Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
4474
Views
15
Helpful
24
Replies

Management VLAN Not Coming Up

hudsons
Level 1
Level 1

‎01-22-2020 08:56 AM

Hello, I'm having trouble bringing the mgmt vlan up on a 2960X that I have just configured into my network.  The physical interface comes up with no problem when connected to my core 9516 (vtp server) via a switchport tunnel but the mgmt vlan interface will come up no matter what I try.  This isn't the first or only 2960X I've brought into my network and the config is the same as all others.  Making no sense at this point.  The config is attached with the tunnel on int g1/0/25.  

1 person had this problem
Labels:
Preview file
18 KB
Preview file
52 KB
Preview file
67 KB
0 Helpful
24 Replies 24

Reza Sharifi
Hall of Fame
Hall of Fame
In response to hudsons

‎01-23-2020 08:16 AM

To eliminate VTP as the culprit, can you change the 2960x vtp mode to transparent or off and test again?

Also, what port is your management port and what does it connect to?

 

interface GigabitEthernet1/0/25
switchport trunk native vlan 101
switchport mode trunk
switchport nonegotiate
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust cos
macro description cisco-swithc | cisco-switch
auto qos trust
spanning-tree link-type point-to-point
!
interface GigabitEthernet1/0/26
!
interface TenGigabitEthernet1/0/1
switchport trunk native vlan 101
switchport mode trunk
switchport nonegotiate
macro description cisco-switch
spanning-tree link-type point-to-point
!

 

0 Helpful

Jaderson Pessoa
VIP Alumni
VIP Alumni
In response to Reza Sharifi

‎01-23-2020 08:42 AM - edited ‎01-23-2020 08:43 AM

@Reza Sharifi 

that management vlan is already working, he didnt created it locally as L2, right now he want to use vtp to create automatic vlans.

Jaderson Pessoa
*** Rate All Helpful Responses ***
0 Helpful

hudsons
Level 1
Level 1
In response to Reza Sharifi

‎01-23-2020 09:05 AM

VTP mode turned to Transparent:  no change.

As far as management port, if you're referring to vlan management, its g1/0/25 which is connected to t1/0/6 on the 9500 core.

 

I moved the trunk to int g1/0/26 on the 2960 and only applied the trunk mode and native vlan thinking just keep it simple but that didn't work either.  Trunk moved back to g1/0/25.

I then removed "switchport trunk native vlan 101" from both peers as Jaderson asked.  Results attached.

 

Preview file
3 KB
Preview file
2 KB
0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to hudsons

‎01-23-2020 09:50 AM

If all the thread about the VLAN not propogating from Server to Client

 

here is my observation :

 

Server side - You have MD5 authentication enable  and Server Mode

 

Client side- there is no MD5 authentication and it transparent model.

 

On Client side Enable MD5 Authentication make it VTP Mode Client

 

Server side Switch - create a Dummy VLAN and let us know out come.

 

Note : lets do 1 step at a time to fix the issue, do not make too many changes.

also attach one of the switch in your network was working config to compare same outputs.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

hudsons
Level 1
Level 1
In response to balaji.bandi

‎01-23-2020 10:22 AM

Sorry, can you forward the cli syntax for enabling MD5 authentication?  I can't find it anywhere.

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to hudsons

‎01-23-2020 01:01 PM

From server switch :

 

#show vtp passwor ( to collect the password)

 

on 2960

 

config t

!

vtp password XXX ( XXXX is the above server password)

!

end

 

then do the test of VLAN add and Delete on server and let us know.

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

hudsons
Level 1
Level 1
In response to balaji.bandi

‎01-24-2020 06:37 AM

Balaji,

Followed your directions.  Still no propagation of vlans.  Isn't an MD5 digest set supposed to show up when the vtp password is set?  That isn't happening either.  Once again, the trunk and connection come up just fine.

Preview file
1 KB
0 Helpful

hudsons
Level 1
Level 1
In response to hudsons

‎01-24-2020 06:42 AM

Does anyone think that deleting and re-creating the management vlan on this 2960 might be a way to go? Or perhaps just go radical and scrub the config and start over with the factory defaults? Doesn't really matter since this switch hasn't been put into production yet.
0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to hudsons

‎01-24-2020 07:30 AM

if CORE Live environment so you can not remove MD5 password

and this is test switch and it not in product.

 

If you can take the configrautin backup in notepad.

 

write erase - the config

reload

 

build simple config on switch (off line)

 

1. Configure upload port as trunk with out any VLAN config

2. VTP Config - Client withPassword

 check offline you can see show vtp status

 

connect to CORE switch and test, this is best suggest i can give, rather doing same again and again.

 

i am sure the switch should give some warding about the password, if the logging enable correctly ?

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Jaderson Pessoa
VIP Alumni
VIP Alumni
In response to hudsons

‎01-23-2020 08:41 AM

@hudsons 

 

Could you remove the command from both peers "switchport trunk native vlan 101"

Jaderson Pessoa
*** Rate All Helpful Responses ***
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card