cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
239
Views
1
Helpful
1
Replies

C9200L-48P-4G cannot ping and cannot SSH but is working with config

ddavis99
Level 1
Level 1

hi folks,  I have a new cisc0 c9200l-48p-4g switch I've configured,  i cannot ping it and i cannot SSH to it to manage remotely.

I've set it up with a base config that mirrors the 2960 that it replaced,

it resides on a 10.10.10.x subnet which is vlan10 but native vlan on the trunk is vlan1 10.10.1.x

we have routing policy between these two vlans,  example we have 2960's with vlan 10 default gateway and ip which ping and SSh fine

however, i cannot ping it, i cannot SSH to remotely manage it,  BUT it is working with all the vlan 10 / 11 devices on it correctly.

i must be doing something wrong or maybe some of the l3 options these new switches have are interfering?  could someone audit my config and tell me what I'm doing wrong please?

 

Current configuration : 12520 bytes
!
! Last configuration change at 11:25:43 UTC Tue Jul 16 2024
!
version 17.6
service timestamps debug datetime msec
service timestamps log datetime msec
service call-home
platform punt-keepalive disable-kernel-core
!
hostname ---------------------------
!
!
vrf definition Mgmt-vrf
!
address-family ipv4
exit-address-family
!
address-family ipv6
exit-address-family
!
logging console emergencies
enable secret -----------------------------------
enable password --------------------------
!
!
!
!
no aaa new-model
switch 1 provision c9200l-48p-4g
!
!
!
!
!
!
!
!
!
ip routing
!
ip domain name -------------------
!
!
!
login on-success log
!
crypto pki trustpoint SLA-TrustPoint
enrollment pkcs12
revocation-check crl
!
crypto pki trustpoint TP-self-signed-3020552832
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-3020552832
revocation-check none
rsakeypair TP-self-signed-3020552832
!
!
crypto pki certificate chain SLA-TrustPoint
certificate ca 01
redacted
quit
crypto pki certificate chain TP-self-signed-3020552832
certificate self-signed 01
redacted
quit
!
license boot level network-essentials addon dna-essentials
!
!
diagnostic bootup level minimal
!
spanning-tree mode rapid-pvst
spanning-tree extend system-id
memory free low-watermark processor 10633
!
username ------------------- secret --------------------------------------------
!
redundancy
mode sso
!
!
transceiver type all
monitoring
lldp run
!
!
class-map match-any system-cpp-police-ewlc-control
description EWLC Control
class-map match-any system-cpp-police-topology-control
description Topology control
class-map match-any system-cpp-police-sw-forward
description Sw forwarding, L2 LVX data packets, LOGGING, Transit Traffic
class-map match-any system-cpp-default
description EWLC data, Inter FED Traffic
class-map match-any system-cpp-police-sys-data
description Openflow, Exception, EGR Exception, NFL Sampled Data, RPF Failed
class-map match-any system-cpp-police-punt-webauth
description Punt Webauth
class-map match-any system-cpp-police-l2lvx-control
description L2 LVX control packets
class-map match-any system-cpp-police-forus
description Forus Address resolution and Forus traffic
class-map match-any system-cpp-police-multicast-end-station
description MCAST END STATION
class-map match-any system-cpp-police-high-rate-app
description High Rate Applications
class-map match-any system-cpp-police-multicast
description MCAST Data
class-map match-any system-cpp-police-l2-control
description L2 control
class-map match-any system-cpp-police-dot1x-auth
description DOT1X Auth
class-map match-any system-cpp-police-data
description ICMP redirect, ICMP_GEN and BROADCAST
class-map match-any system-cpp-police-stackwise-virt-control
description Stackwise Virtual OOB
class-map match-any non-client-nrt-class
class-map match-any system-cpp-police-routing-control
description Routing control and Low Latency
class-map match-any system-cpp-police-protocol-snooping
description Protocol snooping
class-map match-any system-cpp-police-dhcp-snooping
description DHCP snooping
class-map match-any system-cpp-police-ios-routing
description L2 control, Topology control, Routing control, Low Latency
class-map match-any system-cpp-police-system-critical
description System Critical and Gold Pkt
class-map match-any system-cpp-police-ios-feature
description ICMPGEN,BROADCAST,ICMP,L2LVXCntrl,ProtoSnoop,PuntWebauth,MCASTData,Transit,DOT1XAuth,Swfwd,LOGGING,L2LVXData,ForusTraffic,ForusARP,McastEndStn,Openflow,Exception,EGRExcption,NflSampled,RpfFailed
!
policy-map system-cpp-policy
!
!
!
!
!
!
!
!
!
!
!
!
!
!
interface GigabitEthernet0/0
vrf forwarding Mgmt-vrf
no ip address
shutdown
!
interface GigabitEthernet1/0/1
switchport access vlan 10
switchport mode trunk
!
interface GigabitEthernet1/0/2
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/3
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/4
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/5
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/6
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/7
switchport access vlan 11
switchport mode access
!
interface GigabitEthernet1/0/8
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/9
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/10
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/11
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/12
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/13
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/14
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/15
switchport access vlan 202
switchport mode access
!
interface GigabitEthernet1/0/16
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/17
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/18
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/19
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/20
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/21
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/22
switchport access vlan 206
switchport mode access
!
interface GigabitEthernet1/0/23
switchport access vlan 205
switchport mode access
!
interface GigabitEthernet1/0/24
switchport access vlan 207
switchport mode access
!
interface GigabitEthernet1/0/25
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/26
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/27
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/28
switchport access vlan 210
switchport mode access
!
interface GigabitEthernet1/0/29
switchport access vlan 201
switchport mode access
!
interface GigabitEthernet1/0/30
switchport access vlan 211
switchport mode access
!
interface GigabitEthernet1/0/31
switchport access vlan 10
!
interface GigabitEthernet1/0/32
switchport access vlan 209
switchport mode access
!
interface GigabitEthernet1/0/33
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/34
switchport access vlan 208
switchport mode access
!
interface GigabitEthernet1/0/35
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/36
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/37
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/38
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/39
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/40
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/41
switchport access vlan 210
switchport mode access
!
interface GigabitEthernet1/0/42
switchport access vlan 10
switchport mode trunk
!
interface GigabitEthernet1/0/43
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/44
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/45
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/46
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/47
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/0/48
switchport access vlan 10
switchport mode access
!
interface GigabitEthernet1/1/1
!
interface GigabitEthernet1/1/2
!
interface GigabitEthernet1/1/3
!
interface GigabitEthernet1/1/4
!
interface Vlan1
no ip address
!
interface Vlan10
IP address 10.10.10.210 255.255.255.0
!
ip default-gateway 10.10.10.254
ip forward-protocol nd
ip http server
ip http secure-server
!
!
!
!
control-plane
service-policy input system-cpp-policy
!
!
line con 0
exec-timeout 0 0
length 0
stopbits 1
line aux 0
line vty 0 4
login local
length 0
transport input ssh
line vty 5 15
login local
length 0
transport input ssh
!
call-home
! If contact email address in call-home is configured as sch-smart-licensing@cisco.com
! the email address configured in Cisco Smart License Portal will be used as contact email address to send SCH notifications.
contact-email-addr sch-smart-licensing@cisco.com
profile "CiscoTAC-1"
active
destination transport-method http
!
!
!
!
!
!
end

 

1 Accepted Solution

Accepted Solutions

Ip route 0.0.0.0 0.0.0.0 10.10.10.254

Add this and check

MHM

View solution in original post

1 Reply 1

Ip route 0.0.0.0 0.0.0.0 10.10.10.254

Add this and check

MHM

Review Cisco Networking for a $25 gift card