
Interface IP-Address OK? Method Status Protocol
Vlan1 unassigned YES manual administratively down down
Vlan8 unassigned YES unset up down
Vlan10 10.125.0.1 YES manual up up
Vlan11 10.125.4.1 YES manual up up
Vlan14 193.142.14.1 YES manual up up
Vlan91 10.125.6.1 YES manual up up
Vlan254 10.125.7.1 YES manual up up
GigabitEthernet0/0 unassigned YES NVRAM administratively down down
GigabitEthernet1/0/1 10.125.252.253 YES manual up up
GigabitEthernet1/0/2 unassigned YES unset administratively down down
GigabitEthernet1/0/3 unassigned YES unset up up
GigabitEthernet1/0/4 unassigned YES unset up up
GigabitEthernet1/0/5 unassigned YES unset up up
GigabitEthernet1/0/6 unassigned YES unset up up
GigabitEthernet1/0/7 unassigned YES unset up up
GigabitEthernet1/0/8 unassigned YES unset up up
GigabitEthernet1/0/9 unassigned YES unset up up
GigabitEthernet1/0/10 unassigned YES unset down down
GigabitEthernet1/0/11 unassigned YES unset down down
GigabitEthernet1/0/12 unassigned YES unset down down
GigabitEthernet1/0/13 unassigned YES unset down down
GigabitEthernet1/0/14 unassigned YES unset down down
GigabitEthernet1/0/15 unassigned YES unset down down
GigabitEthernet1/0/16 unassigned YES unset down down
GigabitEthernet1/0/17 unassigned YES unset down down
GigabitEthernet1/0/18 unassigned YES unset down down
GigabitEthernet1/0/19 unassigned YES unset down down
GigabitEthernet1/0/20 unassigned YES unset down down
GigabitEthernet1/0/21 unassigned YES unset down down
GigabitEthernet1/0/22 unassigned YES unset down down
GigabitEthernet1/0/23 unassigned YES unset down down
GigabitEthernet1/0/24 unassigned YES unset administratively down down
GigabitEthernet1/1/1 unassigned YES unset down down
GigabitEthernet1/1/2 unassigned YES unset down down
GigabitEthernet1/1/3 unassigned YES unset down down
GigabitEthernet1/1/4 unassigned YES unset down down
Te1/1/1 unassigned YES unset up up
Te1/1/2 unassigned YES unset up up
Te1/1/3 unassigned YES unset up up
Te1/1/4 unassigned YES unset up up
Te1/1/5 unassigned YES unset up up
Te1/1/6 unassigned YES unset up up
Te1/1/7 unassigned YES unset up up
Te1/1/8 unassigned YES unset up up
Fo1/1/1 unassigned YES unset down down
Fo1/1/2 unassigned YES unset down down
TwentyFiveGigE1/1/1 unassigned YES unset down down
TwentyFiveGigE1/1/2 unassigned YES unset down down
GigabitEthernet2/0/1 10.125.252.255 YES manual up up
GigabitEthernet2/0/2 unassigned YES unset administratively down down
GigabitEthernet2/0/3 unassigned YES unset up up
GigabitEthernet2/0/4 unassigned YES unset down down
GigabitEthernet2/0/5 unassigned YES unset down down
GigabitEthernet2/0/6 unassigned YES unset down down
GigabitEthernet2/0/7 unassigned YES unset down down
GigabitEthernet2/0/8 unassigned YES unset down down
GigabitEthernet2/0/9 unassigned YES unset down down
GigabitEthernet2/0/10 unassigned YES unset down down
GigabitEthernet2/0/11 unassigned YES unset down down
GigabitEthernet2/0/12 unassigned YES unset down down
GigabitEthernet2/0/13 unassigned YES unset down down
GigabitEthernet2/0/14 unassigned YES unset down down
GigabitEthernet2/0/15 unassigned YES unset down down
GigabitEthernet2/0/16 unassigned YES unset down down
GigabitEthernet2/0/17 unassigned YES unset down down
GigabitEthernet2/0/18 unassigned YES unset down down
GigabitEthernet2/0/19 unassigned YES unset down down
GigabitEthernet2/0/20 unassigned YES unset down down
GigabitEthernet2/0/21 unassigned YES unset down down
GigabitEthernet2/0/22 unassigned YES unset down down
GigabitEthernet2/0/23 unassigned YES unset down down
GigabitEthernet2/0/24 unassigned YES unset down down
GigabitEthernet2/1/1 unassigned YES unset down down
GigabitEthernet2/1/2 unassigned YES unset down down
GigabitEthernet2/1/3 unassigned YES unset down down
GigabitEthernet2/1/4 unassigned YES unset down down
Te2/1/1 unassigned YES unset up up
Te2/1/2 unassigned YES unset up up
Te2/1/3 unassigned YES unset up up
Te2/1/4 unassigned YES unset up up
Te2/1/5 unassigned YES unset up up
Te2/1/6 unassigned YES unset down down
Te2/1/7 unassigned YES unset down down
Te2/1/8 unassigned YES unset up up
Fo2/1/1 unassigned YES unset down down
Fo2/1/2 unassigned YES unset down down
TwentyFiveGigE2/1/1 unassigned YES unset down down
TwentyFiveGigE2/1/2 unassigned YES unset down down
GigabitEthernet3/0/1 unassigned YES unset down down
GigabitEthernet3/0/2 unassigned YES unset down down
GigabitEthernet3/0/3 unassigned YES unset down down
GigabitEthernet3/0/4 unassigned YES unset down down
GigabitEthernet3/0/5 unassigned YES unset down down
GigabitEthernet3/0/6 unassigned YES unset down down
GigabitEthernet3/0/7 unassigned YES unset down down
GigabitEthernet3/0/8 unassigned YES unset down down
GigabitEthernet3/0/9 unassigned YES unset down down
GigabitEthernet3/0/10 unassigned YES unset down down
GigabitEthernet3/0/11 unassigned YES unset down down
GigabitEthernet3/0/12 unassigned YES unset down down
GigabitEthernet3/0/13 unassigned YES unset down down
GigabitEthernet3/0/14 unassigned YES unset down down
GigabitEthernet3/0/15 unassigned YES unset down down
GigabitEthernet3/0/16 unassigned YES unset down down
GigabitEthernet3/0/17 unassigned YES unset down down
GigabitEthernet3/0/18 unassigned YES unset down down
GigabitEthernet3/0/19 unassigned YES unset down down
GigabitEthernet3/0/20 unassigned YES unset down down
GigabitEthernet3/0/21 unassigned YES unset down down
GigabitEthernet3/0/22 unassigned YES unset down down
GigabitEthernet3/0/23 unassigned YES unset down down
GigabitEthernet3/0/24 unassigned YES unset down down
GigabitEthernet3/1/1 unassigned YES unset down down
GigabitEthernet3/1/2 unassigned YES unset down down
GigabitEthernet3/1/3 unassigned YES unset down down
GigabitEthernet3/1/4 unassigned YES unset down down
Te3/1/1 unassigned YES unset up up
Te3/1/2 unassigned YES unset up up
Te3/1/3 unassigned YES unset up up
Te3/1/4 unassigned YES unset up up
Te3/1/5 unassigned YES unset down down
Te3/1/6 unassigned YES unset down down
Te3/1/7 unassigned YES unset down down
Te3/1/8 unassigned YES unset up up
Fo3/1/1 unassigned YES unset down down
Fo3/1/2 unassigned YES unset down down
TwentyFiveGigE3/1/1 unassigned YES unset down down
TwentyFiveGigE3/1/2 unassigned YES unset down down
Port-channel4 unassigned YES unset up up
Port-channel5 unassigned YES unset up up
Port-channel6 unassigned YES unset up up
Port-channel11 unassigned YES unset up up
Port-channel13 unassigned YES unset up up
Port-channel14 unassigned YES unset up up
Port-channel16 unassigned YES unset up up
Port-channel17 unassigned YES unset up up
Port-channel20 unassigned YES unset up up
Loopback0 10.125.255.183 YES manual up up
sw1# show ip route
Codes: L - local, C - connected, S - static, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2
i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
ia - IS-IS inter area, * - candidate default, U - per-user static route
o - ODR, P - periodic downloaded static route, H - NHRP, l - LISP
a - application route
+ - replicated route, % - next hop override, p - overrides from PfR
Gateway of last resort is 10.125.252.252 to network 0.0.0.0
B* 0.0.0.0/0 [20/0] via 10.125.252.252, 7w0d
1.0.0.0/32 is subnetted, 3 subnets
B 1.1.1.252 [20/0] via 10.125.252.252, 7w0d
B 1.1.1.253 [20/0] via 10.125.252.252, 7w0d
B 1.1.1.254 [20/0] via 10.125.252.252, 7w0d
10.0.0.0/8 is variably subnetted, 448 subnets, 14 masks
B 10.122.102.0/24 [20/0] via 10.125.252.252, 7w0d
B 10.122.108.0/24 [20/0] via 10.125.252.252, 7w0d
B 10.122.110.0/24 [20/0] via 10.125.252.252, 7w0d
B 10.122.200.0/24 [20/0] via 10.125.252.252, 7w0d
B 10.123.50.0/24 [20/0] via 10.125.252.252, 3w3d
B 10.123.51.0/24 [20/0] via 10.125.252.252, 3w3d
B 10.124.1.0/29 [20/0] via 10.125.252.252, 1w1d
B 10.124.1.8/29 [20/0] via 10.125.252.252, 1w1d
B 10.124.100.0/24 [20/0] via 10.125.252.252, 1w1d
B 10.124.150.0/26 [20/0] via 10.125.252.252, 2d01h
C 10.125.0.0/23 is directly connected, Vlan10
L 10.125.0.1/32 is directly connected, Vlan10
C 10.125.4.0/23 is directly connected, Vlan11
L 10.125.4.1/32 is directly connected, Vlan11
C 10.125.6.0/24 is directly connected, Vlan91
L 10.125.6.1/32 is directly connected, Vlan91
C 10.125.7.0/27 is directly connected, Vlan254
L 10.125.7.1/32 is directly connected, Vlan254
B 10.125.16.0/24 [20/0] via 10.125.252.252, 6w4d
sw1#show running-config
Building configuration...
Current configuration : 23246 bytes
!
version 16.9
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime localtime show-timezone
service password-encryption
service sequence-numbers
service call-home
no platform punt-keepalive disable-kernel-core
!
!
!
vrf definition Mgmt-vrf
!
address-family ipv4
exit-address-family
address-family ipv6
exit-address-family
logging buffered 40960
aaa new-model
aaa authentication login default local
aaa authorization exec default local
aaa session-id common
boot system switch all flash:packages.conf
clock timezone EET 2 0
clock summer-time cest recurring last Sun Mar 2:00 last Sun Oct 3:00
switch 1 provision c9300-24p
switch 2 provision c9300-24p
switch 3 provision c9300-24p
active
destination transport-method http
no destination transport-method email
ip routing
ip name-server 10.125.97.10 10.125.97.11
!
login on-failure log
login on-success log
!
!
!
!
!
!
!
vtp mode transparent
cabundle nvram:ios_core.p7b
!
!
!
diagnostic bootup level minimal
!
spanning-tree mode rapid-pvst
spanning-tree extend system-id
spanning-tree vlan 10-11,14,91,254 priority 24576
!
!
!
redundancy
mode sso
!
!
!
!
!
transceiver type all
monitoring
!
vlan 8
name Office-193.142.8
!
vlan 10
name Office
!
vlan 11
name WLAN
!
vlan 14
name Computerroom
!
vlan 91
name Sales-Office
!
vlan 94
name Factory-194.142.94
!
vlan 95
name Fiskars-194.142.95
!
vlan 207
name WLAN-193.142.15
!
vlan 254
name SW-Mgmt
lldp run
!
class-map match-any system-cpp-police-topology-control
description Topology control
class-map match-any system-cpp-police-sw-forward
description Sw forwarding, L2 LVX data, LOGGING
class-map match-any system-cpp-default
description Inter FED, EWLC control, EWLC data
class-map match-any system-cpp-police-sys-data
description Learning cache ovfl, High Rate App, Exception, EGR Exception, NFL SAMPLED DATA, RPF Failed
class-map match-all Telnet_class
match access-group name CoPP_traffic
class-map match-any system-cpp-police-punt-webauth
description Punt Webauth
class-map match-any system-cpp-police-l2lvx-control
description L2 LVX control packets
class-map match-any system-cpp-police-forus
description Forus Address resolution and Forus traffic
class-map match-any system-cpp-police-multicast-end-station
description MCAST END STATION
class-map match-any system-cpp-police-high-rate-app
description High Rate Applications
class-map match-any system-cpp-police-multicast
description Transit Traffic and MCAST Data
class-map match-any system-cpp-police-l2-control
description L2 control
class-map match-any system-cpp-police-dot1x-auth
description DOT1X Auth
class-map match-any system-cpp-police-data
description ICMP redirect, ICMP_GEN and BROADCAST
class-map match-any system-cpp-police-stackwise-virt-control
description Stackwise Virtual
class-map match-any non-client-nrt-class
class-map match-any system-cpp-police-routing-control
description Routing control and Low Latency
class-map match-any system-cpp-police-protocol-snooping
description Protocol snooping
class-map match-any system-cpp-policy
match access-group name system-cpp-policy
class-map match-any system-cpp-police-dhcp-snooping
description DHCP snooping
class-map match-any system-cpp-police-system-critical
description System Critical and Gold Pkt
!
policy-map CoPP_policy
class Telnet_class
police cir 8000
conform-action transmit
exceed-action drop
policy-map system-cpp-policy
class Telnet_class
!
!
!
!
!
!
!
!
!
!
!
interface Loopback0
ip address 10.125.255.183 255.255.255.255
!
interface Port-channel4
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
!
interface Port-channel5
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
!
interface Port-channel6
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
!
interface Port-channel11
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
!
interface Port-channel13
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
!
interface Port-channel14
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
!
interface Port-channel16
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
!
interface Port-channel17
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
!
interface Port-channel20
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
!
interface GigabitEthernet0/0
vrf forwarding Mgmt-vrf
no ip address
shutdown
negotiation auto
!
interface GigabitEthernet1/0/1
description AT&T Primary Router
no switchport
ip address 10.125.252.253 255.255.255.254
!
interface GigabitEthernet1/0/2
description Telia Primary Router
switchport access vlan 14
switchport mode access
shutdown
spanning-tree portfast
!
interface GigabitEthernet1/0/3
switchport access vlan 10
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/0/4
switchport access vlan 10
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/0/5
switchport access vlan 10
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/0/6
switchport access vlan 10
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/0/7
switchport access vlan 10
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/0/8
switchport access vlan 10
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/0/9
switchport access vlan 10
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/0/10
switchport access vlan 10
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/0/11
switchport access vlan 10
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/0/12
switchport access vlan 10
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/0/13
switchport access vlan 10
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/0/14
switchport access vlan 10
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/0/15
switchport access vlan 10
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/0/16
switchport access vlan 10
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/0/17
switchport access vlan 10
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/0/18
switchport access vlan 10
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/0/19
switchport access vlan 10
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/0/20
switchport access vlan 10
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/0/21
!
interface GigabitEthernet1/0/22
interface GigabitEthernet1/0/23
switchport trunk allowed vlan 10,14
switchport mode trunk
!
interface GigabitEthernet1/0/24
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
shutdown
!
interface GigabitEthernet1/1/1
!
interface GigabitEthernet1/1/2
!
interface GigabitEthernet1/1/3
!
interface GigabitEthernet1/1/4
!
interface TenGigabitEthernet1/1/1
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
channel-group 20 mode active
!
interface TenGigabitEthernet1/1/2
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
channel-group 17 mode active
!
interface TenGigabitEthernet1/1/3
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
channel-group 14 mode active
!
interface TenGigabitEthernet1/1/4
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
channel-group 13 mode active
!
interface TenGigabitEthernet1/1/5
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
channel-group 4 mode active
!
interface TenGigabitEthernet1/1/6
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
channel-group 5 mode active
!
interface TenGigabitEthernet1/1/7
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
channel-group 6 mode active
!
interface TenGigabitEthernet1/1/8
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
channel-group 11 mode active
!
interface FortyGigabitEthernet1/1/1
interface FortyGigabitEthernet1/1/2
interface TwentyFiveGigE1/1/1
interface TwentyFiveGigE1/1/2
interface GigabitEthernet2/0/1
description AT&T Secondary Router
no switchport
ip address 10.125.252.255 255.255.255.254
interface GigabitEthernet2/0/2
description Telia Secondary Router
switchport access vlan 14
switchport mode access
shutdown
spanning-tree portfast
interface GigabitEthernet2/0/3
switchport access vlan 14
switchport mode access
spanning-tree portfast
interface GigabitEthernet2/0/4
switchport access vlan 14
switchport mode access
spanning-tree portfast
interface GigabitEthernet2/0/5
interface GigabitEthernet2/0/6
interface GigabitEthernet2/0/7
interface GigabitEthernet2/0/8
interface GigabitEthernet2/0/9
interface GigabitEthernet2/0/10
interface GigabitEthernet2/0/11
interface GigabitEthernet2/0/12
interface GigabitEthernet2/0/13
interface GigabitEthernet2/0/14
interface GigabitEthernet2/0/15
interface GigabitEthernet2/0/16
interface GigabitEthernet2/0/17
interface GigabitEthernet2/0/18
interface GigabitEthernet2/0/19
interface GigabitEthernet2/0/20
interface GigabitEthernet2/0/21
interface GigabitEthernet2/0/22
interface GigabitEthernet2/0/23
interface GigabitEthernet2/0/24
interface GigabitEthernet2/1/1
interface GigabitEthernet2/1/2
interface GigabitEthernet2/1/3
interface GigabitEthernet2/1/4
interface TenGigabitEthernet2/1/1
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
channel-group 20 mode active
interface TenGigabitEthernet2/1/2
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
channel-group 17 mode active
interface TenGigabitEthernet2/1/3
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
channel-group 14 mode active
interface TenGigabitEthernet2/1/4
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
channel-group 13 mode active
interface TenGigabitEthernet2/1/5
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
channel-group 16 mode active
interface TenGigabitEthernet2/1/6
interface TenGigabitEthernet2/1/7
interface TenGigabitEthernet2/1/8
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
interface FortyGigabitEthernet2/1/1
interface FortyGigabitEthernet2/1/2
interface TwentyFiveGigE2/1/1
interface TwentyFiveGigE2/1/2
interface GigabitEthernet3/0/1
interface GigabitEthernet3/0/2
interface GigabitEthernet3/0/3
interface GigabitEthernet3/0/4
interface GigabitEthernet3/0/5
interface GigabitEthernet3/0/6
interface GigabitEthernet3/0/7
interface GigabitEthernet3/0/8
interface GigabitEthernet3/0/9
interface GigabitEthernet3/0/10
interface GigabitEthernet3/0/11
interface GigabitEthernet3/0/12
interface GigabitEthernet3/0/13
interface GigabitEthernet3/0/14
interface GigabitEthernet3/0/15
interface GigabitEthernet3/0/16
interface GigabitEthernet3/0/17
interface GigabitEthernet3/0/18
interface GigabitEthernet3/0/19
interface GigabitEthernet3/0/20
interface GigabitEthernet3/0/21
interface GigabitEthernet3/0/22
interface GigabitEthernet3/0/23
interface GigabitEthernet3/0/24
interface GigabitEthernet3/1/1
interface GigabitEthernet3/1/2
interface GigabitEthernet3/1/3
interface GigabitEthernet3/1/4
interface TenGigabitEthernet3/1/1
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
channel-group 4 mode active
interface TenGigabitEthernet3/1/2
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
channel-group 5 mode active
interface TenGigabitEthernet3/1/3
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
channel-group 6 mode active
interface TenGigabitEthernet3/1/4
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
channel-group 11 mode active
interface TenGigabitEthernet3/1/5
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
channel-group 16 mode active
interface TenGigabitEthernet3/1/6
interface TenGigabitEthernet3/1/7
interface TenGigabitEthernet3/1/8
switchport trunk allowed vlan 10,11,14,91,254
switchport mode trunk
interface FortyGigabitEthernet3/1/1
interface FortyGigabitEthernet3/1/2
interface TwentyFiveGigE3/1/1
interface TwentyFiveGigE3/1/2
interface Vlan1
no ip address
shutdown
interface Vlan8
no ip address
interface Vlan10
ip address 10.125.0.1 255.255.254.0
no ip redirects
no ip unreachables
no ip proxy-arp
interface Vlan11
ip address 10.125.4.1 255.255.254.0
no ip redirects
no ip unreachables
no ip proxy-arp
interface Vlan14
ip address 193.142.14.1 255.255.255.0
no ip redirects
no ip unreachables
no ip proxy-arp
interface Vlan91
ip address 10.125.6.1 255.255.255.0
no ip redirects
no ip unreachables
no ip proxy-arp
interface Vlan254
ip address 10.125.7.1 255.255.255.224
no ip redirects
no ip unreachables
no ip proxy-arp
router bgp 65140
bgp router-id 10.125.255.183
bgp log-neighbor-changes
no bgp default ipv4-unicast
neighbor 10.125.252.252 remote-as 65000
neighbor 10.125.252.252 description AT&T_Primary
neighbor 10.125.252.254 remote-as 65000
neighbor 10.125.252.254 description AT&T_Secondary
address-family ipv4
network 10.125.0.0 mask 255.255.254.0
network 10.125.4.0 mask 255.255.254.0
network 10.125.6.0 mask 255.255.255.0
network 10.125.7.0 mask 255.255.255.224
network 10.125.255.183 mask 255.255.255.255
neighbor 10.125.252.252 activate
neighbor 10.125.252.252 send-community
neighbor 10.125.252.252 soft-reconfiguration inbound
neighbor 10.125.252.252 route-map ATT_Primary_OUT out
neighbor 10.125.252.254 activate
neighbor 10.125.252.254 send-community
neighbor 10.125.252.254 soft-reconfiguration inbound
neighbor 10.125.252.254 route-map ATT_Secondary_IN in
neighbor 10.125.252.254 route-map ATT_Secondary_OUT out
exit-address-family
ip forward-protocol nd
no ip http server
ip http authentication local
no ip http secure-server
ip http client source-interface Vlan254
ip bgp-community new-format
ip ssh version 2
ip access-list extended CoPP_traffic
permit ip any any
logging host 10.125.97.132
ip access-list extended 155
remark MANAGEMENT-RESTRICTION
permit ip 192.168.0.0 0.0.3.255 any
permit ip 10.125.0.0 0.0.255.255 any
permit ip 213.138.129.0 0.0.0.255 any
permit ip 141.192.78.0 0.0.0.255 any
deny ip any any
route-map ATT_Secondary_IN permit 10
set as-path prepend 65000 65000 65000
route-map ATT_Primary_OUT permit 10
set community 65000:5003
route-map ATT_Secondary_OUT permit 10
set community 65000:5003
route-map ATT_Secondary_OUT permit 100
set as-path prepend 65140 65140 65140
control-plane
service-policy input system-cpp-policy
line con 0
stopbits 1
line vty 0 4
exec-timeout 30 0
privilege level 15
transport input telnet ssh
line vty 5 15
access-class 155 in
exec-timeout 30 0
privilege level 15
transport input telnet ssh
sw1#
10-16-2020 09:15 AM
There are several things in this post which seem odd, especially the fact that the traceroute is to Public IP 8.8.8.8 but all of the addresses in the traceroute output are Private IP addresses. How does that work? Perhaps the explanation is that the original poster has "disguised" the real addresses. That could make sense but it would be nice if the original poster had told us this.
I note a couple of things that could perhaps explain this issue:
- all of the addresses configured on this switch are Private IP addresses. And there is no address translation configured. Lack of address translation would prevent packets with private IP source addresses from going through the Internet.
- there might be some helpful information we might assume from the configuration of the interface that connects to outside:
interface GigabitEthernet1/0/1
description AT&T Primary Router
no switchport
ip address 10.125.252.253 255.255.255.254
So this is a routed port with a /31 mask. Looks like a point to point to the service provider. And the comment indicates that it is AT&T.
So the first traceroute will use as its source address 10.255.252.253. For AT&T it is a connected point to point so they respond to it. Either this is really a Public IP disguised or AT&T does address translation for it. In either case the traceroute does successfully reach the destination.
The second traceroute uses as its source address the IP of vlan 10. There are 2 possibilities of what causes the problem:
- this is a Private IP and there is no address translation for it
- AT&T does not have a route to this source subnet
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide