cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

610
Views
0
Helpful
17
Replies
Highlighted
Beginner

Cannot ping or SSH vlan 1 from other switches

 Hi,

i have 3 Catalyst 2960-X switches:
1. sw1 - main switch, the other switches chained to it by trunk. contain 6 vlans (include vlan1). IP address 192.168.1.2.
2. sw3 - contain 6 vlans (include vlan1). IP address 192.168.1.3.
3. sw7 - contain 3 vlans (include vlan1). IP address 192.168.1.8.

When i try to ping from SW1 to SW3 and vice versa on vlan1 - it works.
When i try to ping from SW1 to SW7 and visa versa on vlan1- its not working.
when i try to ping from SW3 to SW7 and visa versa on vlan1- its not working.
The other VLANs working perfectly.
i checked "Show cdp neighbors" on sw1 and able to see SW3 but not SW7.

i checked vtp domain and mode configured, i check vlan1 is not shutdown. default gateway is configured.
i even tried to connect another switch (2960, not X) and configure it, and its also working properly)

i'm working on it for the last 2 days and start to feel like its a bug. what could be the problem?

i attached configuration file for the 3 switches.

Thank you!
Adi

Everyone's tags (6)
17 REPLIES 17

Re: Cannot ping or SSH vlan 1 from other switches

Can you post "show ip int brief" from SW7? Is vlan1 up?

 

Brandon

Beginner

Re: Cannot ping or SSH vlan 1 from other switches

Hi Brandon,

VLAN1 is up on SW7

Interface IP-Address OK? Method Status Protocol
Vlan1 192.168.1.8 YES manual up up

Adi

Re: Cannot ping or SSH vlan 1 from other switches

On SW7 can you post "show interf gig1/0/23 trunk"?

Beginner

Re: Cannot ping or SSH vlan 1 from other switches

Hi,
Sorry for the delay,

This is the output:

#show interfaces gigabitEthernet 1/0/23 trunk

Port Mode Encapsulation Status Native vlan
Gi1/0/23 on 802.1q other 1

Port Vlans allowed on trunk
Gi1/0/23 none

Port Vlans allowed and active in management domain
Gi1/0/23 none

Port Vlans in spanning tree forwarding state and not pruned
Gi1/0/23 none

Is it helps?

Adi

Beginner

Re: Cannot ping or SSH vlan 1 from other switches

Sorry, i had a mistake in the command,
the output as follow:

#show interfaces gigabitEthernet 1/0/23 trunk

Port Mode Encapsulation Status Native vlan
Gi1/0/23 on 802.1q trunking 1

Port Vlans allowed on trunk
Gi1/0/23 1-4094

Port Vlans allowed and active in management domain
Gi1/0/23 1-5,31

Port Vlans in spanning tree forwarding state and not pruned
Gi1/0/23 1-5,31

Adi

Beginner

Re: Cannot ping or SSH vlan 1 from other switches

I only recommend this because I’ve had it bite me before...

 

IIRC MDIX is on by default on the 2960x - but I had a situation where someone had turned it off on a switch before and none of my trunks would come up to this one particular switch (because I was not using crossover cables). If you think this might be something you should check on, you can do a:

 

sh controllers ethernet-controller g1/0/23 phy detail | in MD

 

at least I assume g1/0/23 is the trunk in question from looking at you sw7 config. 

 

Just a thought. Also if you were to post the output from a ‘sho int trunk’ from sw7 that would be helpful. 

Beginner

Re: Cannot ping or SSH vlan 1 from other switches

Hi,

I try this:
#show controllers ethernet-controller g1/0/23 phy detail | in MD
and the output was:
Auto-MDIX : On [AdminState=1 Flags=0x00052248]
So i guess its OK, right?

*This part was edited*
the output for

#show interfaces gigabitEthernet 1/0/23 trunk

Port Mode Encapsulation Status Native vlan
Gi1/0/23 on 802.1q trunking 1

Port Vlans allowed on trunk
Gi1/0/23 1-4094

Port Vlans allowed and active in management domain
Gi1/0/23 1-5,31

Port Vlans in spanning tree forwarding state and not pruned
Gi1/0/23 1-5,31

Thanks
Adi


VIP Mentor

Re: Cannot ping or SSH vlan 1 from other switches

Hello,

 

all your switches are in VTP transparent mode, which means they don't participate in VTP at all:

 

vtp domain domain
vtp mode transparent

 

Either set all of them to VTP mode server, or configure e.g. switch 1 as server, and the other switches as clients...

Beginner

Re: Cannot ping or SSH vlan 1 from other switches

Hi Georg,

what is weird for me is that SW1, SW3 and SW7 are on the same mode (Transparent), and yet SW1 and SW3 are able to ping each other interface vlan1, while SW7 is not.
How is it possible?

anyway i tried to switch SW1 to server and SW7 to Client and they still cant ping or SSH each others.

Thank you,

Adi

Beginner

Re: Cannot ping or SSH vlan 1 from other switches

Sorry,

just a correction about the previous output,

#show interfaces gigabitEthernet 1/0/23 trunk

Port Mode Encapsulation Status Native vlan
Gi1/0/23 on 802.1q trunking 1

Port Vlans allowed on trunk
Gi1/0/23 1-4094

Port Vlans allowed and active in management domain
Gi1/0/23 1-5,31

Port Vlans in spanning tree forwarding state and not pruned
Gi1/0/23 1-5,31

Thank you,
Adi

Beginner

Re: Cannot ping or SSH vlan 1 from other switches

On the surface the configs all look ok and MDIX is good. 

 

Is SW7 forwarding traffic? IOW, is it working the way it's supposed to at L2 (including participation in spanning-tree, exchanging CDP info, etc)?

 

Also, you mentioned that you had a gateway configured (not that you should need one if all of the switches are physically connected and on the same subnet). But, just for testing purposes, can you ping the gateway from SW7?

 

Also, what is the output from 'show cdp neighbor' from SW7?

Beginner

Re: Cannot ping or SSH vlan 1 from other switches

Traffic works fine, including other vlans which communicate. for example, if i ping to DG from any other device access to different VLAN, i'm receiving the response, even if the DG is on the other switches.
but when i ping DG from the switch, i cant reach the VLAN1 DG.
by ping, i mean that i just writing the command
#ping 192.168.1.254
to ping from the default.

output from SW7:

SW7#show cdp neighbors
Capability Codes: R - Router, T - Trans Bridge, B - Source Route Bridge
S - Switch, H - Host, I - IGMP, r - Repeater, P - Phone,
D - Remote, C - CVTA, M - Two-port Mac Relay

Device ID Local Intrfce Holdtme Capability Platform Port ID
dccec1bdcd7e Gig 1/0/18 144 S I SG200-26 gi24
NanoStation M5 - Main
Gig 1/0/18 114 T NanoStati br0
SW01
Gig 1/0/23 133 S I WS-C2960X Gig 1/0/24
NanoStation M5 - Maintenance
Gig 1/0/18 103 T NanoStati br0

Total cdp entries displayed : 4

Beginner

Re: Cannot ping or SSH vlan 1 from other switches

Traffic works fine, including other vlans which communicate. for example, if i ping to DG from any other device access to different VLAN, i'm receiving the response, even if the DG is on the other switches.
but when i ping DG from the switch, i cant reach the VLAN1 DG.
by ping, i mean that i just writing the command
#ping 192.168.1.254
to ping from the default.

output from SW7:

SW7#show cdp neighbors
Capability Codes: R - Router, T - Trans Bridge, B - Source Route Bridge
S - Switch, H - Host, I - IGMP, r - Repeater, P - Phone,
D - Remote, C - CVTA, M - Two-port Mac Relay

Device ID Local Intrfce Holdtme Capability Platform Port ID
dccec1bdcd7e Gig 1/0/18 144 S I SG200-26 gi24
NanoStation M5 - Main
Gig 1/0/18 114 T NanoStati br0
SW01
Gig 1/0/23 133 S I WS-C2960X Gig 1/0/24
NanoStation M5 - Maintenance
Gig 1/0/18 103 T NanoStati br0

Total cdp entries displayed : 4

VIP Mentor

Re: Cannot ping or SSH vlan 1 from other switches

Hello,

 

what is the output of 'show vtp status' of all three switches ?

CreatePlease to create content
Content for Community-Ad
July's Community Spotlight Awards