Hi Taheq We cannot use different address which is not in same subnet of the interface. And the reason is that it will be logically incorrect beacuse if you understand the need of HSRP : HSRP provides you a logical gateway (Logical IP address) and HSRP active router as candidate for that logical gateway to provide redundancy in case your hardware goes down. so just ask a question from yourself can a gateway IP address of your network can be a different IP. No never. ----Hope this give you clarity Thanks & Regards Sandeep ... View more

Hi Jason Default route are in general used on the end router which is not a transit router. So here in your option if a router is a spoke router we can use default route and even in case of ISP connectivity also we can use as client router is not a transit router but an end hot router using to connect to the internet. Hope it answers your query. Thanks & Regards Sandeep ... View more

Hi Md - While using SPAN/RSPAN we have flexibility to mirror the port with direction of traffic flow (source interface)  and capture it on on the local port (in case of local SPAN) or on the remote switch (in case of RSPAN). - Whatever is you destination port you need to conect the traffic analyzer tool to capture the packets. Commands ========= SPAN: Switch(config)# monitor session 1 source interface gigabitethernet1/0/1 Switch(config)# monitor session 1 destination interface gigabitethernet1/0/2 RSPAN: In case of RSPAN first you need to create a vlan Switch(config)# vlan 901 Switch(config-vlan)# remote span Enable the RSPAN Switch(config)# monitor session 1 source interface gigabitethernet1/0/1 tx Switch(config)# monitor session 1 source interface gigabitethernet1/0/2 rx Switch(config)# monitor session 1 source interface port-channel 2 Switch(config)# monitor session 1 destination remote vlan 901 Link for details: =================== http://www.cisco.com/en/US/docs/switches/lan/catalyst3750x_3560x/software/release/12.2_55_se/configuration/guide/swspan.html#wp1200733 Thanks & Regards Sandeep ... View more

Hi Umesh Statement with the log enteries are punted to the RP that is what punt means. Thanks & Regards Sandeep ... View more

Hi Jiten You are right in case of BGP and Static routing we see the next hop IP and not the exit interface. I think it follows recurssive method to find the exit interface. - But if you are using the exit interface in place of next hop ip in static route command it will show you the exit interface. whereas Ospf, EIgrp and RIP protocols have the details of exit interface.with the next hop ip address., thanks & Regards Sandeep ... View more

Hi Rojer The error logs are generic indicating MALLOC failure, as its a old code there could be any bug hitting and could be causing the memory leak. so recommend you to upgrade to the latest code. # show mem debug leak # sh memory debug leaks chunks - These commands will help you identify in case any memory leak is there. Thanks & Regards Sandeep. ... View more

Hi -  To enable SSH on CATOS first you need to have the k9 or security image having the SSH feature available. -  Commands  to enable SSH           sec-cat6000> (enable) set crypto key rsa 1024 - Command to verify crypto key enabled or not          sec-cat6000> (enable) show crypto key -   If you want to restrict IPs to access the device via SSH use the below command sec-cat6000> set ip permit 172.18.124.0 255.255.255.0 sec-cat6000> (enable) set ip permit enable ssh >>>> Command to turn SSH permit list. - Command to verify the  ssh permit list   sec-cat6000> (enable) show ip permit Hope this will help you. Thanks & Regards Sandeep ... View more

Hi The possible solution would be to enable tracking on the ip address reachability of remote site which is learned through BGP. so once primary link goes down on either side other side will not be able to reach the peer end IP address and will trigger the HSRP failover by decrementing the priority. Below are the command reference: (Conf)# track 1 ip route 15.0.0.0 255.255.255.0 reachability (Conf-if) standby 1 track 1 decrement 60 Hope this will resolve your problem. Please feel free to contact in case you need any further assistance. Thanks & Regards Sandeep ... View more

Hi Can you please share the output of the below commands: show stack-power detail there are few possible bugs to such problem. ... View more

- The outputs do show that the optical receive power is -17.0 dBm which is lower than the warning threshold of -13.9 dBm although it is still above the alarm -21.0 dBm.  Are these logs showing frequently? Action plan: - Swap the patch cables on each side. - Try connecting via a different patch panel - Swap the transceiver on the far end. - Move the transceiver on the far end to a new port and see if the problem follows  - Replace SFP ... View more

Yes R3 router will send the query to the R4: See the snip below on R4 router *Mar  1 00:05:08.603: EIGRP: Sending HELLO on Ethernet0/0 *Mar  1 00:05:08.603:   AS 1, Flags 0x0, Seq 0/0 idbQ 0/0 iidbQ un/rely 0/0 *Mar  1 00:05:09.843: EIGRP: Received QUERY on Ethernet0/0 nbr 34.0.0.3 *Mar  1 00:05:09.847:   AS 1, Flags 0x0, Seq 8/0 idbQ 0/0 iidbQ un/rely 0/0 peerQ un/rely 0/0 *Mar  1 00:05:09.847: EIGRP: Enqueueing ACK on Ethernet0/0 nbr 34.0.0.3 *Mar  1 00:05:09.851:   Ack seq 8 iidbQ un/rely 0/0 peerQ un/rely 1/0 *Mar  1 00:05:09.855: EIGRP: Sending ACK on Ethernet0/0 nbr 34.0.0.3 *Mar  1 00:05:09.859:   AS 1, Flags 0x0, Seq 0/8 idbQ 0/0 iidbQ un/rely 0/0 peerQ un/rely 1/0 *Mar  1 00:05:09.867: EIGRP: Enqueueing REPLY on Ethernet0/0 nbr 34.0.0.3 iidbQ un/rely 0/1 peerQ un/rely 0/0 serno 5-5 *Mar  1 00:05:09.871: EIGRP: Requeued unicast on Ethernet0/0 R4# *Mar  1 00:05:09.875: EIGRP: Sending REPLY on Ethernet0/0 nbr 34.0.0.3 *Mar  1 00:05:09.875:   AS 1, Flags 0x0, Seq 5/8 idbQ 0/0 iidbQ un/rely 0/0 peerQ un/rely 0/1 serno 5-5 ... View more