01-22-2020 08:56 AM
Hello, I'm having trouble bringing the mgmt vlan up on a 2960X that I have just configured into my network. The physical interface comes up with no problem when connected to my core 9516 (vtp server) via a switchport tunnel but the mgmt vlan interface will come up no matter what I try. This isn't the first or only 2960X I've brought into my network and the config is the same as all others. Making no sense at this point. The config is attached with the tunnel on int g1/0/25.
01-23-2020 08:16 AM
To eliminate VTP as the culprit, can you change the 2960x vtp mode to transparent or off and test again?
Also, what port is your management port and what does it connect to?
interface GigabitEthernet1/0/25
switchport trunk native vlan 101
switchport mode trunk
switchport nonegotiate
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust cos
macro description cisco-swithc | cisco-switch
auto qos trust
spanning-tree link-type point-to-point
!
interface GigabitEthernet1/0/26
!
interface TenGigabitEthernet1/0/1
switchport trunk native vlan 101
switchport mode trunk
switchport nonegotiate
macro description cisco-switch
spanning-tree link-type point-to-point
!
01-23-2020 08:42 AM - edited 01-23-2020 08:43 AM
that management vlan is already working, he didnt created it locally as L2, right now he want to use vtp to create automatic vlans.
01-23-2020 09:05 AM
VTP mode turned to Transparent: no change.
As far as management port, if you're referring to vlan management, its g1/0/25 which is connected to t1/0/6 on the 9500 core.
I moved the trunk to int g1/0/26 on the 2960 and only applied the trunk mode and native vlan thinking just keep it simple but that didn't work either. Trunk moved back to g1/0/25.
I then removed "switchport trunk native vlan 101" from both peers as Jaderson asked. Results attached.
01-23-2020 09:50 AM
If all the thread about the VLAN not propogating from Server to Client
here is my observation :
Server side - You have MD5 authentication enable and Server Mode
Client side- there is no MD5 authentication and it transparent model.
On Client side Enable MD5 Authentication make it VTP Mode Client
Server side Switch - create a Dummy VLAN and let us know out come.
Note : lets do 1 step at a time to fix the issue, do not make too many changes.
also attach one of the switch in your network was working config to compare same outputs.
01-23-2020 10:22 AM
Sorry, can you forward the cli syntax for enabling MD5 authentication? I can't find it anywhere.
01-23-2020 01:01 PM
From server switch :
#show vtp passwor ( to collect the password)
on 2960
config t
!
vtp password XXX ( XXXX is the above server password)
!
end
then do the test of VLAN add and Delete on server and let us know.
01-24-2020 06:37 AM
01-24-2020 06:42 AM
01-24-2020 07:30 AM
if CORE Live environment so you can not remove MD5 password
and this is test switch and it not in product.
If you can take the configrautin backup in notepad.
write erase - the config
reload
build simple config on switch (off line)
1. Configure upload port as trunk with out any VLAN config
2. VTP Config - Client withPassword
check offline you can see show vtp status
connect to CORE switch and test, this is best suggest i can give, rather doing same again and again.
i am sure the switch should give some warding about the password, if the logging enable correctly ?
01-23-2020 08:41 AM
Could you remove the command from both peers "switchport trunk native vlan 101"
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide