Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
845
Views
0
Helpful
3
Replies

9300 switch cannot reach external server from any VLAN

mcardinal
Level 1
Level 1

‎07-13-2023 04:47 PM

Greetings,

I have a Cisco 9300 access switch that cannot ping one particular server from the switch CLI or from a device connected to an interface assigned to VLAN203 or VLAN760.

Another Cisco 9300 access switch in the same IDF, connected to the same upstream distribution switch can ping the server's IP directly from switch CLI or from a device connected to an interface assigned to VLAN203 or VLAN760.

The interfaces on both switches that are assigned to VLAN760 do have an ACL assigned, but the ACL should allow the ICMP traffic.

The interfaces on both switches that are assigned to VLAN203 do not have any ACL assigned.

The management VLAN has an ACL assigned that should allow the ICMP traffic.

The port channel configuration on the distribution switch for both of the downstream access switches is identical and has no ACL applied to the port channels.

I can not reboot the switch yet, though I believe that may resolve the problem. My question for the community is, am I missing something? This did work before and I am unaware of any changes being pushed to the affected switch.

Thank you for any help you may be able to provide!

Matthew

Labels:
0 Helpful
3 Replies 3

Flavio Miranda
VIP
VIP

‎07-13-2023 08:26 PM

Hi @mcardinal 

Would be Nice to see the show running from the trouble switch,  the working switch and the upstream switch.  You are confidente on the job done but in a script we always can miss something.

 Without see the configuration the recommendation would be the reload as you already have plans for.

0 Helpful

ammahend
VIP
VIP

‎07-14-2023 01:41 AM

Make sure vlan is defined on non working switch and vlan is allowed on upstream trunk on non working switch as well as on the upstream switch link. After ping see if the the arp table is populated with correct mac like working switch, try pinging from a different source interface.

-hope this helps-
0 Helpful

DanielP211
VIP
VIP

‎07-14-2023 01:57 AM

Hello! 

Do you have the ip routing enabled? Also do you have ip default-gateway or ip route 0.0.0.0 added to the configuration? Could you also paste the config?

BR

****Kindly rate all useful posts*****
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card