06-27-2023 06:34 AM
Hello,
I've acquired a new Cisco CBS 220 24P 4X and I've an issue to add VLAN into trunk interfaces.
Switch9E8FD1#conf t
Switch9E8FD1(config)#int gi24
Switch9E8FD1(config-if)#switchport trunk allowed vlan add 2,3,4,10
Switch9E8FD1(config-if)#end
Switch9E8FD1#wr mem
Building configuration...
[OK]
And when I check my running conf :
Switch9E8FD1#sh run
config-file-header
CBS220-24P-4X
Switch9E8FD1
v2.0.2.8
CLI v1.0
@
!
!
!
username "(hidden)" privilege admin secret 8 (hidden)
!
!
!
sntp server pool.ntp.org
sntp server time-a.timefreq.bldrdoc.gov
sntp server time-b.timefreq.bldrdoc.gov
sntp server time-c.timefreq.bldrdoc.gov
sntp server time-pnp.cisco.com
!
vlan 2
name "infra"
vlan 3
name "admin"
vlan 4
name "outils"
vlan 10
name "cwg_lan"
vlan 11
name "ie_lan"
vlan 12
name "lan_regie"
vlan 20
name "cwg_wlan"
vlan 21
name "ie_wlan"
vlan 22
name "regie_wlan"
vlan 40
name "guest"
vlan 100
name "dmz_basse"
vlan 101
name "dmz_haute"
vlan 1000
name "troll"
voice vlan oui-table add 00:E0:BB 3COM
voice vlan oui-table add 00:03:6B Cisco
voice vlan oui-table add 00:E0:75 Veritel
voice vlan oui-table add 00:D0:1E Pingtel
voice vlan oui-table add 00:01:E3 Siemens
voice vlan oui-table add 00:60:B9 NEC/Philips
voice vlan oui-table add 00:0F:E2 H3C
voice vlan oui-table add 00:09:6E Avaya
!
!
!
!
!
spanning-tree mst configuration
name "(hidden)"
!
!
!
!
!
!
!
!
!
!
!
!
ip ssh server
ip ssh password-auth
no ip http server
no ip http secure-server
!
!
!
!
!
!
!
!
!
interface gi1
switchport access vlan 10
!
[...]
interface gi24
switchport mode trunk
description "cwglan"
!
interface te1
!
interface te2
!
interface te3
!
interface te4
!
!
!
!
As you can see, gi24 doesn't have my vlans. There are only trunk mode set few minutes ago and interface description.
I've disabled web interface to avoid conflicts.
Why is it not working ?
Thanks in advance.
Best regards.
Solved! Go to Solution.
06-27-2023 09:59 AM
Ok I think I've found the solution.
CDS220 doesn't work like 2960X ; for my usage, I need to set interface to "general" and not "trunk" to let specific tagged vlan on interface (https://www.cisco.com/c/en/us/td/docs/switches/lan/csbms/CBS_250_350/CLI/cbs-350-cli-/vlan-commands.html#wp8381803720)
So for my config :
Switch9E8FD1(config-if)#switchport mode general
Switch9E8FD1(config-if)#switchport general allowed vlan add 2-4,10 tagged
interface gi24
switchport mode general
switchport general allowed vlan add 2-4,10 tagged
and it's work like expected.
Maybe someone can confirm it's the best practice ?
06-27-2023 06:47 AM
Hello @cewege,
please type
Switch9E8FD1#sh int trunk
You will see the vlan allowed ont your trunk port, e.g gi24
06-27-2023 07:00 AM
Hello,
Thanks for your quick reply
Here's command results :
Switch9E8FD1#sh int trunk
% bad parameter value
Switch9E8FD1#sh int trunk gi24
% bad parameter value
Switch9E8FD1#sh gi24 trunk
Unknown command
Switch9E8FD1#sh int
GigabitEthernet Gigabit ethernet interface to configure
Port-Channel IEEE 802.3 Link Aggregateion interface
TenGigabitEthernet 10 Gigabit ethernet interface to configure
protected-ports Protected ports information
status Interface status
switchport switchport
Switch9E8FD1#sh int GigabitEthernet24
GigabitEthernet24 is up
Hardware is Gigabit Ethernet
Auto-duplex, Auto-speed, media type is Copper
flow-control is off
back-pressure is enabled
1589 packets input, 105318 bytes, 0 throttles
Received 1515 broadcasts (14 multicasts)
0 runts, 0 giants, 0 throttles
203 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
14 multicast, 0 pause input
0 input packets with dribble condition detected
5690 packets output, 1246343 bytes, 0 underrun
0 output errors, 0 collisions, 0 interface resets
0 babbles, 0 late collision, 0 deferred
0 PAUSE output
Switch9E8FD1#sh int GigabitEthernet24 trunk
Unknown command
06-27-2023 08:31 AM - edited 06-27-2023 08:32 AM
Sorry @cewege ,
#sh int switchport
And share the output, thanks.
06-27-2023 08:45 AM
Here's command results :
Switch9E8FD1#sh int switchport gi24
Port : gi24
Port Mode : Trunk
Gvrp Status : disabled
Ingress Filtering : enabled
Acceptable Frame Type : all
Ingress UnTagged VLAN ( NATIVE ) : 1
Trunking VLANs Enabled: 1-4094
Port is member in:
Vlan Name Egress rule
------- ----------------------- -----------------
1 default Untagged
2 infra Tagged
3 admin Tagged
4 outils Tagged
10 cwg_lan Tagged
11 ie_lan Tagged
12 lan_regie Tagged
20 cwg_wlan Tagged
21 ie_wlan Tagged
22 regie_wlan Tagged
40 guest Tagged
100 dmz_basse Tagged
101 dmz_haute Tagged
1000 troll Tagged
Forbidden VLANs:
Vlan Name
------- -----------------------
I don't understand by all vlan are set by default.
So I've reset gi24 :
Switch9E8FD1(config)#default interface gi24
Interface gi24 set to default configuration
Now, it seems ok :
Switch9E8FD1(config)#default interface gi24
Interface gi24 set to default configuration
Switch9E8FD1(config)#exit
Switch9E8FD1#sh int switchport gi24
Port : gi24
Port Mode : Access
Gvrp Status : disabled
Ingress Filtering : enabled
Acceptable Frame Type : all
Ingress UnTagged VLAN ( NATIVE ) : 1
Trunking VLANs Enabled: 1-4094
Port is member in:
Vlan Name Egress rule
------- ----------------------- -----------------
1 default Untagged
Forbidden VLANs:
Vlan Name
------- -----------------------
But when I set VLAN I want on this interface, all VLAN are tagged by default :
Switch9E8FD1(config-if)#switchport trunk allowed vlan add 2-4,10
Port gi24: Port mode is not trunk
Switch9E8FD1(config-if)#switchport mode trunk
Switch9E8FD1(config-if)#switchport trunk allowed vlan add 2-4,10
[...]
Switch9E8FD1#sh int switchport gi24
Port : gi24
Port Mode : Trunk
Gvrp Status : disabled
Ingress Filtering : enabled
Acceptable Frame Type : all
Ingress UnTagged VLAN ( NATIVE ) : 1
Trunking VLANs Enabled: 1-4094
Port is member in:
Vlan Name Egress rule
------- ----------------------- -----------------
1 default Untagged
2 infra Tagged
3 admin Tagged
4 outils Tagged
10 cwg_lan Tagged
11 ie_lan Tagged
12 lan_regie Tagged
20 cwg_wlan Tagged
21 ie_wlan Tagged
22 regie_wlan Tagged
40 guest Tagged
100 dmz_basse Tagged
101 dmz_haute Tagged
1000 troll Tagged
Forbidden VLANs:
Vlan Name
------- -----------------------
I'm.... I don't know what's happening.
Have I missed something ?
Best regards.
06-27-2023 09:59 AM
Ok I think I've found the solution.
CDS220 doesn't work like 2960X ; for my usage, I need to set interface to "general" and not "trunk" to let specific tagged vlan on interface (https://www.cisco.com/c/en/us/td/docs/switches/lan/csbms/CBS_250_350/CLI/cbs-350-cli-/vlan-commands.html#wp8381803720)
So for my config :
Switch9E8FD1(config-if)#switchport mode general
Switch9E8FD1(config-if)#switchport general allowed vlan add 2-4,10 tagged
interface gi24
switchport mode general
switchport general allowed vlan add 2-4,10 tagged
and it's work like expected.
Maybe someone can confirm it's the best practice ?
06-27-2023 09:50 PM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide