02-14-2019 10:21 PM - edited 03-08-2019 05:21 PM
So in my network I have a setup where all the switches are on a /26 management network, on a management vlan. I can ssh into both the directly connected switch, the core switch, and the networks router using their management addresses from the pc, but I cannot ssh or even ping the third switch connected to the core switch from the host pc. However I can SSH into the third switch from any of the other switches/router, so I am really confused as to what could be causing me to not be able to from the host, if I can from the switch that the host is connected to using the same address.
Does anyone have any ideas what could be causing this?
02-14-2019 10:53 PM
Can you post the configruation of 3rd switch and let us know what is your PC IP address you try to SSH.
02-14-2019 11:32 PM
First you can check the arp table on your PC. before you can ping or use ssh the mac address Needs to be learned from the third Switchs Management port. You can compare the arp table from your PC with the arp table of the Switches from where you can successful ping the third Switch. With that Information you can try to find the Segment where the arp process fails. Additional you can look to the mac-address tables in the envolved Switches and look for the mac address of third Switch and your PC.
02-15-2019 01:52 AM
Check the default gateway on the switch you cannot connect to from your PC (assuming your PC is in a different IP subnet).
Jon
02-16-2019 12:22 PM
If it were just a problem for SSH I might wonder about the possibility that the switch has configured access-class to control remote access. But if it is also a problem to ping the switch from your PC then it is not an issue about access-class. If you can not ping it suggests that either there is a problem for requests from your PC getting to the switch or there is a problem with responses from the switch getting to your PC.
Can you verify that from your PC you are successful in accessing other devices in the management subnet? If so that suggests that it might be an issue with responses getting back to you. Can you post the output of show ip route from that switch? Can you post the output from that switch for an attempt to traceroute to the IP of your PC?
HTH
Rick
02-19-2019 05:01 AM
Hi,
Please execute the traceroute from your PC & distribution switch to the target switch (switch 3). this will help you to find out where your ICMP packets are dropped.
Check whether you have configured correctly default gateway in your PC or not.
Regards,
Khaleelur Rahman
04-23-2021 08:11 AM
For anyone who comes across this page in the future with the same problem, I was able to get around this by disabling ip routing
10-11-2021 04:04 AM
Just wanted to say forums DO work.
Doing what you recommended saved me more hours at work. I've already been troubleshooting the issue for 4+ hours and I've now got it fixed. Thanks man.
10-11-2021 11:10 AM
Thanks for sharing your experience and for endorsing the solution suggested in this discussion. Yes forums DO work. I hope to see you continue to be active in the forum.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide