02-28-2012 05:24 PM - edited 03-07-2019 05:14 AM
Hello,
Before I start, I just want to say that I am not a Cisco Expert and that my knowledge is limited but I have configured multiple Cisco Routers and Switches with basic configurations.
At the moment I'm having issues with a setup I've put in place at a new site.
I have a 3750 switch setup as a Ditribution switch where all my additional switches will plug into. I have a data vlan, voice vlan, server vlan and managment vlan. I have 1 server plugged into the server vlan on the 3750 which is our DNS and DHCP server and if I plug any users into the configured user ports they are able to obtain an IP and access the network. The problem is with the 2960 that is connected does not allow any users to obtain an IP address and it seems that the only IP accessible from the 3750 on the 2960 is the management vlan. Here is a copy of the 3750 confirguration and the 2960...
3750
hostname D1
!
port-channel load-balance src-dst-ip
no file verify auto
!
spanning-tree mode rapid-pvst
spanning-tree extend system-id
spanning-tree vlan 1 priority 0
spanning-tree vlan 2-4094 priority 24576
!
vlan internal allocation policy ascending
!
vlan 2
name DVLAN
!
vlan 4
name VVLAN
!
vlan 254
name Management
!
vlan 666
name Servers
!
interface Port-channel1
description PORTCHANNEL A1
switchport trunk encapsulation dot1q
switchport mode trunk
switchport nonegotiate
!
interface GigabitEthernet1/0/1
description Port Usager
switchport access vlan 666
switchport mode access
switchport nonegotiate
switchport voice vlan 4
switchport port-security maximum 50
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
srr-queue bandwidth share 10 10 60 20
srr-queue bandwidth shape 10 0 0 0
queue-set 2
priority-queue out
mls qos trust cos
auto qos voip trust
storm-control broadcast level 40.00
storm-control action trap
no cdp enable
spanning-tree portfast
!
interface GigabitEthernet1/0/2 to 20
description Port Usager
switchport access vlan 2
switchport mode access
switchport nonegotiate
switchport voice vlan 4
switchport port-security maximum 50
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
srr-queue bandwidth share 10 10 60 20
srr-queue bandwidth shape 10 0 0 0
queue-set 2
priority-queue out
mls qos trust cos
auto qos voip trust
storm-control broadcast level 40.00
storm-control action trap
no cdp enable
spanning-tree portfast
!
interface GigabitEthernet1/0/21
description 192.168.254.41
switchport trunk encapsulation dot1q
switchport mode trunk
switchport nonegotiate
srr-queue bandwidth share 10 10 60 20
queue-set 2
priority-queue out
channel-group 1 mode active
!
interface GigabitEthernet1/0/22
description 192.168.254.41
switchport trunk encapsulation dot1q
switchport mode trunk
switchport nonegotiate
srr-queue bandwidth share 10 10 60 20
queue-set 2
priority-queue out
channel-group 1 mode active
!
interface GigabitEthernet1/0/23
!
interface GigabitEthernet1/0/24
!
interface GigabitEthernet1/0/25
!
interface GigabitEthernet1/0/26
!
interface GigabitEthernet1/0/27
!
interface GigabitEthernet1/0/28
!
interface Vlan1
no ip address
shutdown
!
interface Vlan2
ip address 172.24.2.30 255.255.254.0
ip helper-address 172.24.1.100
no ip redirects
no ip proxy-arp
!
interface Vlan4
ip address 172.24.4.30 255.255.254.0
ip helper-address 172.24.1.100
no ip redirects
no ip proxy-arp
!
interface Vlan256
ip address 192.168.256.21 255.255.255.0
ip helper-address 172.24.1.100
no ip redirects
no ip proxy-arp
!
interface Vlan666
description Server Vlan
ip address 172.24.0.30 255.255.254.0
no ip redirects
no ip proxy-arp
!
router eigrp 2
passive-interface Vlan2
passive-interface Vlan4
passive-interface Vlan254
network 172.24.0.30 0.0.0.0
network 172.24.0.0 0.0.1.255
network 172.24.2.30 0.0.0.0
network 172.24.4.30 0.0.0.0
network 192.168.256.21 0.0.0.0
no auto-summary
eigrp router-id 192.168.254.21
!
ip classless
!end
2960
hostname A1
!
port-channel load-balance src-dst-ip
!
spanning-tree mode rapid-pvst
spanning-tree extend system-id
!
vlan internal allocation policy ascending
!
vlan 4
name Voice
!
vlan 2
name Data
!
vlan 254
name MVLAN
!
vlan 666
name Servers
!
!
interface Port-channel1
description PORTCHANNEL to D1
switchport mode trunk
switchport nonegotiate
!
interface FastEthernet0/1 to 48
description PORT USER
switchport mode access
switchport voice vlan 4
srr-queue bandwidth share 10 10 60 20
priority-queue out
mls qos trust cos
storm-control broadcast level 40.00
storm-control action trap
auto qos voip trust
spanning-tree portfast
!
interface GigabitEthernet0/1
!
interface GigabitEthernet0/2
!
interface GigabitEthernet0/3
description Uplink to D1
switchport mode trunk
switchport nonegotiate
priority-queue out
channel-group 1 mode active
!
interface GigabitEthernet0/4
description Uplink to D1
switchport mode trunk
switchport nonegotiate
priority-queue out
channel-group 1 mode active
!
interface Vlan1
no ip address
no ip route-cache
shutdown
!
interface Vlan254
ip address 192.168.254.41 255.255.255.0
no ip redirects
no ip unreachables
no ip proxy-arp
no ip route-cache
!
ip default-gateway 192.168.254.21
end
Keep in mind that there are certain things I removed from the configurations shown and that I changed many of the IP addresses... Any ideas?
Solved! Go to Solution.
02-28-2012 06:08 PM
interface FastEthernet0/1 to 48
description PORT USER
switchport mode access
switchport voice vlan 4
Maybe because your users connected to the 2960 are all in the default VLAN (VLAN 1) interface? You've configured voice VLAN but where's your DATA VLAN?
02-28-2012 06:17 PM
You have a DATA VLAN of 2, which is not assigned to the interfaces. All are in default vlan 1. You need to configure those ports into access vlan 2 (DATA VLAN).
02-28-2012 05:45 PM
Hello,
Do you really have a gateway with IP 192.168.254.21 ? Based on the configs, i noticed it is 192.168.256.21. May be a typo?
02-28-2012 05:50 PM
Typo, I modified most of the Ip addresses. I don't think Cisco would have allowed it anyway.
Nicholas Sullo
02-28-2012 06:04 PM
Yep you are right ! Good morning for myself
Possible to provide me the below outputs from both switches
sh int trunk
sh etherchannel summary
Thanks
Vivek
02-28-2012 06:08 PM
interface FastEthernet0/1 to 48
description PORT USER
switchport mode access
switchport voice vlan 4
Maybe because your users connected to the 2960 are all in the default VLAN (VLAN 1) interface? You've configured voice VLAN but where's your DATA VLAN?
02-28-2012 06:17 PM
You have a DATA VLAN of 2, which is not assigned to the interfaces. All are in default vlan 1. You need to configure those ports into access vlan 2 (DATA VLAN).
02-29-2012 07:15 AM
Hi Guys,
Thanks for your input! It was exactly that, I was confused because all our other sites use the default VLAN1 and will only be using the additional VLAN’s in the future. In other words, I wasn’t keeping in mind that this NEW site was already going to be using our future configuration so I was just configuring it the same as all others. Thanks for your help…
“switchport access vlan 2”
Nicholas Sullo
Administrateur de Réseau, Systèmes d'information
02-29-2012 01:23 PM
Can you please mark this thread as "Answered"?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide