cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
955
Views
5
Helpful
7
Replies

C3650 - ICMP/SSH/TELNET/HTTPS

Hi There 

I have a very strange issue with one of my switches, when I am on local lan I am able to ping, ssh, telnet as well as HTTPS to the switch. When I try and perform the same action from one my other sites I am able to get to every other switch via the aforementioned protocol except that one.

 

Below is my config and for the life of me cant why this is not working from othe

 

 

1 Accepted Solution

Accepted Solutions

pieterh
VIP
VIP

>>>
interface Vlan1
description DATA
ip address 1
...
ip default-gateway 1
<<<
is this actual config ??? or did you mask the real address/mask?

apart from this: you've got "ip routing" in the config
-> you either need to
- remove "ip routing" and use the default-gateway statement (for management access)
- or keep "ip-routing" and add a NULL static route "ip route 0.0.0.0 0.0.0.0 <routers IP address> "

View solution in original post

7 Replies 7

Hello,

 

post the configuration of one of the non-problem switches as well.


Current configuration : 6294 bytes
!
! Last configuration change at 15:50:36 SAST Wed Dec 2 2020
!
version 15.2
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime
service timestamps log datetime msec localtime
service password-encryption
service sequence-numbers
!
hostname f
!
boot-start-marker
boot-end-marker
!
logging buffered 51200 warnings
logging console critical
enable secret 5 $1$uX5h$UPoRwWXa7Fz1/hfviT1C9/
!
username admin privilege 15 secret 5 $1$i4w1$w.ryQTNJNVQSZqntueSWf1
username admin2 privilege 15 secret 5 $1$O/rA$IMOI6wUvUNlONfHLxzE79.
no aaa new-model
clock timezone SAST 2 0
switch 1 provision ws-c2960x-48ts-l
!
!
login block-for 180 attempts 3 within 180
login on-failure log
login on-success log
!
!
!
!
!
!
!
crypto pki trustpoint TP-self-signed-1229781632
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-1229781632
revocation-check none
rsakeypair TP-self-signed-1229781632
!
!
crypto pki certificate chain TP-self-signed-1229781632
certificate self-signed 01
3082022B 30820194 A0030201 02020101 300D0609 2A864886 F70D0101 05050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 31323239 37383136 3332301E 170D3139 30333031 31313036
33385A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D31 32323937
38313633 3230819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
8100D023 805791D3 407725C9 04A727E4 C80BBA23 1C8459A1 7C4D6967 D6E5EC46
FB339131 4BDBEE49 C1464529 79A5D7BC 51D81248 CDAC6FD0 46153F88 8A9A66E1
F1A8CAC0 D10EEFE0 FA52BFF4 F39405ED 47E858C7 B5C9A049 CFFBFC17 1EBF4624
F8D7A103 A91EC604 34EF0934 4F576855 D8CA34B3 9BC1A064 BA6877A6 F8A12496
7E530203 010001A3 53305130 0F060355 1D130101 FF040530 030101FF 301F0603
551D2304 18301680 14017A39 F7BB389A C27C9DBC 02DF1E64 FDA564F6 51301D06
03551D0E 04160414 017A39F7 BB389AC2 7C9DBC02 DF1E64FD A564F651 300D0609
2A864886 F70D0101 05050003 818100A8 98C42B13 9A9CDD66 93668FC0 77FF5CFF
7CBC41A9 FCECB5AA 9C20922F E08B4081 B20E102C 8982E253 3D46AF3D 0AAD11DB
D6574575 C317280A C702808A 89F11EE0 B060D73E 79FE8CDC 6BD56686 02882B4C
435C660F 66FA9898 A7BAF9D5 3DE74226 D841BA7B A20F2CD0 6A41B08E 52A15250
11762DA3 EBB8D846 69441FC3 EE4914
quit
!
spanning-tree mode rapid-pvst
spanning-tree extend system-id
!
!
!
!
vlan internal allocation policy ascending
!
!
!
!
!
!
!
!
!
!
!
interface Port-channel1
description fhg-jhb-core01
switchport mode trunk
!
interface FastEthernet0
no ip address
!
interface GigabitEthernet1/0/1
!
interface GigabitEthernet1/0/2
!
interface GigabitEthernet1/0/3
!
interface GigabitEthernet1/0/4
!
interface GigabitEthernet1/0/5
!
interface GigabitEthernet1/0/6
!
interface GigabitEthernet1/0/7
!
interface GigabitEthernet1/0/8
!
interface GigabitEthernet1/0/9
!
interface GigabitEthernet1/0/10
!
interface GigabitEthernet1/0/11
!
interface GigabitEthernet1/0/12
!
interface GigabitEthernet1/0/13
!
interface GigabitEthernet1/0/14
!
interface GigabitEthernet1/0/15
!
interface GigabitEthernet1/0/16
!
interface GigabitEthernet1/0/17
!
interface GigabitEthernet1/0/18
!
interface GigabitEthernet1/0/19
!
interface GigabitEthernet1/0/20
!
interface GigabitEthernet1/0/21
switchport access vlan 93
!
interface GigabitEthernet1/0/22
!
interface GigabitEthernet1/0/23
description C&C
switchport access vlan 300
!
interface GigabitEthernet1/0/24
!
interface GigabitEthernet1/0/25
!
interface GigabitEthernet1/0/26
!
interface GigabitEthernet1/0/27
!
interface GigabitEthernet1/0/28
!
interface GigabitEthernet1/0/29
!
interface GigabitEthernet1/0/30
!
interface GigabitEthernet1/0/31
!
interface GigabitEthernet1/0/32
!
interface GigabitEthernet1/0/33
!
interface GigabitEthernet1/0/34
!
interface GigabitEthernet1/0/35
!
interface GigabitEthernet1/0/36
!
interface GigabitEthernet1/0/37
!
interface GigabitEthernet1/0/38
!
interface GigabitEthernet1/0/39
!
interface GigabitEthernet1/0/40
!
interface GigabitEthernet1/0/41
!
interface GigabitEthernet1/0/42
!
interface GigabitEthernet1/0/43
!
interface GigabitEthernet1/0/44
description UBINT-AP RECEPTION
switchport mode trunk
!
interface GigabitEthernet1/0/45
!
interface GigabitEthernet1/0/46
!
interface GigabitEthernet1/0/47
description fhg-jhb-core01
switchport mode trunk
channel-group 1 mode on
!
interface GigabitEthernet1/0/48
description fhg-jhb-core01
switchport mode trunk
channel-group 1 mode on
!
interface GigabitEthernet1/0/49
!
interface GigabitEthernet1/0/50
!
interface GigabitEthernet1/0/51
switchport mode trunk
!
interface GigabitEthernet1/0/52
!
interface Vlan1
ip address 1
ip helper-address 1
no ip route-cache cef
!
ip default-gateway .21
ip http server
ip http secure-server
!
!
logging trap debugging
!
snmp-server community
snmp-server location
!
------^C
!
line con 0
login local
line vty 0 4
login local
line vty 5 15
login local
!
ntp server 1.206
end

pieterh
VIP
VIP

>>>
interface Vlan1
description DATA
ip address 1
...
ip default-gateway 1
<<<
is this actual config ??? or did you mask the real address/mask?

apart from this: you've got "ip routing" in the config
-> you either need to
- remove "ip routing" and use the default-gateway statement (for management access)
- or keep "ip-routing" and add a NULL static route "ip route 0.0.0.0 0.0.0.0 <routers IP address> "

Removed IP

Default Gateway is the same on all switches

 

Hello,

 

what if you configure:

 

no ip routing

 

on the 'problem' switch, as suggested by @pieterh ?

Hello

Disable IP routing


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
Review Cisco Networking for a $25 gift card