Hi Are you seeing only 3859

dbrill001 · ‎05-23-2015

So I have just started this company and do not have huge experience with Cisco. I found while trying to set up Lync what looks like a loop in the network. I am getting these errors:

"Flapping between port Po2 and port Po3"

"Flapping between port Po2 and port Po4"

"Flapping between port Po4 and port Po3"

So I thought I would be smart and and type "no ip interface portchannel 2" Well port channel 2 went away kind of I still see in the logs and now I have an entire part of the building down. Can some one help get rid of the loop and get that part of the building up?

2103Catalyst#show log
Syslog logging: enabled (0 messages dropped, 0 messages rate-limited, 0 flushes, 0 overruns, xml disabled, filtering disabled)

No Active Message Discriminator.

No Inactive Message Discriminator.

    Console logging: level debugging, 14435 messages logged, xml disabled,
                     filtering disabled
    Monitor logging: level debugging, 0 messages logged, xml disabled,
                     filtering disabled
    Buffer logging: level debugging, 14435 messages logged, xml disabled,
                    filtering disabled
    Exception Logging: size (4096 bytes)
    Count and timestamp logging messages: disabled
    File logging: disabled
    Persistent logging: disabled

No active filter modules.

Trap logging: level informational, 18271 message lines logged
Logging Source-Interface: VRF Name:

Log Buffer (4096 bytes):
nd port Po4
May 22 20:05:01.125: %SW_MATM-4-MACFLAP_NOTIF: Host 3859.f902.290b in vlan 25 is flapping between port Po2 and port Po4
.May 22 20:08:18.303: %SW_MATM-4-MACFLAP_NOTIF: Host 3859.f902.290b in vlan 25 is flapping between port Po4 and port Po3
.May 22 20:08:35.198: %SW_MATM-4-MACFLAP_NOTIF: Host 3859.f902.290b in vlan 25 is flapping between port Po3 and port Po2
May 22 21:22:40.071: %SW_MATM-4-MACFLAP_NOTIF: Host 3859.f902.290b in vlan 25 is flapping between port Po3 and port Po2
May 22 21:24:09.090: %SW_MATM-4-MACFLAP_NOTIF: Host 6894.23c6.ef55 in vlan 25 is flapping between port Po4 and port Po2
May 22 21:24:24.434: %SW_MATM-4-MACFLAP_NOTIF: Host 6894.23c6.ef55 in vlan 25 is flapping between port Po4 and port Po2
May 22 21:44:49.794: %SW_MATM-4-MACFLAP_NOTIF: Host 3859.f902.290b in vlan 25 is flapping between port Po3 and port Po2
May 22 22:15:33.436: %SW_MATM-4-MACFLAP_NOTIF: Host 3859.f902.290b in vlan 25 is flapping between port Po3 and port Po2
May 22 23:35:07.869: %SW_MATM-4-MACFLAP_NOTIF: Host 3859.f902.290b in vlan 25 is flapping between port Po3 and port Po2
May 23 00:27:00.411: %SW_MATM-4-MACFLAP_NOTIF: Host 3859.f902.290b in vlan 25 is flapping between port Po2 and port Po4
May 23 00:31:03.322: %SW_MATM-4-MACFLAP_NOTIF: Host 3859.f902.290b in vlan 25 is flapping between port Po3 and port Po2
May 23 02:08:02.486: %SW_MATM-4-MACFLAP_NOTIF: Host 3859.f902.290b in vlan 25 is flapping between port Po4 and port Po3
May 23 02:37:00.236: %SW_MATM-4-MACFLAP_NOTIF: Host 3859.f902.290b in vlan 25 is flapping between port Po4 and port Po3
May 23 02:38:30.391: %SW_MATM-4-MACFLAP_NOTIF: Host 3859.f902.290b in vlan 25 is flapping between port Po3 and port Po2
May 23 06:34:02.994: %SW_MATM-4-MACFLAP_NOTIF: Host 3859.f902.290b in vlan 25 is flapping between port Po3 and port Po2
May 23 07:51:54.898: %SW_MATM-4-MACFLAP_NOTIF: Host 3859.f902.290b in vlan 25 is flapping between port Po4 and port Po3
May 23 08:16:51.329: %SW_MATM-4-MACFLAP_NOTIF: Host 3859.f902.290b in vlan 25 is flapping between port Po4 and port Po3
May 23 08:34:13.383: %SW_MATM-4-MACFLAP_NOTIF: Host 3859.f902.290b in vlan 25 is flapping between port Po4 and port Po2
May 23 09:33:23.929: %SW_MATM-4-MACFLAP_NOTIF: Host 3859.f902.290b in vlan 25 is flapping between port Po2 and port Po4
May 23 12:02:02.833: %SW_MATM-4-MACFLAP_NOTIF: Host 3859.f902.290b in vlan 25 is flapping between port Po3 and port Po2
May 23 12:37:19.993: %SW_MATM-4-MACFLAP_NOTIF: Host 3859.f902.290b in vlan 25 is flapping between port Po4 and port Po3
May 23 12:52:41.035: %SW_MATM-4-MACFLAP_NOTIF: Host 3859.f902.290b in vlan 25 is flapping between port Po4 and port Po3
May 23 13:45:46.006: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/4, changed state to down
May 23 13:45:46.006: %LINEPROTO-5-UPDOWN: Line protocol on Interface Port-channel2, changed state to down
May 23 13:45:47.014: %LINK-3-UPDOWN: Interface Port-channel2, changed state to down
May 23 13:45:47.014: %LINK-3-UPDOWN: Interface GigabitEthernet0/4, changed state to down
May 23 13:45:49.951: %LINK-3-UPDOWN: Interface GigabitEthernet0/4, changed state to up
May 23 13:45:59.393: %EC-5-L3DONTBNDL2: Gi0/4 suspended: LACP currently not enabled on the remote port.
May 23 13:48:37.191: %SYS-5-CONFIG_I: Configured from console by admin on vty0 (10.10.0.30)
May 23 13:50:47.873: %LINK-5-CHANGED: Interface GigabitEthernet0/3, changed state to administratively down
May 23 13:50:47.873: %LINK-5-CHANGED: Interface GigabitEthernet0/4, changed state to administratively down
May 23 13:51:30.735: %SYS-5-CONFIG_I: Configured from console by admin on vty0 (10.10.0.30)
May 23 13:59:48.805: %SYS-5-CONFIG_I: Configured from console by admin on vty0 (10.10.0.30)
May 23 14:41:32.685: %LINK-3-UPDOWN: Interface GigabitEthernet0/4, changed state to down
May 23 14:41:52.045: %SYS-5-CONFIG_I: Configured from console by admin on vty0 (10.10.10.110)
.May 23 14:52:01.934: %SYS-5-CONFIG_I: Configured from console by admin on vty0 (10.10.10.110)
May 23 15:03:29.851: %SYS-5-CONFIG_I: Configured from console by admin on vty0 (10.10.10.110)
2103Catalyst#

vivek srivastava · ‎05-24-2015

It looks like you have some kind of mis configuration of native vlan on port channels.

Can u share "sh run int port-c xxx"

dbrill001 · ‎05-24-2015

!
interface GigabitEthernet0/15
!
interface GigabitEthernet0/16
!
interface GigabitEthernet0/17
!
interface GigabitEthernet0/18
!
interface GigabitEthernet0/19
!
interface GigabitEthernet0/20
!
interface GigabitEthernet0/21
!
interface GigabitEthernet0/22
switchport trunk encapsulation dot1q
switchport trunk native vlan 9
switchport mode trunk
macro description cisco-router
!
interface GigabitEthernet0/23
!
interface GigabitEthernet0/24
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/1
!
interface GigabitEthernet1/2
!
interface GigabitEthernet1/3
!
interface GigabitEthernet1/4
!
interface TenGigabitEthernet1/1
!
interface TenGigabitEthernet1/2
!
interface Vlan1
ip address 10.135.169.22 255.255.255.0
!
interface Vlan9
description DMZ
ip address 10.10.9.1 255.255.255.0
!
interface Vlan10
description ServerRoom
ip address 10.10.10.1 255.255.255.0
!
interface Vlan21
description FrontOffice
ip address 10.10.21.1 255.255.255.0
!
interface Vlan22
description Cave
ip address 10.10.22.1 255.255.255.0
!
interface Vlan23
description Mezzanine
ip address 10.10.23.1 255.255.255.0
!
interface Vlan25
description Wireless
ip address 10.10.25.1 255.255.255.0
!
interface Vlan30
description Print&Frame
ip address 10.10.30.1 255.255.255.0
!
router rip
version 2
network 10.0.0.0
no auto-summary
!
ip forward-protocol nd
ip http server
ip http authentication local
ip http secure-server
!
ip route 0.0.0.0 0.0.0.0 10.10.30.2
!
!
ip sla enable reaction-alerts
!
!
!
line con 0
password 7 072B285E4B0A0D57474A5B
line vty 0 4
password 7 072B285E4B0A0D57474A5B
login local
length 0
line vty 5 15
password 7 00201A1401581F545F791C
login
!
ntp server 10.10.10.10
ntp server winservices.gd.com
end

2103Catalyst#config t
Enter configuration commands, one per line. End with CNTL/Z.
2103Catalyst(config)#interface port-channel 2
2103Catalyst(config-if)#
login as: admin
Using keyboard-interactive authentication.
Password:

2103Catalyst#
2103Catalyst#
2103Catalyst#config t
Enter configuration commands, one per line. End with CNTL/Z.
2103Catalyst(config)#ip route 10.10.14.0 255.255.255.0 10.10.30.2
2103Catalyst(config)#no ip route 10.10.14.0 255.255.255.0 10.10.30.2
2103Catalyst(config)#ip route 10.10.14.0 255.255.255.0 10.10.0.20
2103Catalyst(config)#no ip route 10.10.14.0 255.255.255.0 10.10.0.20
2103Catalyst(config)#ip route 10.10.14.0 255.255.255.0 10.10.0.30
2103Catalyst(config)#no ip route 10.10.14.0 255.255.255.0 10.10.0.30
2103Catalyst(config)#ip route 10.10.14.0 255.255.255.0 10.10.30.1
%Invalid next hop address (it's this router)
2103Catalyst(config)#ip route 10.10.14.0 255.255.255.0 10.10.
login as: admin
Using keyboard-interactive authentication.
Password:
2103Catalyst#
2103Catalyst#
2103Catalyst#
2103Catalyst#show run
Building configuration...

Current configuration : 11807 bytes
!
! Last configuration change at 17:34:14 UTC Sat May 23 2015 by admin
!
version 15.2
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname 2103Catalyst
!
boot-start-marker
boot-end-marker
!
enable secret 5 $1$n5/d$k3mGjmmMyhytaNLpoEjiQ0
!
username admin privilege 15 password 7 00201A1401581F545F791C
no aaa new-model
clock timezone UTC -5 0
clock summer-time UTC recurring
system mtu routing 1500
authentication mac-move permit
ip routing
no ip dhcp conflict logging
ip dhcp excluded-address 10.10.10.1 10.10.10.99
ip dhcp excluded-address 10.10.21.1 10.10.21.49
ip dhcp excluded-address 10.10.22.1 10.10.22.49
ip dhcp excluded-address 10.10.23.1 10.10.23.49
ip dhcp excluded-address 10.10.30.1 10.10.30.99
ip dhcp excluded-address 10.10.25.1 10.10.25.19
ip dhcp excluded-address 10.10.9.1 10.10.9.254
!
ip dhcp pool Cave
network 10.10.22.0 255.255.255.0
domain-name GD.COM
dns-server 10.10.10.14 10.10.10.15
default-router 10.10.22.1
option 120 hex 0007.6c79.6e63.6665.3102.6764.0363.6f6d.00
option 43 hex 010c.4d53.2d55.432d.436c.6965.6e74.0205.6874.7470.7303.206c.7377.6562.6578.7430.312e.6772.6170.6869.6b64.696d.656e.7369.6f6e.732e.636f.6d04.0334.3433.0525.2f43.6572.7450.726f.762f.4365.7274.5072.6f76.6973.696f.6e69.6e67.5365.7276.6963.652e
!
ip dhcp pool Mezzanine
network 10.10.23.0 255.255.255.0
domain-name GD.COM
dns-server 10.10.10.14 10.10.10.15
default-router 10.10.23.1
option 43 hex 010c.4d53.2d55.432d.436c.6965.6e74.0205.6874.7470.7303.206c.7377.6562.6578.7430.312e.6772.6170.6869.6b64.696d.656e.7369.6f6e.732e.636f.6d04.0334.3433.0525.2f43.6572.7450.726f.762f.4365.7274.5072.6f76.6973.696f.6e69.6e67.5365.7276.6963.652e
option 120 hex 0007.6c79.6e63.6665.3102.6764.0363.6f6d.00
!
ip dhcp pool Server
network 10.10.10.0 255.255.255.0
domain-name GD.COM
dns-server 10.10.10.14 10.10.10.15
default-router 10.10.10.1
!
ip dhcp pool PrintAndFrame
network 10.10.30.0 255.255.255.0
domain-name GD.COM
dns-server 10.10.10.14 10.10.10.15
default-router 10.10.30.1
option 43 hex 010c.4d53.2d55.432d.436c.6965.6e74.0205.6874.7470.7303.206c.7377.6562.6578.7430.312e.6772.6170.6869.6b64.696d.656e.7369.6f6e.732e.636f.6d04.0334.3433.0525.2f43.6572.7450.726f.762f.4365.7274.5072.6f76.6973.696f.6e69.6e67.5365.7276.6963.652e
option 120 hex 0007.6c79.6e63.6665.3102.6764.0363.6f6d.00
!
ip dhcp pool FrontOffice
network 10.10.21.0 255.255.255.0
domain-name GD.COM
dns-server 10.10.10.14 10.10.10.15
default-router 10.10.21.1
option 43 hex 010c.4d53.2d55.432d.436c.6965.6e74.0205.6874.7470.7303.206c.7377.6562.6578.7430.312e.6772.6170.6869.6b64.696d.656e.7369.6f6e.732e.636f.6d04.0334.3433.0525.2f43.6572.7450.726f.762f.4365.7274.5072.6f76.6973.696f.6e69.6e67.5365.7276.6963.652e
option 120 hex 0007.6c79.6e63.6665.3102.6764.0363.6f6d.00
!
ip dhcp pool Wireless
network 10.10.25.0 255.255.255.0
domain-name GD.COM
dns-server 10.10.10.14 10.10.10.15
default-router 10.10.25.1
!
!
ip domain-name GD.COM
ip name-server 10.10.10.14
ip name-server 10.10.10.15
ip device tracking
!
mls qos map cos-dscp 0 8 16 24 32 46 48 56
mls qos srr-queue input bandwidth 70 30
mls qos srr-queue input threshold 1 80 90
mls qos srr-queue input priority-queue 2 bandwidth 30
mls qos srr-queue input cos-map queue 1 threshold 2 3
mls qos srr-queue input cos-map queue 1 threshold 3 6 7
mls qos srr-queue input cos-map queue 2 threshold 1 4
mls qos srr-queue input dscp-map queue 1 threshold 2 24
mls qos srr-queue input dscp-map queue 1 threshold 3 48 49 50 51 52 53 54 55
mls qos srr-queue input dscp-map queue 1 threshold 3 56 57 58 59 60 61 62 63
mls qos srr-queue input dscp-map queue 2 threshold 3 32 33 40 41 42 43 44 45
mls qos srr-queue input dscp-map queue 2 threshold 3 46 47
mls qos srr-queue output cos-map queue 1 threshold 3 4 5
mls qos srr-queue output cos-map queue 2 threshold 1 2
mls qos srr-queue output cos-map queue 2 threshold 2 3
mls qos srr-queue output cos-map queue 2 threshold 3 6 7
mls qos srr-queue output cos-map queue 3 threshold 3 0
mls qos srr-queue output cos-map queue 4 threshold 3 1
mls qos srr-queue output dscp-map queue 1 threshold 3 32 33 40 41 42 43 44 45
mls qos srr-queue output dscp-map queue 1 threshold 3 46 47
mls qos srr-queue output dscp-map queue 2 threshold 1 16 17 18 19 20 21 22 23
mls qos srr-queue output dscp-map queue 2 threshold 1 26 27 28 29 30 31 34 35
mls qos srr-queue output dscp-map queue 2 threshold 1 36 37 38 39
mls qos srr-queue output dscp-map queue 2 threshold 2 24
mls qos srr-queue output dscp-map queue 2 threshold 3 48 49 50 51 52 53 54 55
mls qos srr-queue output dscp-map queue 2 threshold 3 56 57 58 59 60 61 62 63
mls qos srr-queue output dscp-map queue 3 threshold 3 0 1 2 3 4 5 6 7
mls qos srr-queue output dscp-map queue 4 threshold 1 8 9 11 13 15
mls qos srr-queue output dscp-map queue 4 threshold 2 10 12 14
mls qos queue-set output 1 threshold 1 100 100 50 200
mls qos queue-set output 1 threshold 2 125 125 100 400
mls qos queue-set output 1 threshold 3 100 100 100 400
mls qos queue-set output 1 threshold 4 60 150 50 200
mls qos queue-set output 1 buffers 15 25 40 20
!
crypto pki trustpoint TP-self-signed-4259500672
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-4259500672
revocation-check none
rsakeypair TP-self-signed-4259500672
!
!
crypto pki certificate chain TP-self-signed-4259500672
certificate self-signed 01
30820244 308201AD A0030201 02020101 300D0609 2A864886 F70D0101 04050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 34323539 35303036 3732301E 170D3933 30333031 30303031
32325A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D34 32353935
30303637 3230819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
8100BD5D E5E9FB57 1ACA8B69 C15BB060 2BEE13CB 0C8BA35C 8386DF55 57B5F7F4
514663B2 09444026 612E589D EEFF3C3E 968651A5 094A215A 9454FB50 5EEE8AD2
608C10C0 99281818 75170B7C 69DDFD73 11E60E22 5840139A 30F26BFA 739387B9
57CEA114 A18F7BBE 35AC7164 2B525A7A 939D35F5 E626EA08 B678F812 F4E5B8EE
93D50203 010001A3 6C306A30 0F060355 1D130101 FF040530 030101FF 30170603
551D1104 10300E82 0C50464D 61696E53 77697463 68301F06 03551D23 04183016
80140E2F 0356A874 0AE8DFE4 1988A7CF 788D2113 804A301D 0603551D 0E041604
140E2F03 56A8740A E8DFE419 88A7CF78 8D211380 4A300D06 092A8648 86F70D01
01040500 03818100 692DBE76 BE5C3D7F FE9DF342 01BBBD3D 2C9D6E3F 5F7ED916
28FA16DB A6506D7E 07A323C1 17D3A289 DB781CCB BF48277E 219B4756 B5E24404
5E0FF80F 7EB6A633 BFE38822 3B230B2D 543BE382 525EFDDA 82BBFB5E DD082EAE
4C323615 CE63A070 33862FBB 911CCC6A A583386E 5D19D93F 05D29CB4 A0D2D0BD
6D38BBD0 88865213
quit
!
!
!
spanning-tree mode pvst
spanning-tree extend system-id
!
!
!
!
!
!
!
!
!
vlan internal allocation policy ascending
!
!
!
!
!
!
!
!
!
!
!
interface Port-channel1
switchport trunk encapsulation dot1q
switchport trunk native vlan 10
switchport trunk allowed vlan 9,10
switchport mode trunk
!
interface Port-channel2
switchport trunk encapsulation dot1q
switchport trunk native vlan 21
switchport trunk allowed vlan 21,25
switchport mode trunk
!
interface Port-channel3
switchport trunk encapsulation dot1q
switchport trunk native vlan 22
switchport trunk allowed vlan 22,25
switchport mode trunk
!
interface Port-channel4
switchport trunk encapsulation dot1q
switchport trunk native vlan 23
switchport trunk allowed vlan 23,25
switchport mode trunk
!
interface Port-channel5
switchport trunk encapsulation dot1q
switchport trunk native vlan 30
switchport trunk allowed vlan 25,30
switchport mode trunk
!
interface FastEthernet0
no ip address
no ip route-cache
!
interface GigabitEthernet0/1
switchport trunk encapsulation dot1q
switchport trunk native vlan 10
switchport trunk allowed vlan 9,10
switchport mode trunk
channel-group 1 mode active
!
interface GigabitEthernet0/2
switchport trunk encapsulation dot1q
switchport trunk native vlan 10
switchport trunk allowed vlan 9,10
switchport mode trunk
channel-group 1 mode active
!
interface GigabitEthernet0/3
switchport trunk encapsulation dot1q
switchport trunk native vlan 21
switchport trunk allowed vlan 21,25
switchport mode trunk
channel-group 2 mode active
!
interface GigabitEthernet0/4
switchport trunk encapsulation dot1q
switchport trunk native vlan 21
switchport trunk allowed vlan 21,25
switchport mode trunk
channel-group 2 mode active
!
interface GigabitEthernet0/5
switchport trunk encapsulation dot1q
switchport trunk native vlan 22
switchport trunk allowed vlan 22,25
switchport mode trunk
channel-group 3 mode active
!
interface GigabitEthernet0/6
switchport trunk encapsulation dot1q
switchport trunk native vlan 22
switchport trunk allowed vlan 22,25
switchport mode trunk
channel-group 3 mode active
!
interface GigabitEthernet0/7
switchport trunk encapsulation dot1q
switchport trunk native vlan 23
switchport trunk allowed vlan 23,25
switchport mode trunk
channel-group 4 mode active
!
interface GigabitEthernet0/8
switchport trunk encapsulation dot1q
switchport trunk native vlan 23
switchport trunk allowed vlan 23,25
switchport mode trunk
channel-group 4 mode active
!
interface GigabitEthernet0/9
switchport trunk encapsulation dot1q
switchport trunk native vlan 30
switchport trunk allowed vlan 25,30
switchport mode trunk
channel-group 5 mode active
!
interface GigabitEthernet0/10
switchport trunk encapsulation dot1q
switchport trunk native vlan 30
switchport trunk allowed vlan 25,30
switchport mode trunk
channel-group 5 mode active
!
interface GigabitEthernet0/11
!
interface GigabitEthernet0/12
!
interface GigabitEthernet0/13
!
interface GigabitEthernet0/14
!
interface GigabitEthernet0/15
!
interface GigabitEthernet0/16
!
interface GigabitEthernet0/17
!
interface GigabitEthernet0/18
!
interface GigabitEthernet0/19
!
interface GigabitEthernet0/20
!
interface GigabitEthernet0/21
!
interface GigabitEthernet0/22
switchport trunk encapsulation dot1q
switchport trunk native vlan 9
switchport mode trunk
macro description cisco-router
!
interface GigabitEthernet0/23
!
interface GigabitEthernet0/24
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/1
!
interface GigabitEthernet1/2
!
interface GigabitEthernet1/3
!
interface GigabitEthernet1/4
!
interface TenGigabitEthernet1/1
!
interface TenGigabitEthernet1/2
!
interface Vlan1
ip address 10.135.169.22 255.255.255.0
!
interface Vlan9
description DMZ
ip address 10.10.9.1 255.255.255.0
!
interface Vlan10
description ServerRoom
ip address 10.10.10.1 255.255.255.0
!
interface Vlan21
description FrontOffice
ip address 10.10.21.1 255.255.255.0
!
interface Vlan22
description Cave
ip address 10.10.22.1 255.255.255.0
!
interface Vlan23
description Mezzanine
ip address 10.10.23.1 255.255.255.0
!
interface Vlan25
description Wireless
ip address 10.10.25.1 255.255.255.0
!
interface Vlan30
description Print&Frame
ip address 10.10.30.1 255.255.255.0
!
router rip
version 2
network 10.0.0.0
no auto-summary
!
ip forward-protocol nd
ip http server
ip http authentication local
ip http secure-server
!
ip route 0.0.0.0 0.0.0.0 10.10.30.2
!
!
ip sla enable reaction-alerts
!
!
!
line con 0
password 7 072B285E4B0A0D57474A5B
line vty 0 4
password 7 072B285E4B0A0D57474A5B
login local
length 0
line vty 5 15
password 7 00201A1401581F545F791C
login
!
ntp server 10.10.10.10
ntp server winservices.gd.com
end

2103Catalyst#show run
Building configuration...

Current configuration : 11807 bytes
!
! Last configuration change at 17:34:14 UTC Sat May 23 2015 by admin
!
version 15.2
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname 2103Catalyst
!
boot-start-marker
boot-end-marker
!
enable secret 5 $1$n5/d$k3mGjmmMyhytaNLpoEjiQ0
!
username admin privilege 15 password 7 00201A1401581F545F791C
no aaa new-model
clock timezone UTC -5 0
clock summer-time UTC recurring
system mtu routing 1500
authentication mac-move permit
ip routing
no ip dhcp conflict logging
ip dhcp excluded-address 10.10.10.1 10.10.10.99
ip dhcp excluded-address 10.10.21.1 10.10.21.49
ip dhcp excluded-address 10.10.22.1 10.10.22.49
ip dhcp excluded-address 10.10.23.1 10.10.23.49
ip dhcp excluded-address 10.10.30.1 10.10.30.99
ip dhcp excluded-address 10.10.25.1 10.10.25.19
ip dhcp excluded-address 10.10.9.1 10.10.9.254
!
ip dhcp pool Cave
network 10.10.22.0 255.255.255.0
domain-name GD.COM
dns-server 10.10.10.14 10.10.10.15
default-router 10.10.22.1
option 120 hex 0007.6c79.6e63.6665.3102.6764.0363.6f6d.00
option 43 hex 010c.4d53.2d55.432d.436c.6965.6e74.0205.6874.7470.7303.206c.7377.6562.6578.7430.312e.6772.6170.6869.6b64.696d.656e.7369.6f6e.732e.636f.6d04.0334.3433.0525.2f43.6572.7450.726f.762f.4365.7274.5072.6f76.6973.696f.6e69.6e67.5365.7276.6963.652e
!
ip dhcp pool Mezzanine
network 10.10.23.0 255.255.255.0
domain-name GD.COM
dns-server 10.10.10.14 10.10.10.15
default-router 10.10.23.1
option 43 hex 010c.4d53.2d55.432d.436c.6965.6e74.0205.6874.7470.7303.206c.7377.6562.6578.7430.312e.6772.6170.6869.6b64.696d.656e.7369.6f6e.732e.636f.6d04.0334.3433.0525.2f43.6572.7450.726f.762f.4365.7274.5072.6f76.6973.696f.6e69.6e67.5365.7276.6963.652e
option 120 hex 0007.6c79.6e63.6665.3102.6764.0363.6f6d.00
!
ip dhcp pool Server
network 10.10.10.0 255.255.255.0
domain-name GD.COM
dns-server 10.10.10.14 10.10.10.15
default-router 10.10.10.1
!
ip dhcp pool PrintAndFrame
network 10.10.30.0 255.255.255.0
domain-name GD.COM
dns-server 10.10.10.14 10.10.10.15
default-router 10.10.30.1
option 43 hex 010c.4d53.2d55.432d.436c.6965.6e74.0205.6874.7470.7303.206c.7377.6562.6578.7430.312e.6772.6170.6869.6b64.696d.656e.7369.6f6e.732e.636f.6d04.0334.3433.0525.2f43.6572.7450.726f.762f.4365.7274.5072.6f76.6973.696f.6e69.6e67.5365.7276.6963.652e
option 120 hex 0007.6c79.6e63.6665.3102.6764.0363.6f6d.00
!
ip dhcp pool FrontOffice
network 10.10.21.0 255.255.255.0
domain-name GD.COM
dns-server 10.10.10.14 10.10.10.15
default-router 10.10.21.1
option 43 hex 010c.4d53.2d55.432d.436c.6965.6e74.0205.6874.7470.7303.206c.7377.6562.6578.7430.312e.6772.6170.6869.6b64.696d.656e.7369.6f6e.732e.636f.6d04.0334.3433.0525.2f43.6572.7450.726f.762f.4365.7274.5072.6f76.6973.696f.6e69.6e67.5365.7276.6963.652e
option 120 hex 0007.6c79.6e63.6665.3102.6764.0363.6f6d.00
!
ip dhcp pool Wireless
network 10.10.25.0 255.255.255.0
domain-name GD.COM
dns-server 10.10.10.14 10.10.10.15
default-router 10.10.25.1
!
!
ip domain-name GD.COM
ip name-server 10.10.10.14
ip name-server 10.10.10.15
ip device tracking
!
mls qos map cos-dscp 0 8 16 24 32 46 48 56
mls qos srr-queue input bandwidth 70 30
mls qos srr-queue input threshold 1 80 90
mls qos srr-queue input priority-queue 2 bandwidth 30
mls qos srr-queue input cos-map queue 1 threshold 2 3
mls qos srr-queue input cos-map queue 1 threshold 3 6 7
mls qos srr-queue input cos-map queue 2 threshold 1 4
mls qos srr-queue input dscp-map queue 1 threshold 2 24
mls qos srr-queue input dscp-map queue 1 threshold 3 48 49 50 51 52 53 54 55
mls qos srr-queue input dscp-map queue 1 threshold 3 56 57 58 59 60 61 62 63
mls qos srr-queue input dscp-map queue 2 threshold 3 32 33 40 41 42 43 44 45
mls qos srr-queue input dscp-map queue 2 threshold 3 46 47
mls qos srr-queue output cos-map queue 1 threshold 3 4 5
mls qos srr-queue output cos-map queue 2 threshold 1 2
mls qos srr-queue output cos-map queue 2 threshold 2 3
mls qos srr-queue output cos-map queue 2 threshold 3 6 7
mls qos srr-queue output cos-map queue 3 threshold 3 0
mls qos srr-queue output cos-map queue 4 threshold 3 1
mls qos srr-queue output dscp-map queue 1 threshold 3 32 33 40 41 42 43 44 45
mls qos srr-queue output dscp-map queue 1 threshold 3 46 47
mls qos srr-queue output dscp-map queue 2 threshold 1 16 17 18 19 20 21 22 23
mls qos srr-queue output dscp-map queue 2 threshold 1 26 27 28 29 30 31 34 35
mls qos srr-queue output dscp-map queue 2 threshold 1 36 37 38 39
mls qos srr-queue output dscp-map queue 2 threshold 2 24
mls qos srr-queue output dscp-map queue 2 threshold 3 48 49 50 51 52 53 54 55
mls qos srr-queue output dscp-map queue 2 threshold 3 56 57 58 59 60 61 62 63
mls qos srr-queue output dscp-map queue 3 threshold 3 0 1 2 3 4 5 6 7
mls qos srr-queue output dscp-map queue 4 threshold 1 8 9 11 13 15
mls qos srr-queue output dscp-map queue 4 threshold 2 10 12 14
mls qos queue-set output 1 threshold 1 100 100 50 200
mls qos queue-set output 1 threshold 2 125 125 100 400
mls qos queue-set output 1 threshold 3 100 100 100 400
mls qos queue-set output 1 threshold 4 60 150 50 200
mls qos queue-set output 1 buffers 15 25 40 20
!
crypto pki trustpoint TP-self-signed-4259500672
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-4259500672
revocation-check none
rsakeypair TP-self-signed-4259500672
!
!
crypto pki certificate chain TP-self-signed-4259500672
certificate self-signed 01
30820244 308201AD A0030201 02020101 300D0609 2A864886 F70D0101 04050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 34323539 35303036 3732301E 170D3933 30333031 30303031
32325A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D34 32353935
30303637 3230819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
8100BD5D E5E9FB57 1ACA8B69 C15BB060 2BEE13CB 0C8BA35C 8386DF55 57B5F7F4
514663B2 09444026 612E589D EEFF3C3E 968651A5 094A215A 9454FB50 5EEE8AD2
608C10C0 99281818 75170B7C 69DDFD73 11E60E22 5840139A 30F26BFA 739387B9
57CEA114 A18F7BBE 35AC7164 2B525A7A 939D35F5 E626EA08 B678F812 F4E5B8EE
93D50203 010001A3 6C306A30 0F060355 1D130101 FF040530 030101FF 30170603
551D1104 10300E82 0C50464D 61696E53 77697463 68301F06 03551D23 04183016
80140E2F 0356A874 0AE8DFE4 1988A7CF 788D2113 804A301D 0603551D 0E041604
140E2F03 56A8740A E8DFE419 88A7CF78 8D211380 4A300D06 092A8648 86F70D01
01040500 03818100 692DBE76 BE5C3D7F FE9DF342 01BBBD3D 2C9D6E3F 5F7ED916
28FA16DB A6506D7E 07A323C1 17D3A289 DB781CCB BF48277E 219B4756 B5E24404
5E0FF80F 7EB6A633 BFE38822 3B230B2D 543BE382 525EFDDA 82BBFB5E DD082EAE
4C323615 CE63A070 33862FBB 911CCC6A A583386E 5D19D93F 05D29CB4 A0D2D0BD
6D38BBD0 88865213
quit
!
!
!
spanning-tree mode pvst
spanning-tree extend system-id
!
!
!
!
!
!
!
!
!
vlan internal allocation policy ascending
!
!
!
!
!
!
!
!
!
!
!
interface Port-channel1
switchport trunk encapsulation dot1q
switchport trunk native vlan 10
switchport trunk allowed vlan 9,10
switchport mode trunk
!
interface Port-channel2
switchport trunk encapsulation dot1q
switchport trunk native vlan 21
switchport trunk allowed vlan 21,25
switchport mode trunk
!
interface Port-channel3
switchport trunk encapsulation dot1q
switchport trunk native vlan 22
switchport trunk allowed vlan 22,25
switchport mode trunk
!
interface Port-channel4
switchport trunk encapsulation dot1q
switchport trunk native vlan 23
switchport trunk allowed vlan 23,25
switchport mode trunk
!
interface Port-channel5
switchport trunk encapsulation dot1q
switchport trunk native vlan 30
switchport trunk allowed vlan 25,30
switchport mode trunk
!
interface FastEthernet0
no ip address
no ip route-cache
!
interface GigabitEthernet0/1
switchport trunk encapsulation dot1q
switchport trunk native vlan 10
switchport trunk allowed vlan 9,10
switchport mode trunk
channel-group 1 mode active
!
interface GigabitEthernet0/2
switchport trunk encapsulation dot1q
switchport trunk native vlan 10
switchport trunk allowed vlan 9,10
switchport mode trunk
channel-group 1 mode active
!
interface GigabitEthernet0/3
switchport trunk encapsulation dot1q
switchport trunk native vlan 21
switchport trunk allowed vlan 21,25
switchport mode trunk
channel-group 2 mode active
!
interface GigabitEthernet0/4
switchport trunk encapsulation dot1q
switchport trunk native vlan 21
switchport trunk allowed vlan 21,25
switchport mode trunk
channel-group 2 mode active
!
interface GigabitEthernet0/5
switchport trunk encapsulation dot1q
switchport trunk native vlan 22
switchport trunk allowed vlan 22,25
switchport mode trunk
channel-group 3 mode active
!
interface GigabitEthernet0/6
switchport trunk encapsulation dot1q
switchport trunk native vlan 22
switchport trunk allowed vlan 22,25
switchport mode trunk
channel-group 3 mode active
!
interface GigabitEthernet0/7
switchport trunk encapsulation dot1q
switchport trunk native vlan 23
switchport trunk allowed vlan 23,25
switchport mode trunk
channel-group 4 mode active
!
interface GigabitEthernet0/8
switchport trunk encapsulation dot1q
switchport trunk native vlan 23
switchport trunk allowed vlan 23,25
switchport mode trunk
channel-group 4 mode active
!
interface GigabitEthernet0/9
switchport trunk encapsulation dot1q
switchport trunk native vlan 30
switchport trunk allowed vlan 25,30
switchport mode trunk
channel-group 5 mode active
!
interface GigabitEthernet0/10
switchport trunk encapsulation dot1q
switchport trunk native vlan 30
switchport trunk allowed vlan 25,30
switchport mode trunk
channel-group 5 mode active
!
interface GigabitEthernet0/11
!
interface GigabitEthernet0/12
!
interface GigabitEthernet0/13
!
interface GigabitEthernet0/14
!
interface GigabitEthernet0/15
!
interface GigabitEthernet0/16
!
interface GigabitEthernet0/17
!
interface GigabitEthernet0/18
!
interface GigabitEthernet0/19
!
interface GigabitEthernet0/20
!
interface GigabitEthernet0/21
!
interface GigabitEthernet0/22
switchport trunk encapsulation dot1q
switchport trunk native vlan 9
switchport mode trunk
macro description cisco-router
!
interface GigabitEthernet0/23
!
interface GigabitEthernet0/24
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/1
!
interface GigabitEthernet1/2
!
interface GigabitEthernet1/3
!
interface GigabitEthernet1/4
!
interface TenGigabitEthernet1/1
!
interface TenGigabitEthernet1/2
!
interface Vlan1
ip address 10.135.169.22 255.255.255.0
!
interface Vlan9
description DMZ
ip address 10.10.9.1 255.255.255.0
!
interface Vlan10
description ServerRoom
ip address 10.10.10.1 255.255.255.0
!
interface Vlan21
description FrontOffice
ip address 10.10.21.1 255.255.255.0
!
interface Vlan22
description Cave
ip address 10.10.22.1 255.255.255.0
!
interface Vlan23
description Mezzanine
ip address 10.10.23.1 255.255.255.0
!
interface Vlan25
description Wireless
ip address 10.10.25.1 255.255.255.0
!
interface Vlan30
description Print&Frame
ip address 10.10.30.1 255.255.255.0
!
router rip
version 2
network 10.0.0.0
no auto-summary
!
ip forward-protocol nd
ip http server
ip http authentication local
ip http secure-server
!
ip route 0.0.0.0 0.0.0.0 10.10.30.2
!
!
ip sla enable reaction-alerts
!
!
!
line con 0
password 7 072B285E4B0A0D57474A5B
line vty 0 4
password 7 072B285E4B0A0D57474A5B
login local
length 0
line vty 5 15
password 7 00201A1401581F545F791C
login
!
ntp server 10.10.10.10
ntp server winservices.gd.com
end

2103Catalyst#ping 10.10.21.4
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.10.21.4, timeout is 2 seconds:
.....
Success rate is 0 percent (0/5)
2103Catalyst#
login as: admin
Using keyboard-interactive authentication.
Password:

2103Catalyst#
login as: admin
Using keyboard-interactive authentication.
Password:

2103Catalyst#show run
Building configuration...

Current configuration : 11807 bytes
!
! Last configuration change at 17:34:14 UTC Sat May 23 2015 by admin
!
version 15.2
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname 2103Catalyst
!
boot-start-marker
boot-end-marker
!
enable secret 5 $1$n5/d$k3mGjmmMyhytaNLpoEjiQ0
!
username admin privilege 15 password 7 00201A1401581F545F791C
no aaa new-model
clock timezone UTC -5 0
clock summer-time UTC recurring
system mtu routing 1500
authentication mac-move permit
ip routing
no ip dhcp conflict logging
ip dhcp excluded-address 10.10.10.1 10.10.10.99
ip dhcp excluded-address 10.10.21.1 10.10.21.49
ip dhcp excluded-address 10.10.22.1 10.10.22.49
ip dhcp excluded-address 10.10.23.1 10.10.23.49
ip dhcp excluded-address 10.10.30.1 10.10.30.99
ip dhcp excluded-address 10.10.25.1 10.10.25.19
ip dhcp excluded-address 10.10.9.1 10.10.9.254
!
ip dhcp pool Cave
network 10.10.22.0 255.255.255.0
domain-name GD.COM
dns-server 10.10.10.14 10.10.10.15
default-router 10.10.22.1
option 120 hex 0007.6c79.6e63.6665.3102.6764.0363.6f6d.00
option 43 hex 010c.4d53.2d55.432d.436c.6965.6e74.0205.6874.7470.7303.206c.7377.6562.6578.7430.312e.6772.6170.6869.6b64.696d.656e.7369.6f6e.732e.636f.6d04.0334.3433.0525.2f43.6572.7450.726f.762f.4365.7274.5072.6f76.6973.696f.6e69.6e67.5365.7276.6963.652e
!
ip dhcp pool Mezzanine
network 10.10.23.0 255.255.255.0
domain-name GD.COM
dns-server 10.10.10.14 10.10.10.15
default-router 10.10.23.1
option 43 hex 010c.4d53.2d55.432d.436c.6965.6e74.0205.6874.7470.7303.206c.7377.6562.6578.7430.312e.6772.6170.6869.6b64.696d.656e.7369.6f6e.732e.636f.6d04.0334.3433.0525.2f43.6572.7450.726f.762f.4365.7274.5072.6f76.6973.696f.6e69.6e67.5365.7276.6963.652e
option 120 hex 0007.6c79.6e63.6665.3102.6764.0363.6f6d.00
!
ip dhcp pool Server
network 10.10.10.0 255.255.255.0
domain-name GD.COM
dns-server 10.10.10.14 10.10.10.15
default-router 10.10.10.1
!
ip dhcp pool PrintAndFrame
network 10.10.30.0 255.255.255.0
domain-name GD.COM
dns-server 10.10.10.14 10.10.10.15
default-router 10.10.30.1
option 43 hex 010c.4d53.2d55.432d.436c.6965.6e74.0205.6874.7470.7303.206c.7377.6562.6578.7430.312e.6772.6170.6869.6b64.696d.656e.7369.6f6e.732e.636f.6d04.0334.3433.0525.2f43.6572.7450.726f.762f.4365.7274.5072.6f76.6973.696f.6e69.6e67.5365.7276.6963.652e
option 120 hex 0007.6c79.6e63.6665.3102.6764.0363.6f6d.00
!
ip dhcp pool FrontOffice
network 10.10.21.0 255.255.255.0
domain-name GD.COM
dns-server 10.10.10.14 10.10.10.15
default-router 10.10.21.1
option 43 hex 010c.4d53.2d55.432d.436c.6965.6e74.0205.6874.7470.7303.206c.7377.6562.6578.7430.312e.6772.6170.6869.6b64.696d.656e.7369.6f6e.732e.636f.6d04.0334.3433.0525.2f43.6572.7450.726f.762f.4365.7274.5072.6f76.6973.696f.6e69.6e67.5365.7276.6963.652e
option 120 hex 0007.6c79.6e63.6665.3102.6764.0363.6f6d.00
!
ip dhcp pool Wireless
network 10.10.25.0 255.255.255.0
domain-name GD.COM
dns-server 10.10.10.14 10.10.10.15
default-router 10.10.25.1
!
!
ip domain-name GD.COM
ip name-server 10.10.10.14
ip name-server 10.10.10.15
ip device tracking
!
mls qos map cos-dscp 0 8 16 24 32 46 48 56
mls qos srr-queue input bandwidth 70 30
mls qos srr-queue input threshold 1 80 90
mls qos srr-queue input priority-queue 2 bandwidth 30
mls qos srr-queue input cos-map queue 1 threshold 2 3
mls qos srr-queue input cos-map queue 1 threshold 3 6 7
mls qos srr-queue input cos-map queue 2 threshold 1 4
mls qos srr-queue input dscp-map queue 1 threshold 2 24
mls qos srr-queue input dscp-map queue 1 threshold 3 48 49 50 51 52 53 54 55
mls qos srr-queue input dscp-map queue 1 threshold 3 56 57 58 59 60 61 62 63
mls qos srr-queue input dscp-map queue 2 threshold 3 32 33 40 41 42 43 44 45
mls qos srr-queue input dscp-map queue 2 threshold 3 46 47
mls qos srr-queue output cos-map queue 1 threshold 3 4 5
mls qos srr-queue output cos-map queue 2 threshold 1 2
mls qos srr-queue output cos-map queue 2 threshold 2 3
mls qos srr-queue output cos-map queue 2 threshold 3 6 7
mls qos srr-queue output cos-map queue 3 threshold 3 0
mls qos srr-queue output cos-map queue 4 threshold 3 1
mls qos srr-queue output dscp-map queue 1 threshold 3 32 33 40 41 42 43 44 45
mls qos srr-queue output dscp-map queue 1 threshold 3 46 47
mls qos srr-queue output dscp-map queue 2 threshold 1 16 17 18 19 20 21 22 23
mls qos srr-queue output dscp-map queue 2 threshold 1 26 27 28 29 30 31 34 35
mls qos srr-queue output dscp-map queue 2 threshold 1 36 37 38 39
mls qos srr-queue output dscp-map queue 2 threshold 2 24
mls qos srr-queue output dscp-map queue 2 threshold 3 48 49 50 51 52 53 54 55
mls qos srr-queue output dscp-map queue 2 threshold 3 56 57 58 59 60 61 62 63
mls qos srr-queue output dscp-map queue 3 threshold 3 0 1 2 3 4 5 6 7
mls qos srr-queue output dscp-map queue 4 threshold 1 8 9 11 13 15
mls qos srr-queue output dscp-map queue 4 threshold 2 10 12 14
mls qos queue-set output 1 threshold 1 100 100 50 200
mls qos queue-set output 1 threshold 2 125 125 100 400
mls qos queue-set output 1 threshold 3 100 100 100 400
mls qos queue-set output 1 threshold 4 60 150 50 200
mls qos queue-set output 1 buffers 15 25 40 20
!
crypto pki trustpoint TP-self-signed-4259500672
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-4259500672
revocation-check none
rsakeypair TP-self-signed-4259500672
!
!
crypto pki certificate chain TP-self-signed-4259500672
certificate self-signed 01
30820244 308201AD A0030201 02020101 300D0609 2A864886 F70D0101 04050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 34323539 35303036 3732301E 170D3933 30333031 30303031
32325A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D34 32353935
30303637 3230819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
8100BD5D E5E9FB57 1ACA8B69 C15BB060 2BEE13CB 0C8BA35C 8386DF55 57B5F7F4
514663B2 09444026 612E589D EEFF3C3E 968651A5 094A215A 9454FB50 5EEE8AD2
608C10C0 99281818 75170B7C 69DDFD73 11E60E22 5840139A 30F26BFA 739387B9
57CEA114 A18F7BBE 35AC7164 2B525A7A 939D35F5 E626EA08 B678F812 F4E5B8EE
93D50203 010001A3 6C306A30 0F060355 1D130101 FF040530 030101FF 30170603
551D1104 10300E82 0C50464D 61696E53 77697463 68301F06 03551D23 04183016
80140E2F 0356A874 0AE8DFE4 1988A7CF 788D2113 804A301D 0603551D 0E041604
140E2F03 56A8740A E8DFE419 88A7CF78 8D211380 4A300D06 092A8648 86F70D01
01040500 03818100 692DBE76 BE5C3D7F FE9DF342 01BBBD3D 2C9D6E3F 5F7ED916
28FA16DB A6506D7E 07A323C1 17D3A289 DB781CCB BF48277E 219B4756 B5E24404
5E0FF80F 7EB6A633 BFE38822 3B230B2D 543BE382 525EFDDA 82BBFB5E DD082EAE
4C323615 CE63A070 33862FBB 911CCC6A A583386E 5D19D93F 05D29CB4 A0D2D0BD
6D38BBD0 88865213
quit
!
!
!
spanning-tree mode pvst
spanning-tree extend system-id
!
!
!
!
!
!
!
!
!
vlan internal allocation policy ascending
!
!
!
!
!
!
!
!
!
!
!
interface Port-channel1
switchport trunk encapsulation dot1q
switchport trunk native vlan 10
switchport trunk allowed vlan 9,10
switchport mode trunk
!
interface Port-channel2
switchport trunk encapsulation dot1q
switchport trunk native vlan 21
switchport trunk allowed vlan 21,25
switchport mode trunk
!
interface Port-channel3
switchport trunk encapsulation dot1q
switchport trunk native vlan 22
switchport trunk allowed vlan 22,25
switchport mode trunk
!
interface Port-channel4
switchport trunk encapsulation dot1q
switchport trunk native vlan 23
switchport trunk allowed vlan 23,25
switchport mode trunk
!
interface Port-channel5
switchport trunk encapsulation dot1q
switchport trunk native vlan 30
switchport trunk allowed vlan 25,30
switchport mode trunk
!
interface FastEthernet0
no ip address
no ip route-cache
!
interface GigabitEthernet0/1
switchport trunk encapsulation dot1q
switchport trunk native vlan 10
switchport trunk allowed vlan 9,10
switchport mode trunk
channel-group 1 mode active
!
interface GigabitEthernet0/2
switchport trunk encapsulation dot1q
switchport trunk native vlan 10
switchport trunk allowed vlan 9,10
switchport mode trunk
channel-group 1 mode active
!
interface GigabitEthernet0/3
switchport trunk encapsulation dot1q
switchport trunk native vlan 21
switchport trunk allowed vlan 21,25
switchport mode trunk
channel-group 2 mode active
!
interface GigabitEthernet0/4
switchport trunk encapsulation dot1q
switchport trunk native vlan 21
switchport trunk allowed vlan 21,25
switchport mode trunk
channel-group 2 mode active
!
interface GigabitEthernet0/5
switchport trunk encapsulation dot1q
switchport trunk native vlan 22
switchport trunk allowed vlan 22,25
switchport mode trunk
channel-group 3 mode active
!
interface GigabitEthernet0/6
switchport trunk encapsulation dot1q
switchport trunk native vlan 22
switchport trunk allowed vlan 22,25
switchport mode trunk
channel-group 3 mode active
!
interface GigabitEthernet0/7
switchport trunk encapsulation dot1q
switchport trunk native vlan 23
switchport trunk allowed vlan 23,25
switchport mode trunk
channel-group 4 mode active
!
interface GigabitEthernet0/8
switchport trunk encapsulation dot1q
switchport trunk native vlan 23
switchport trunk allowed vlan 23,25
switchport mode trunk
channel-group 4 mode active
!
interface GigabitEthernet0/9
switchport trunk encapsulation dot1q
switchport trunk native vlan 30
switchport trunk allowed vlan 25,30
switchport mode trunk
channel-group 5 mode active
!
interface GigabitEthernet0/10
switchport trunk encapsulation dot1q
switchport trunk native vlan 30
switchport trunk allowed vlan 25,30
switchport mode trunk
channel-group 5 mode active
!
interface GigabitEthernet0/11
!
interface GigabitEthernet0/12
!
interface GigabitEthernet0/13
!
interface GigabitEthernet0/14
!
interface GigabitEthernet0/15
!
interface GigabitEthernet0/16
!
interface GigabitEthernet0/17
!
interface GigabitEthernet0/18
!
interface GigabitEthernet0/19
!
interface GigabitEthernet0/20
!
interface GigabitEthernet0/21
!
interface GigabitEthernet0/22
switchport trunk encapsulation dot1q
switchport trunk native vlan 9
switchport mode trunk
macro description cisco-router
!
interface GigabitEthernet0/23
!
interface GigabitEthernet0/24
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/1
!
interface GigabitEthernet1/2
!
interface GigabitEthernet1/3
!
interface GigabitEthernet1/4
!
interface TenGigabitEthernet1/1
!
interface TenGigabitEthernet1/2
!
interface Vlan1
ip address 10.135.169.22 255.255.255.0
!
interface Vlan9
description DMZ
ip address 10.10.9.1 255.255.255.0
!
interface Vlan10
description ServerRoom
ip address 10.10.10.1 255.255.255.0
!
interface Vlan21
description FrontOffice
ip address 10.10.21.1 255.255.255.0
!
interface Vlan22
description Cave
ip address 10.10.22.1 255.255.255.0
!
interface Vlan23
description Mezzanine
ip address 10.10.23.1 255.255.255.0
!
interface Vlan25
description Wireless
ip address 10.10.25.1 255.255.255.0
!
interface Vlan30
description Print&Frame
ip address 10.10.30.1 255.255.255.0
!
router rip
version 2
network 10.0.0.0
no auto-summary
!
ip forward-protocol nd
ip http server
ip http authentication local
ip http secure-server
!
ip route 0.0.0.0 0.0.0.0 10.10.30.2
!
!
ip sla enable reaction-alerts
!
!
!
line con 0
password 7 072B285E4B0A0D57474A5B
line vty 0 4
password 7 072B285E4B0A0D57474A5B
login local
length 0
line vty 5 15
password 7 00201A1401581F545F791C
login
!
ntp server 10.10.10.10
ntp server winservices.gd.com
end

2103Catalyst#show port-channel ?
% Unrecognized command
2103Catalyst#show interface ?
Async               Async interface
Auto-Template       Auto-Template interface
BVI                 Bridge-Group Virtual Interface
CTunnel             CTunnel interface
Dialer              Dialer interface
FastEthernet        FastEthernet IEEE 802.3
Filter              Filter interface
Filtergroup         Filter Group interface
GigabitEthernet     GigabitEthernet IEEE 802.3z
GroupVI             Group Virtual interface
Loopback            Loopback interface
Lspvif              LSP virtual interface
Null                Null interface
Port-channel        Ethernet Channel of interfaces
Portgroup           Portgroup interface
Pos-channel         POS Channel of interfaces
TenGigabitEthernet Ten Gigabit Ethernet
Tunnel              Tunnel interface
Vif                 PGM Multicast Host interface
Virtual-Template    Virtual Template interface
Virtual-TokenRing   Virtual TokenRing
Vlan                Catalyst Vlans
accounting          Show interface accounting
capabilities        Show interface capabilities information
counters            Show interface counters
crb                 Show interface routing/bridging info
dampening           Show interface dampening info
debounce            Show interface debounce time info
description         Show interface description
etherchannel        Show interface etherchannel information
fair-queue          Show interface Weighted Fair Queueing (WFQ) info
fcpa                Fiber Channel
flowcontrol         Show interface flowcontrol information
history             Show interface history
irb                 Show interface routing/bridging info
mac-accounting      Show interface MAC accounting info
mpls-exp            Show interface MPLS experimental accounting info
mtu                 Show interface mtu
precedence          Show interface precedence accounting info
private-vlan        Show interface private vlan information
pruning             Show interface trunk VTP pruning information
random-detect       Show interface Weighted Random Early Detection (WRED)
                      info
rate-limit          Show interface rate-limit info
rep                 Resilient Ethernet Protocol
stats               Show interface packets & octets, in & out, by switching
                      path
status              Show interface line status
summary             Show interface summary
switchport          Show interface switchport information
transceiver         Show interface transceiver
trunk               Show interface trunk information
|                   Output modifiers
<cr>

2103Catalyst#show interface portgroup ?
<0-1> Portgroup interface number

2103Catalyst#show interface port-c
2103Catalyst#show interface port-channel 2
Port-channel2 is down, line protocol is down (notconnect)
Hardware is EtherChannel, address is 0000.0000.0000 (bia 0000.0000.0000)
MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
     reliability 255/255, txload 1/255, rxload 1/255
Encapsulation ARPA, loopback not set
Keepalive set (10 sec)
Auto-duplex, Auto-speed, link type is auto, media type is unknown
input flow-control is off, output flow-control is unsupported
ARP type: ARPA, ARP Timeout 04:00:00
Last input never, output never, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: fifo
Output queue: 0/40 (size/max)
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
     0 packets input, 0 bytes, 0 no buffer
     Received 0 broadcasts (0 multicasts)
     0 runts, 0 giants, 0 throttles
     0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
     0 watchdog, 0 multicast, 0 pause input
     0 input packets with dribble condition detected
     0 packets output, 0 bytes, 0 underruns
     0 output errors, 0 collisions, 1 interface resets
     0 unknown protocol drops
     0 babbles, 0 late collision, 0 deferred
     0 lost carrier, 0 no carrier, 0 pause output
     0 output buffer failures, 0 output buffers swapped out
2103Catalyst#en
2103Catalyst#config t
Enter configuration commands, one per line. End with CNTL/Z.
2103Catalyst(config)#interface portgrou
2103Catalyst(config)#interface portgroup ?
<0-1> Portgroup interface number

2103Catalyst(config)#interface port-ch
2103Catalyst(config)#interface port-channel 2
2103Catalyst(config-if)#?
Interface configuration commands:
aaa                 Authentication, Authorization and Accounting.
access-session      Access Session specific Interface Configuration Commands
arp                 Set arp type (arpa, probe, snap) or timeout or log
                      options
bandwidth           Set bandwidth informational parameter
bfd                 BFD interface configuration commands
bgp-policy          Apply policy propagated by bgp community string
carrier-delay       Specify delay for interface transitions
cdp                 CDP interface subcommands
crypto              Encryption/Decryption commands
cts                 Configure Cisco Trusted Security
dampening           Enable event dampening
datalink            Interface Datalink commands
default             Set a command to its defaults
delay               Specify interface throughput delay
description         Interface specific description
duplex              Configure duplex operation.
exit                Exit from interface configuration mode
flow-sampler        Attach flow sampler to the interface
flowcontrol         Configure flow operation.
help                Description of the interactive help system
history             Interface history histograms - 60 second, 60 minute and
                      72 hour
hold-queue          Set hold queue depth
ip                  Interface Internet Protocol config commands
ipv6                IPv6 interface subcommands
keepalive           Enable keepalive
l2protocol-tunnel   Tunnel Layer2 protocols
link                Interface link related commands
load-interval       Specify interval for load calculation for an interface
logging             Configure logging for interface
macro               Command macro
metadata            Metadata Application
mka                 MACsec Key Agreement (MKA) interface configuration
mvr                 MVR per port configuration
neighbor            interface neighbor configuration mode commands
network-policy      Network Policy
nmsp                NMSP interface configuration
no                  Negate a command or set its defaults
ospfv3              OSPFv3 interface commands
port-channel        Port Channel interface subcommands
rep                 Resilient Ethernet Protocol characteristics
routing             Per-interface routing configuration
service-policy      Configure CPL Service Policy
service-routing     Service Routing in Interface Mode
shutdown            Shutdown the selected interface
snmp                Modify SNMP interface parameters
source              Get config from another source
spanning-tree       Spanning Tree Subsystem
speed               Configure speed operation.
storm-control       storm configuration
subscriber          Subscriber inactivity timeout value.
switchport          Set switching mode characteristics
timeout             Define timeout values for this interface
topology            Configure routing topology on the interface
transmit-interface Assign a transmit interface to a receive-only interface
tx-ring-limit       Configure PA level transmit ring limit
vtp                 Enable VTP on this interface

2103Catalyst(config-if)#exit
2103Catalyst(config)#exit
2103Catalyst#show system internal clis feature
^
% Invalid input detected at '^' marker.

2103Catalyst#show system int
2103Catalyst#show system ?
mtu Show the Global Maximum Transmission Unit (MTU)

2103Catalyst#show la
2103Catalyst#show lacp ?
<1-48> Channel group number
counters Traffic information
internal Internal information
neighbor Neighbor information
sys-id LACP System ID

2103Catalyst#show lacp 2
% Incomplete command.

2103Catalyst#show lacp 2 ?
counters Traffic information
internal Internal information
neighbor Neighbor information

2103Catalyst#show lacp 2 int
2103Catalyst#show lacp 2 internal ?
detail Detailed internal information
| Output modifiers
<cr>

2103Catalyst#show lacp 2 internal
Flags: S - Device is requesting Slow LACPDUs
F - Device is requesting Fast LACPDUs
A - Device is in Active mode P - Device is in Passive mode

Channel group 2
                            LACP port     Admin     Oper    Port        Port
Port      Flags   State     Priority      Key       Key     Number      State
Gi0/3     SA      down      32768         0x2       0x0     0x104       0x45
Gi0/4     SA      susp      32768         0x2       0x2     0x105       0x7D
2103Catalyst#show lacp 2 ne
2103Catalyst#show lacp 2 neighbor >?
% Unrecognized command
2103Catalyst#show lacp 2 neighbor ?
detail Detailed neighbor information
|       Output modifiers
<cr>

2103Catalyst#show lacp 2 neighbor
Flags: S - Device is requesting Slow LACPDUs
F - Device is requesting Fast LACPDUs
A - Device is in Active mode P - Device is in Passive mode

Channel group 2 neighbors

Partner's information:

                  LACP port                        Admin Oper   Port    Port
Port      Flags   Priority Dev ID          Age    key    Key    Number State
Gi0/3     SP      0         0000.0000.0000 85577s    0x0    0x0    0x0     0x0
Gi0/4     SP      0         0000.0000.0000 85577s    0x0    0x0    0x0     0x0
2103Catalyst#cls
Translating "cls"...domain server (10.10.10.14)
% Unknown command or computer name, or unable to find computer address
2103Catalyst#show log
Syslog logging: enabled (0 messages dropped, 0 messages rate-limited, 0 flushes, 0 overruns, xml disabled, filtering disabled)

No Active Message Discriminator.

No Inactive Message Discriminator.

    Console logging: level debugging, 89 messages logged, xml disabled,
                     filtering disabled
    Monitor logging: level debugging, 0 messages logged, xml disabled,
                     filtering disabled
    Buffer logging: level debugging, 89 messages logged, xml disabled,
                    filtering disabled
    Exception Logging: size (4096 bytes)
    Count and timestamp logging messages: disabled
    File logging: disabled
    Persistent logging: disabled

No active filter modules.

Trap logging: level informational, 89 message lines logged
Logging Source-Interface: VRF Name:

Log Buffer (4096 bytes):

May 23 16:03:46.284: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/19, changed state to down
May 23 16:03:47.290: %LINK-3-UPDOWN: Interface GigabitEthernet0/19, changed state to down
May 23 16:23:07.735: %SYS-5-CONFIG_I: Configured from console by admin on vty0 (10.10.0.30)
May 23 20:14:46.922: %SYS-5-CONFIG_I: Configured from console by admin on vty0 (10.10.0.30)
May 23 20:59:28.467: %SYS-5-CONFIG_I: Configured from console by admin on vty0 (10.10.0.30)
May 23 21:32:37.520: %EC-5-CANNOT_BUNDLE2: Gi0/4 is not compatible with Po2 and will be suspended (trunk encap of Gi0/4 is auto, Po2 is dot1q)
May 23 21:32:38.527: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/4, changed state to down
May 23 21:33:06.683: %EC-5-COMPATIBLE: Gi0/4 is compatible with port-channel members
May 23 21:33:36.699: %EC-5-L3DONTBNDL2: Gi0/4 suspended: LACP currently not enabled on the remote port.
May 23 21:34:14.531: %SYS-5-CONFIG_I: Configured from console by admin on vty0 (10.10.10.10)
May 24 01:46:18.873: %SW_MATM-4-MACFLAP_NOTIF: Host 6894.23c6.ef55 in vlan 25 is flapping between port Po3 and port Po4
May 24 10:06:06.984: %SW_MATM-4-MACFLAP_NOTIF: Host 6894.23c6.ef55 in vlan 25 is flapping between port Po3 and port Po4
May 24 15:27:20.764: %SYS-5-CONFIG_I: Configured from console by admin on vty0 (10.10.0.30)
2103Catalyst#show run
Building configuration...

Current configuration : 11807 bytes
!
! Last configuration change at 11:27:20 UTC Sun May 24 2015 by admin
!
version 15.2
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname 2103Catalyst
!
boot-start-marker
boot-end-marker
!
enable secret 5 $1$n5/d$k3mGjmmMyhytaNLpoEjiQ0
!
username admin privilege 15 password 7 00201A1401581F545F791C
no aaa new-model
clock timezone UTC -5 0
clock summer-time UTC recurring
system mtu routing 1500
authentication mac-move permit
ip routing
no ip dhcp conflict logging
ip dhcp excluded-address 10.10.10.1 10.10.10.99
ip dhcp excluded-address 10.10.21.1 10.10.21.49
ip dhcp excluded-address 10.10.22.1 10.10.22.49
ip dhcp excluded-address 10.10.23.1 10.10.23.49
ip dhcp excluded-address 10.10.30.1 10.10.30.99
ip dhcp excluded-address 10.10.25.1 10.10.25.19
ip dhcp excluded-address 10.10.9.1 10.10.9.254
!
ip dhcp pool Cave
network 10.10.22.0 255.255.255.0
domain-name GD.COM
dns-server 10.10.10.14 10.10.10.15
default-router 10.10.22.1
option 120 hex 0007.6c79.6e63.6665.3102.6764.0363.6f6d.00
option 43 hex 010c.4d53.2d55.432d.436c.6965.6e74.0205.6874.7470.7303.206c.7377.6562.6578.7430.312e.6772.6170.6869.6b64.696d.656e.7369.6f6e.732e.636f.6d04.0334.3433.0525.2f43.6572.7450.726f.762f.4365.7274.5072.6f76.6973.696f.6e69.6e67.5365.7276.6963.652e
!
ip dhcp pool Mezzanine
network 10.10.23.0 255.255.255.0
domain-name GD.COM
dns-server 10.10.10.14 10.10.10.15
default-router 10.10.23.1
option 43 hex 010c.4d53.2d55.432d.436c.6965.6e74.0205.6874.7470.7303.206c.7377.6562.6578.7430.312e.6772.6170.6869.6b64.696d.656e.7369.6f6e.732e.636f.6d04.0334.3433.0525.2f43.6572.7450.726f.762f.4365.7274.5072.6f76.6973.696f.6e69.6e67.5365.7276.6963.652e
option 120 hex 0007.6c79.6e63.6665.3102.6764.0363.6f6d.00
!
ip dhcp pool Server
network 10.10.10.0 255.255.255.0
domain-name GD.COM
dns-server 10.10.10.14 10.10.10.15
default-router 10.10.10.1
!
ip dhcp pool PrintAndFrame
network 10.10.30.0 255.255.255.0
domain-name GD.COM
dns-server 10.10.10.14 10.10.10.15
default-router 10.10.30.1
option 43 hex 010c.4d53.2d55.432d.436c.6965.6e74.0205.6874.7470.7303.206c.7377.6562.6578.7430.312e.6772.6170.6869.6b64.696d.656e.7369.6f6e.732e.636f.6d04.0334.3433.0525.2f43.6572.7450.726f.762f.4365.7274.5072.6f76.6973.696f.6e69.6e67.5365.7276.6963.652e
option 120 hex 0007.6c79.6e63.6665.3102.6764.0363.6f6d.00
!
ip dhcp pool FrontOffice
network 10.10.21.0 255.255.255.0
domain-name GD.COM
dns-server 10.10.10.14 10.10.10.15
default-router 10.10.21.1
option 43 hex 010c.4d53.2d55.432d.436c.6965.6e74.0205.6874.7470.7303.206c.7377.6562.6578.7430.312e.6772.6170.6869.6b64.696d.656e.7369.6f6e.732e.636f.6d04.0334.3433.0525.2f43.6572.7450.726f.762f.4365.7274.5072.6f76.6973.696f.6e69.6e67.5365.7276.6963.652e
option 120 hex 0007.6c79.6e63.6665.3102.6764.0363.6f6d.00
!
ip dhcp pool Wireless
network 10.10.25.0 255.255.255.0
domain-name GD.COM
dns-server 10.10.10.14 10.10.10.15
default-router 10.10.25.1
!
!
ip domain-name GD.COM
ip name-server 10.10.10.14
ip name-server 10.10.10.15
ip device tracking
!
mls qos map cos-dscp 0 8 16 24 32 46 48 56
mls qos srr-queue input bandwidth 70 30
mls qos srr-queue input threshold 1 80 90
mls qos srr-queue input priority-queue 2 bandwidth 30
mls qos srr-queue input cos-map queue 1 threshold 2 3
mls qos srr-queue input cos-map queue 1 threshold 3 6 7
mls qos srr-queue input cos-map queue 2 threshold 1 4
mls qos srr-queue input dscp-map queue 1 threshold 2 24
mls qos srr-queue input dscp-map queue 1 threshold 3 48 49 50 51 52 53 54 55
mls qos srr-queue input dscp-map queue 1 threshold 3 56 57 58 59 60 61 62 63
mls qos srr-queue input dscp-map queue 2 threshold 3 32 33 40 41 42 43 44 45
mls qos srr-queue input dscp-map queue 2 threshold 3 46 47
mls qos srr-queue output cos-map queue 1 threshold 3 4 5
mls qos srr-queue output cos-map queue 2 threshold 1 2
mls qos srr-queue output cos-map queue 2 threshold 2 3
mls qos srr-queue output cos-map queue 2 threshold 3 6 7
mls qos srr-queue output cos-map queue 3 threshold 3 0
mls qos srr-queue output cos-map queue 4 threshold 3 1
mls qos srr-queue output dscp-map queue 1 threshold 3 32 33 40 41 42 43 44 45
mls qos srr-queue output dscp-map queue 1 threshold 3 46 47
mls qos srr-queue output dscp-map queue 2 threshold 1 16 17 18 19 20 21 22 23
mls qos srr-queue output dscp-map queue 2 threshold 1 26 27 28 29 30 31 34 35
mls qos srr-queue output dscp-map queue 2 threshold 1 36 37 38 39
mls qos srr-queue output dscp-map queue 2 threshold 2 24
mls qos srr-queue output dscp-map queue 2 threshold 3 48 49 50 51 52 53 54 55
mls qos srr-queue output dscp-map queue 2 threshold 3 56 57 58 59 60 61 62 63
mls qos srr-queue output dscp-map queue 3 threshold 3 0 1 2 3 4 5 6 7
mls qos srr-queue output dscp-map queue 4 threshold 1 8 9 11 13 15
mls qos srr-queue output dscp-map queue 4 threshold 2 10 12 14
mls qos queue-set output 1 threshold 1 100 100 50 200
mls qos queue-set output 1 threshold 2 125 125 100 400
mls qos queue-set output 1 threshold 3 100 100 100 400
mls qos queue-set output 1 threshold 4 60 150 50 200
mls qos queue-set output 1 buffers 15 25 40 20
!
crypto pki trustpoint TP-self-signed-4259500672
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-4259500672
revocation-check none
rsakeypair TP-self-signed-4259500672
!
!
crypto pki certificate chain TP-self-signed-4259500672
certificate self-signed 01
30820244 308201AD A0030201 02020101 300D0609 2A864886 F70D0101 04050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 34323539 35303036 3732301E 170D3933 30333031 30303031
32325A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D34 32353935
30303637 3230819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
8100BD5D E5E9FB57 1ACA8B69 C15BB060 2BEE13CB 0C8BA35C 8386DF55 57B5F7F4
514663B2 09444026 612E589D EEFF3C3E 968651A5 094A215A 9454FB50 5EEE8AD2
608C10C0 99281818 75170B7C 69DDFD73 11E60E22 5840139A 30F26BFA 739387B9
57CEA114 A18F7BBE 35AC7164 2B525A7A 939D35F5 E626EA08 B678F812 F4E5B8EE
93D50203 010001A3 6C306A30 0F060355 1D130101 FF040530 030101FF 30170603
551D1104 10300E82 0C50464D 61696E53 77697463 68301F06 03551D23 04183016
80140E2F 0356A874 0AE8DFE4 1988A7CF 788D2113 804A301D 0603551D 0E041604
140E2F03 56A8740A E8DFE419 88A7CF78 8D211380 4A300D06 092A8648 86F70D01
01040500 03818100 692DBE76 BE5C3D7F FE9DF342 01BBBD3D 2C9D6E3F 5F7ED916
28FA16DB A6506D7E 07A323C1 17D3A289 DB781CCB BF48277E 219B4756 B5E24404
5E0FF80F 7EB6A633 BFE38822 3B230B2D 543BE382 525EFDDA 82BBFB5E DD082EAE
4C323615 CE63A070 33862FBB 911CCC6A A583386E 5D19D93F 05D29CB4 A0D2D0BD
6D38BBD0 88865213
quit
!
!
!
spanning-tree mode pvst
spanning-tree extend system-id
!
!
!
!
!
!
!
!
!
vlan internal allocation policy ascending
!
!
!
!
!
!
!
!
!
!
!
interface Port-channel1
switchport trunk encapsulation dot1q
switchport trunk native vlan 10
switchport trunk allowed vlan 9,10
switchport mode trunk
!
interface Port-channel2
switchport trunk encapsulation dot1q
switchport trunk native vlan 21
switchport trunk allowed vlan 21,25
switchport mode trunk
!
interface Port-channel3
switchport trunk encapsulation dot1q
switchport trunk native vlan 22
switchport trunk allowed vlan 22,25
switchport mode trunk
!
interface Port-channel4
switchport trunk encapsulation dot1q
switchport trunk native vlan 23
switchport trunk allowed vlan 23,25
switchport mode trunk
!
interface Port-channel5
switchport trunk encapsulation dot1q
switchport trunk native vlan 30
switchport trunk allowed vlan 25,30
switchport mode trunk
!
interface FastEthernet0
no ip address
no ip route-cache
!
interface GigabitEthernet0/1
switchport trunk encapsulation dot1q
switchport trunk native vlan 10
switchport trunk allowed vlan 9,10
switchport mode trunk
channel-group 1 mode active
!
interface GigabitEthernet0/2
switchport trunk encapsulation dot1q
switchport trunk native vlan 10
switchport trunk allowed vlan 9,10
switchport mode trunk
channel-group 1 mode active
!
interface GigabitEthernet0/3
switchport trunk encapsulation dot1q
switchport trunk native vlan 21
switchport trunk allowed vlan 21,25
switchport mode trunk
channel-group 2 mode active
!
interface GigabitEthernet0/4
switchport trunk encapsulation dot1q
switchport trunk native vlan 21
switchport trunk allowed vlan 21,25
switchport mode trunk
channel-group 2 mode active
!
interface GigabitEthernet0/5
switchport trunk encapsulation dot1q
switchport trunk native vlan 22
switchport trunk allowed vlan 22,25
switchport mode trunk
channel-group 3 mode active
!
interface GigabitEthernet0/6
switchport trunk encapsulation dot1q
switchport trunk native vlan 22
switchport trunk allowed vlan 22,25
switchport mode trunk
channel-group 3 mode active
!
interface GigabitEthernet0/7
switchport trunk encapsulation dot1q
switchport trunk native vlan 23
switchport trunk allowed vlan 23,25
switchport mode trunk
channel-group 4 mode active
!
interface GigabitEthernet0/8
switchport trunk encapsulation dot1q
switchport trunk native vlan 23
switchport trunk allowed vlan 23,25
switchport mode trunk
channel-group 4 mode active
!
interface GigabitEthernet0/9
switchport trunk encapsulation dot1q
switchport trunk native vlan 30
switchport trunk allowed vlan 25,30
switchport mode trunk
channel-group 5 mode active
!
interface GigabitEthernet0/10
switchport trunk encapsulation dot1q
switchport trunk native vlan 30
switchport trunk allowed vlan 25,30
switchport mode trunk
channel-group 5 mode active
!
interface GigabitEthernet0/11
!
interface GigabitEthernet0/12
!
interface GigabitEthernet0/13
!
interface GigabitEthernet0/14
!
interface GigabitEthernet0/15
!
interface GigabitEthernet0/16
!
interface GigabitEthernet0/17
!
interface GigabitEthernet0/18
!
interface GigabitEthernet0/19
!
interface GigabitEthernet0/20
!
interface GigabitEthernet0/21
!
interface GigabitEthernet0/22
switchport trunk encapsulation dot1q
switchport trunk native vlan 9
switchport mode trunk
macro description cisco-router
!
interface GigabitEthernet0/23
!
interface GigabitEthernet0/24
switchport mode access
switchport port-security
switchport port-security aging time 2
switchport port-security violation restrict
switchport port-security aging type inactivity
macro description cisco-desktop
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/1
!
interface GigabitEthernet1/2
!
interface GigabitEthernet1/3
!
interface GigabitEthernet1/4
!
interface TenGigabitEthernet1/1
!
interface TenGigabitEthernet1/2
!
interface Vlan1
ip address 10.135.169.22 255.255.255.0
!
interface Vlan9
description DMZ
ip address 10.10.9.1 255.255.255.0
!
interface Vlan10
description ServerRoom
ip address 10.10.10.1 255.255.255.0
!
interface Vlan21
description FrontOffice
ip address 10.10.21.1 255.255.255.0
!
interface Vlan22
description Cave
ip address 10.10.22.1 255.255.255.0
!
interface Vlan23
description Mezzanine
ip address 10.10.23.1 255.255.255.0
!
interface Vlan25
description Wireless
ip address 10.10.25.1 255.255.255.0
!
interface Vlan30
description Print&Frame
ip address 10.10.30.1 255.255.255.0
!
router rip
version 2
network 10.0.0.0
no auto-summary
!
ip forward-protocol nd
ip http server
ip http authentication local
ip http secure-server
!
ip route 0.0.0.0 0.0.0.0 10.10.30.2
!
!
ip sla enable reaction-alerts
!
!
!
line con 0
password 7 072B285E4B0A0D57474A5B
line vty 0 4
password 7 072B285E4B0A0D57474A5B
login local
length 0
line vty 5 15
password 7 00201A1401581F545F791C
login
!
ntp server 10.10.10.10
ntp server winservices.gd.com
end

2103Catalyst#

Madhukrishnan Gopinathan Nair · ‎05-26-2015

Hi Are you seeing only 3859.f902.290b and 6894.23c6.ef55 in the logs always? If so you may need to track those mac and mostly they have dual connections to network and due to some misconfig on their side we are seeing this issue. You may please shut on of the link to them if so.

For that first try and identify where those mac's are originally connected.

Use show mac address-table address <mac> to find out.

Hope this helps.

Thanks,

Madhu

dbrill001 · ‎05-29-2015

I did the show mac address-table address <mac> one of the MACs shows up the other does not. I did some research the prefix is from a Chinees company so I am hoping this will be the wireless access points. I will disconnect them and see if the problem goes away. if the problem goes away.

dbrill001 · ‎05-26-2015

2103Catalyst#sh run int port-c 2

Building configuration...

Current configuration : 162 bytes
!
interface Port-channel2
switchport trunk encapsulation dot1q
switchport trunk native vlan 21
switchport trunk allowed vlan 21,25
switchport mode trunk
end

2103Catalyst#sh run int port-c 3
Building configuration...

Current configuration : 162 bytes
!
interface Port-channel3
switchport trunk encapsulation dot1q
switchport trunk native vlan 22
switchport trunk allowed vlan 22,25
switchport mode trunk
end

2103Catalyst#sh run int port-c 4
Building configuration...

Current configuration : 162 bytes
!
interface Port-channel4
switchport trunk encapsulation dot1q
switchport trunk native vlan 23
switchport trunk allowed vlan 23,25
switchport mode trunk
end

devils_advocate · ‎05-29-2015

It does look like a loop.

Do you know who configured the original network?

I am a bit confused as to why the native Vlans are different on each port channel?

Can you check the port-channel config on two switches which you know are connected together, are the native vlans the same both sides?

For example, below you show:

interface Port-channel2
switchport trunk encapsulation dot1q
switchport trunk native vlan 21
switchport trunk allowed vlan 21,25
switchport mode trunk
end

Can you check the other end of this link to ensure the native vlans match?

Have you got a topology diagram?

dbrill001 · ‎05-29-2015

The guy I replaced Designed the whole thing. I am merely trying to stabilize and install a Lync server. I am not a Routing/Cisco guy my knowledge is in the Microsoft realm. So I am learning and learning a lot. The second switch in question is a sg300

interface Port-channel1
description Catalyst
switchport trunk allowed vlan add 25

I am attaching a quick and dirty diagram

Flapping and Portchannels