12-06-2017 10:55 PM - edited 03-08-2019 01:01 PM
This is a strange problem, posting here because we haven't been able to isolate the source of the issue. We recently migrated few switch stacks from 3750X/V2 to 2960X in different sites. After the migration, we are observing intermittent connectivity issues on random PCs on the network. The PCs are cnnected to Cisco IP phone, and the phone connects to a network point in the wall or desk. The symptoms are that the PC shows that it has lost network during the issue, including the applications such as Outlook and, RDP. The PC event viewer log shows that the DNS lookup has failed (Event ID 1014). All of this while the physical interface is still up on both the PC and the switch.
The PC cannot ping the gateway, nor any other PC on the same network. ARP -a output on the PC shows it has no arp for the gateway or has lost/deleted it. Packet capture on the PC NIC shows that the PC is sending ARP broadcasts to the gateway but there is no response. However, it can see ARP broadcasts from other PCs in the subnet/vlan during the issue. SPAN capture from the switch port shows that it is not seeing the ARP broadcasts sent from the PC.
In one of the sites, we disabled EEE (no power efficient ethernet) on the switch ports which seems to have resolved the issue. This is related to bug CSCut57181. But we have another site with the same issue, and disabling EEE did not help. We tried connecting the PC directly to the face plate on the wall bypassing the phone, and it still loses network intermittently. We had a vendor run cable tests and the results are good and the cabling meets the standard.
Has anyone else come across this issue? This could be related, I will post updates when I get one. Some more information about the devices involved.
Access Switch -
Model - WS-C2960X-48FPD-L
Number of switches in stack - 6
Software Version - 15.2(2)E5
Core Switch -
Model - WS-C3850-12XS
Number of switches in stack - 2
Software Version - 03.07.04E
Access Port Configuration on all ports -
switchport access vlan 923
switchport mode access
switchport voice vlan 823
switchport port-security maximum 3
switchport port-security aging time 2
switchport port-security
no power efficient-ethernet
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
auto qos voip cisco-phone
spanning-tree portfast
spanning-tree bpduguard enable
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY
Solved! Go to Solution.
12-06-2017 11:17 PM
12-06-2017 11:17 PM
12-07-2017 12:27 AM - edited 12-07-2017 01:50 AM
Bug CSCve53124 - The conditions are very similar, PCs on the master switch don't see any issues, only those on the stack members. However, we don't have both DHCP snooping and port-security enabled at the same time, and the ports do not flap. Do you think disabling port-security will help in this case?
Sw04#sh ip dhcp snooping
Switch DHCP snooping is disabled
Switch DHCP gleaning is disabled
DHCP snooping is configured on following VLANs:
none
DHCP snooping is operational on following VLANs:
none
DHCP snooping is configured on the following L3 Interfaces:
Insertion of option 82 is enabled
circuit-id default format: vlan-mod-port
remote-id: 7486.0b9b.f680 (MAC)
Option 82 on untrusted port is not allowed
Verification of hwaddr field is enabled
Verification of giaddr field is enabled
Definitely not the bug CSCue23882 , we don't have DAI and IPDT enabled on the switches.
12-27-2017 01:44 AM
Disabling port-security fixed the issue, definitely a SW bug. I will post an update as soon as the Cisco TAC responds to me.
12-10-2018 07:19 AM
Hi did you get a answer from TAC ? I have the same problem. Thx Mario
12-07-2017 07:26 AM
Could you run the following commands and paste the output?
12-07-2017 08:59 PM - edited 12-07-2017 09:38 PM
07-25-2019 08:19 AM
Hi, Any luck with the TAC I seem to be having very similar issues on x4 stack intermittent network drops for 10-15seconds or up to a minute.
07-25-2019 08:20 AM
Hi, Any luck with the TAC I seem to be having very similar issues on x4 stack intermittent network drops for 10-15seconds or up to a minute.
07-25-2019 11:52 PM
Hi @All
i just tried another IOS Version this seem´s to solve the problem. Please try the IOS 15.2(6)E2 this Version works and the problem didn't happen again.
Regards Mario
07-25-2019 11:53 PM
Hi @All
i just tried another IOS Version this seem´s to solve the problem. Please try the IOS 15.2(6)E2 this Version works and the problem didn't happen again.
Regards Mario
07-29-2020 09:13 PM
same issue here.
i have a stack of 2 and we upgraded to os 15.2(7)E2 and users on master switch in my case are having issue
i noticed the mac address of the client disappears from the port. no log entry or so ever.
also don't have dhcp snooping enabled.
disabling port security seems to be resolving the issue.
anybody found any solution besides downgrading?
this release has been out for a few months and is starred.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide