cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
453
Views
0
Helpful
6
Replies

cant connect to switch or router using ssh

Husain Khamis
Level 1
Level 1

I have 3 branches in my topology, 1 branch works fine, however, I cant connect to the switches and routers in 2 of those branches, I tried doing everything I know, I configured all the switches with vtp, etherchannel for the distribution layer switches, and port security, while the routers are configured with hsrp, ospf and ppp chap. 1 branch doesnt have ssh configured because I thought that if the ping is successful, then ssh should work fine

6 Replies 6

marce1000
VIP
VIP

 

        - FYI : Community group for Packet Tracer project questions

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '

badrbelhajja
Level 1
Level 1

Could you enclose the picture of your LAB and explain how do you want to connect? From which equipment and to which remote host ?

I need to connect to every switch and router except the Batelco router, the MAN_S7 switch from every pc through ssh except PC24 and PC26

Edit: I realised that the port channel vlan was set as 1 on the working network, which is RIF_S1 and RIF_S2, so I changed it in all the switches that have the portchannel, the manama branch works now, however, I can now ping only 1 router from each branch and the muharraq branch is still not working

ss4.png

badrbelhajja
Level 1
Level 1

Hello,

I've checked the ARP table on the The router MAN-R1 , i see that the mac address of the different vlan99 of the switchs are received on the GigabitEthernet0/0/0 , I think you have a misconfig-vlan-TAG on your switch/Router , i dont have the enable pwd of your LAB to to check your config and have deep troubleshoot:

MAN_R1#show ip arp

Internet 172.16.99.1 27 0000.0C9F.F063 ARPA GigabitEthernet0/0/0.99
Internet 172.16.99.4 5 0001.4232.3B01 ARPA GigabitEthernet0/0/0 <========
Internet 172.16.99.8 5 0007.EC16.E101 ARPA GigabitEthernet0/0/0 <========
Internet 172.16.99.9 21 0001.6316.A701 ARPA GigabitEthernet0/0/0 <========

Compared to RIF Router:

RIF_R1>show ip arp
Internet 192.168.10.225 27 0000.0C9F.F063 ARPA GigabitEthernet0/0/0.99 <========
Internet 192.168.10.228 2 00E0.F9D7.8B01 ARPA GigabitEthernet0/0/0.99 <========
Internet 192.168.10.232 4 00E0.F92E.0501 ARPA GigabitEthernet0/0/0.99 <========
Internet 192.168.10.233 21 000A.F392.7601 ARPA GigabitEthernet0/0/0.99 <========

i invite you to check the vlan config and diffusion on your switches and routers.

 

I have messed around with the portchannel configuration of MAN_S1 and MAN_S2 by changing the native vlan to 1 instead of 99(which is the management vlan) and now MAN_R1 and every switch works, however MAN_R2 stopped pinging, same thing for RIF_R1 and MUH_R1. While MUH_S1-6 still dont work.

badrbelhajja
Level 1
Level 1

Well, i see that you have put Port-channel not on the same switch , you can't do that unless you use a VPC .The spanning-tree dont work correctly with the design you put .
what i advice to you to tshoot your LAB , is deleting all this config , start basi config validate that its working on 1 branch and after add branch by branch , and validate between each steps that your lab works .

Review Cisco Networking for a $25 gift card