Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2072
Views
0
Helpful
31
Replies

Communication across switch works but not across LAGG.

Go to solution
erasedhammer
Level 1
Level 1

‎04-03-2020 10:56 AM - edited ‎04-03-2020 10:57 AM

I can ssh into a host from one port on my 3560 to another, but from my firewall down a channel group or from the host through the channel group to the firewall there is no communication at layer 3, but arp makes it.

I have no settings set on the port channel, and nothing set on the interfaces that are part of the port channel.

My desktop, connected through a cisco unmanaged switch can communicate with the firewall and the internet, but the host directly connected to the switch can't do anything but inner lan.

Labels:
0 Helpful
31 Replies 31

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to erasedhammer

‎04-14-2020 05:20 AM

Glad finally all works for you.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
erasedhammer
Level 1
Level 1
In response to balaji.bandi

‎04-12-2020 12:18 PM


version 15.0
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname lan-sw
!
boot-start-marker
boot-end-marker
!
enable secret *
!
username *
aaa new-model
aaa local authentication attempts max-fail 5
!
!
aaa authentication login default local
!
!
!
!
!
!
aaa session-id common
clock timezone UTC -5 0
system mtu routing 1500
!
!
no ip domain-lookup
ip domain-name *
!
!
crypto pki trustpoint TP-self-signed-2182805120
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-2182805120
revocation-check none
rsakeypair TP-self-signed-2182805120
!
!
crypto pki certificate chain TP-self-signed-2182805120
certificate self-signed 01 nvram:IOS-Self-Sig#1.cer
!
!
!
spanning-tree mode pvst
spanning-tree extend system-id
!
!
!
!
!
!
!
!
!
vlan internal allocation policy ascending
!
ip ssh time-out 90
ip ssh version 2
!
!
!
!
!
!
!
!
!
!
interface Port-channel1
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 5
!
interface Port-channel2
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 10
!
interface Port-channel3
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 30
!
interface FastEthernet0
no ip address
shutdown
!
interface GigabitEthernet0/1
description RTR-UPLINK-MGNT
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 5
channel-group 1 mode on
!
interface GigabitEthernet0/2
description RTR-UPLINK-MGNT
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 5
channel-group 1 mode on
!
interface GigabitEthernet0/3
description RTR-UPLINK-MGNT
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 5
channel-group 1 mode on
!
interface GigabitEthernet0/4
description RTR-UPLINK-USERS
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 10
channel-group 2 mode on
!
interface GigabitEthernet0/5
description RTR-UPLINK-USERS
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 10
channel-group 2 mode on
!
interface GigabitEthernet0/6
description RTR-UPLINK-USERS
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 10
channel-group 2 mode on
!
interface GigabitEthernet0/7
description RTR-UPLINK-LAB
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 30
channel-group 3 mode on
!
interface GigabitEthernet0/8
description RTR-UPLINK-LAB
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 30
channel-group 3 mode on
!
interface GigabitEthernet0/9
description Cisco-Desktop-Switch
switchport trunk encapsulation dot1q
switchport trunk native vlan 5
switchport trunk allowed vlan 5
no cdp enable
!
interface GigabitEthernet0/10
description NMS
switchport mode access
no cdp enable
spanning-tree portfast
!
interface GigabitEthernet0/11
description PORTMIRROR-TO-IDS
!
interface GigabitEthernet0/12
shutdown
!
interface GigabitEthernet0/13
shutdown
!
interface GigabitEthernet0/14
description NAS
switchport mode access
no cdp enable
spanning-tree portfast
!
interface GigabitEthernet0/15
description TP-LINK-SW
switchport trunk encapsulation dot1q
switchport trunk native vlan 10
switchport trunk allowed vlan 10
no cdp enable
!
interface GigabitEthernet0/16
shutdown
!
interface GigabitEthernet0/17
shutdown
!
interface GigabitEthernet0/18
shutdown
!
interface GigabitEthernet0/19
shutdown
!
interface GigabitEthernet0/20
shutdown
!
interface GigabitEthernet0/21
shutdown
!
interface GigabitEthernet0/22
shutdown
!
interface GigabitEthernet0/23
shutdown
!
interface GigabitEthernet0/24
shutdown
!
interface GigabitEthernet1/1
shutdown
!
interface GigabitEthernet1/2
shutdown
!
interface GigabitEthernet1/3
shutdown
!
interface GigabitEthernet1/4
shutdown
!
interface TenGigabitEthernet1/1
shutdown
!
interface TenGigabitEthernet1/2
shutdown
!
interface Vlan1
no ip address
shutdown
!
interface Vlan5
ip address 10.10.0.5 255.255.255.240
!
no ip http server
no ip http secure-server
!
ip route 0.0.0.0 0.0.0.0 10.10.0.1
!
no cdp run
!
!
!
!
no vstack
!
line con 0
privilege level 0
line vty 0 4
exec-timeout 2 0
privilege level 0
transport input ssh
line vty 5 15
no exec
transport input none
!
exception memory ignore overflow processor
exception memory ignore overflow io
!
monitor session 1 source interface Gi0/1 - 10 , Gi0/12 - 17
monitor session 1 destination interface Gi0/11
end

0 Helpful
Customers Also Viewed These Support Documents