Buy or Renew
Buy or Renew
NEW: Try the Beta AI Summary feature on posts in the Routing and SD-WAN forum. Click to go to the forum.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2067
Views
0
Helpful
8
Replies

SSH problem C3650

se.dejbjerg
Frequent Visitor
Frequent Visitor

‎05-31-2022 12:40 PM

As shown below I have a network with two L3 switches CoreSW C6500 and S2 C3650, they form OSPFv3 adjacency over vlan 724. The following networks 192.168.60.0/24 and 172.24.0.0/24 are all part of area 0, on S2 172.24.x.0/24 are all part of area 24 except 172.24.0.0/24 that is part of area 0.

Vlan 2 is not a part of OSPF. On the CoreSW there is a default static route to the internet, this default static route is redistributed with default-information originate on the CoreSW.

When adjacency is established between the CoreSW and S2 I can successfully ping and ssh to the management ip on S2.

After lost adjacency between CoreSW and S2 fx. shutdown on interface vlan 724 on CoreSW, I can no longer SSH to S2 but I can still ping S2. If I loose adjacency while the ssh connection is established the connection continues, until I terminate it.

A debug ip policy on S2 shows that the PBR on S2 is working.

Any help is appreciated.

 

SSH problem.png

 

Labels:
0 Helpful
8 Replies 8

Georg Pauwen
VIP Alumni
VIP Alumni

‎05-31-2022 01:12 PM

Hello,

 

post the full running configurations of both switches.

0 Helpful

se.dejbjerg
Frequent Visitor
Frequent Visitor
In response to Georg Pauwen

‎06-01-2022 03:48 PM

Hello,

 

Here is the running-config for CoreSW and S2

CoreSW.txt
S2.txt
0 Helpful

Flavio Miranda
VIP
VIP

‎05-31-2022 01:16 PM

Hi

 Can you share the config from both switches?

0 Helpful

MHM Cisco World
VIP
VIP

‎05-31-2022 01:39 PM

two point 
1-InterVLAN in CoreSW use 172.24.0.0 to route the traffic not the 192.168.2.0 and this I think why that the PBR not work.

2-check SSH line it idle or not

0 Helpful

se.dejbjerg
Frequent Visitor
Frequent Visitor
In response to MHM Cisco World

‎06-01-2022 04:06 PM

Hello, sorry pressed the wrong Reply button, pls. se my post below.

 

0 Helpful

se.dejbjerg
Frequent Visitor
Frequent Visitor

‎06-01-2022 04:03 PM

Hello,

When the interface vlan 724 is shutdown on CoreSW the 172.24.0.0/24 network don't show up in the routing table, but still vlan 2 as a connected network, and on S2 there is only two connected networks the 172.24.0.0/24 and 192.168.2.0/24 in the routing table. and no default route.

0 Helpful

MHM Cisco World
VIP
VIP
In response to se.dejbjerg

‎06-01-2022 04:40 PM - edited ‎06-01-2022 04:41 PM

can you do tracertoute and share here ?
do trace route from both side 
PC to SW 
SW to PC

0 Helpful

se.dejbjerg
Frequent Visitor
Frequent Visitor
In response to MHM Cisco World

‎06-02-2022 01:01 PM

Hello

Here is a traceroute from PC and S2 and SSH from PC to S2, with and without adjacency on vlan 724.

traceroute.txt
0 Helpful
Customers Also Viewed These Support Documents