Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2846
Views
5
Helpful
3
Replies

Migrating from Catalyst WS-2960X-24PS-L to Cisco 9200 Switches

Ahmad Saad4
Level 1
Level 1

‎02-16-2021 03:47 PM

Hi there,

We need to replace our existing stacked of two Catalyst WS-2960X-24PS-L with a new stacked of two Cisco 9200 Switches.

At the moment the 2960 switches are configured as L2 switch and it's connected over 1 fibre cable to the core switch C9300.

My question is there any migration tool that will help conversion the configuration commands from 2960X to C9200 (IOS XE)?

What's the best approach to proceed with migration? are there any caveats that I need to be aware of as I don't want to cause any L2 Loop.?

 

This is snipt of 2960X config :

aaa group server tacacs+ ACS
server-private X.X.X.X key 7
server-private Y.Y.Y.Y key 7
!
aaa authentication login default local
aaa authentication login ACS group ACS local
aaa authorization console
aaa authorization config-commands
aaa authorization exec default local
aaa authorization exec ACS group ACS local if-authenticated
aaa accounting update newinfo
!
!
no ip domain-lookup
ip domain-name mydomain.com
login block-for 100 attempts 5 within 100
login delay 5
vtp domain mydomain
vtp mode transparent
!
!
!
!
!
!
mls qos map policed-dscp 0 10 18 24 46 to 8
mls qos map cos-dscp 0 8 16 24 32 46 48 56
mls qos srr-queue output cos-map queue 1 threshold 3 4 5
mls qos srr-queue output cos-map queue 2 threshold 1 2
mls qos srr-queue output cos-map queue 2 threshold 2 3
mls qos srr-queue output cos-map queue 2 threshold 3 6 7
mls qos srr-queue output cos-map queue 3 threshold 3 0
mls qos srr-queue output cos-map queue 4 threshold 3 1
mls qos srr-queue output dscp-map queue 1 threshold 3 32 33 40 41 42 43 44 45
mls qos srr-queue output dscp-map queue 1 threshold 3 46 47
mls qos srr-queue output dscp-map queue 2 threshold 1 16 17 18 19 20 21 22 23
mls qos srr-queue output dscp-map queue 2 threshold 1 26 27 28 29 30 31 34 35
mls qos srr-queue output dscp-map queue 2 threshold 1 36 37 38 39
mls qos srr-queue output dscp-map queue 2 threshold 2 24
mls qos srr-queue output dscp-map queue 2 threshold 3 48 49 50 51 52 53 54 55
mls qos srr-queue output dscp-map queue 2 threshold 3 56 57 58 59 60 61 62 63
mls qos srr-queue output dscp-map queue 3 threshold 3 0 1 2 3 4 5 6 7
mls qos srr-queue output dscp-map queue 4 threshold 1 8 9 11 13 15
mls qos srr-queue output dscp-map queue 4 threshold 2 10 12 14
mls qos queue-set output 1 threshold 1 100 100 50 200
mls qos queue-set output 1 threshold 2 125 125 100 400
mls qos queue-set output 1 threshold 3 100 100 100 400
mls qos queue-set output 1 threshold 4 60 150 50 200
mls qos queue-set output 1 buffers 15 25 40 20
mls qos
!

spanning-tree mode rapid-pvst
spanning-tree loopguard default
spanning-tree extend system-id
spanning-tree pathcost method long
spanning-tree vlan 1-4094 priority 61440
auto qos srnd4
errdisable recovery cause udld
errdisable recovery cause bpduguard
errdisable recovery cause security-violation
errdisable recovery cause channel-misconfig
errdisable recovery cause pagp-flap
errdisable recovery cause dtp-flap
errdisable recovery cause link-flap
errdisable recovery cause sfp-config-mismatch
errdisable recovery cause gbic-invalid
errdisable recovery cause psecure-violation
errdisable recovery cause port-mode-failure
errdisable recovery cause dhcp-rate-limit
errdisable recovery cause pppoe-ia-rate-limit
errdisable recovery cause mac-limit
errdisable recovery cause vmps
errdisable recovery cause storm-control
errdisable recovery cause inline-power
errdisable recovery cause arp-inspection
errdisable recovery cause loopback
errdisable recovery cause small-frame
errdisable recovery cause psp
errdisable recovery interval 60
!
!
!
!
vlan internal allocation policy ascending
!
!
!
class-map match-all AUTOQOS_VOIP_VIDEO_CLASS
match ip dscp af41
class-map match-all AUTOQOS_VOIP_DATA_CLASS
match ip dscp ef
class-map match-all AUTOQOS_DEFAULT_CLASS
match access-group name AUTOQOS-ACL-DEFAULT
class-map match-all AUTOQOS_VOIP_SIGNAL_CLASS
match ip dscp cs3
!
policy-map AUTOQOS-SRND4-CISCOPHONE-POLICY
class AUTOQOS_VOIP_DATA_CLASS
set dscp ef
police 128000 8000 exceed-action policed-dscp-transmit
class AUTOQOS_VOIP_SIGNAL_CLASS
set dscp cs3
police 32000 8000 exceed-action policed-dscp-transmit
class AUTOQOS_DEFAULT_CLASS
set dscp default
police 10000000 8000 exceed-action policed-dscp-transmit
class AUTOQOS_VOIP_VIDEO_CLASS
set dscp af41
police 10000000 8000 exceed-action policed-dscp-transmit
!
!
!
!interface Port-channel4
description *** Link to C9300-Core G2/1/4 ***
switchport mode trunk

!
interface GigabitEthernet1/0/1
description Phone
switchport access vlan 21
switchport mode access
switchport nonegotiate
switchport voice vlan 80
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
auto qos voip cisco-phone
spanning-tree portfast edge
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY
!

interface GigabitEthernet1/0/25
description *** Uplink to C9300-Core G2/1/4 ***
switchport mode trunk
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust cos
auto qos trust cos
channel-group 4 mode on

!
interface GigabitEthernet2/0/24
description _Phone
switchport access vlan 21
switchport mode access
switchport nonegotiate
switchport voice vlan 80
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
auto qos voip cisco-phone
spanning-tree portfast edge
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY


!
ip default-gateway X.X.X.X
no ip http server
no ip http secure-server
!
ip ssh version 2
!
ip access-list extended AUTOQOS-ACL-DEFAULT
permit ip any any
access-list 99 permit X.X.X.X
!
snmp-server community xxxx RW
snmp-server community yyyy RO 99
snmp-server host X.X.X.X version 2c zzzz
snmp ifmib ifindex persist
tacacs-server key 7
!
!
no vstack
!

line vty 0 4
password 7
authorization exec ACS
login authentication ACS
exec prompt timestamp
length 0
transport input all
line vty 5 15
password 7
authorization exec ACS
login authentication ACS
exec prompt timestamp
length 0
transport input all

 

Thanks!
!

Labels:
0 Helpful
3 Replies 3

balaji.bandi
Hall of Fame
Hall of Fame

‎02-16-2021 05:11 PM - edited ‎02-16-2021 05:12 PM

I do not see any Migration tool or aware one it exists. So my suggestion and approach are - Take one switch as an example as part of testing migration.

backup the config from 2960 Switch, and Prepare new switch setup up the basic config,

 

Make the 2960 config different portion, like basic config, interface config, Qos, radius config - start pasting on Cat 9200, so you observer any errors - that need to be tweak to work in Cat 9200.

 

Most of the config should work as expected.

 

here is another thread to convert QoS :

 

https://community.cisco.com/t5/network-management/translate-old-qos-for-ws-6509-to-new-cisco9600/m-p/4292497

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Giuseppe Larosa
Hall of Fame
Hall of Fame

‎02-17-2021 01:54 AM

Hello @Ahmad Saad4 ,

all the commands related to QoS and auto QoS  are likely to be different on new platform Cat 9200.

as  reference you can start from

! auto QoS

https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst9200/software/release/16-9/configuration_guide/qos/b_169_qos_9200_cg/b_169_qos_9200_cg_chapter_00.html?dtid=osscdc000283

 

and QoS on c9200 IOS XE 16.9

 

https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst9200/software/release/16-9/configuration_guide/qos/b_169_qos_9200_cg/b_169_qos_9200_cg_chapter_01.html

 

So yes your best approach is to use a Beta C9200 device and then you will import all sections of configurations except all commands related to QoS. QoS is likely to be better to re-configure using the above documents as a reference.

The approach is really different as new Cat 9200 supports modular QoS like  routers and not hardware related QoS like all the SRR commands you have on C2960.

So you need to take care also of each interface configuration and as a first step do not try to implement commands like

 

srr-queue bandwidth share 1 30 35 5
priority-queue out

 

Hope to help

Giuseppe

 

0 Helpful

cmarva
Level 4
Level 4

‎02-17-2021 07:27 AM

the easiest way we found to do this is, ignore all of the qos commands on the 2960. Then when configuring the 9200, once you add the line "auto qos voip cisco-phone" to any end user port, everything will get created as it needs to be.

 

so I would not copy any of the qos global commands, and on the end user ports, I would just do the basic config:

interface GigabitEthernet1/0/1
description Phone
switchport access vlan 21
switchport host
switchport nonegotiate
switchport voice vlan 80

!

 

then on g1/0/1, add the command 'auto qos voip cisco-phone". this will create all of your class maps and policies, and you're done.

 

 

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card