stratix 8000 Configuration Problem

yfcarer

Member
yfcarer
Join Date
Apr 2006
Location
Tianjin
Posts
82
Hi guys:

I am the guy who post the question about trunk last week. I still get some problem about the switch VLAN configuration.
I take a screen about the VLAN setting and the syslog as below.
Can someone tell me what is the problem?
Thanks in advance..

10.jpg 11.jpg 12.jpg
 
What is connected to port f1/7? Your syslog seems to indicate another switch 2803VFDSW02. Is this directly connected?

Would be helpful if you draw a network topology also and post the configs of both switches.

My initial thoughts are that from your screenshots port f1/7 mode is set to dynamic and seems has settled on as access port but whatever is connected to this port is set as a trunk port hence native VLAN mismatch errors. I would have thought it should have negotiated dynamically as a trunk link if this were the case but it is possible something else is preventing this.

The config's will tell the story if you can upload them.

Cheers,

Brendan
 
Port 1/7 is connected with a 1783-ETAP.
The ETAP ring is connected to some other switches, I guess two of them are 2803VFDSW01 and 2803VFDSW02.
 
Interesting that you have both 2803VFDSW01/02 connected to the ETAP and then single link from ETAP to Stratix8000.. This is not really typical, usually you would connect each 2803VFDSW01/02 to it's own port on the Stratx8000 and configure this as a trunk link.

Can you show the configuration of f1/19 on 2803VFDSW01 and f1/20 on 2803VFDSW02. Need to see what administrative mode the ports are set to and also what the current operating mode is if set to dynamic.

Can you post the config for each switch? In the web browser / device manager go to Admin > Load/Save and download config.text and attach here.
 
2803SW06 said:
interface FastEthernet1/7
switchport
switchport access vlan 64
switchport private-vlan trunk encapsulation dot1q
switchport private-vlan trunk native vlan tag
no switchport nonegotiate
no switchport protected
no switchport block multicast
no switchport block unicast
switchport port-security maximum 1
no switchport port-security
switchport port-security aging time 0
switchport port-security violation shutdown
switchport port-security aging type absolute
switchport port-security limit rate invalid-source-mac 10
no switchport port-security mac-address sticky
no switchport port-security aging static
ip device tracking maximum 0
no ip arp inspection trust
ip arp inspection limit rate 15 burst interval 1
ip arp inspection limit rate 15
load-interval 300
carrier-delay 2
no shutdown
mls qos cos 0
mls qos dscp-mutation Default DSCP Mutation Map
snmp trap mac-notification change added
snmp trap mac-notification change removed
snmp trap link-status
alarm profile ab-alarm
cdp tlv location
cdp tlv server-location
cdp tlv app
arp arpa
arp timeout 14400
spanning-tree port-priority 128
spanning-tree cost 0
service-policy input CIP-PTP-Traffic
hold-queue 75 in
hold-queue 40 out
ip igmp snooping tcn flood
no bgp-policy accounting input
no bgp-policy accounting output
no bgp-policy accounting input source
no bgp-policy accounting output source
no bgp-policy source ip-prec-map
no bgp-policy source ip-qos-map
no bgp-policy destination ip-prec-map
no bgp-policy destination ip-qos-map
!
Click to expand...

f1/07 is set to mode access with VLAN64

2803VFDSW01 said:
interface FastEthernet1/19
switchport
switchport access vlan 1
switchport private-vlan trunk encapsulation dot1q
switchport private-vlan trunk native vlan tag
switchport mode trunk
no switchport nonegotiate
no switchport protected
no switchport block multicast
no switchport block unicast
no ip arp inspection trust
ip arp inspection limit rate 15 burst interval 1
ip arp inspection limit rate 15
snmp trap mac-notification change added
snmp trap mac-notification change removed
snmp trap link-status
macro description switch-automation
alarm profile ab-alarm
cdp tlv location
cdp tlv server-location
cdp tlv app
arp arpa
arp timeout 14400
spanning-tree link-type point-to-point
spanning-tree port-priority 128
spanning-tree cost 0
hold-queue 75 in
hold-queue 0 out
ip igmp snooping tcn flood
ip dhcp snooping limit rate 4294967295
no ip dhcp snooping trust
no ip dhcp snooping information option allow-untrusted
no bgp-policy accounting input
no bgp-policy accounting output
no bgp-policy accounting input source
no bgp-policy accounting output source
no bgp-policy source ip-qos-map
no bgp-policy destination ip-prec-map
no bgp-policy destination ip-qos-map
!
Click to expand...

f1/19 is set to mode access vlan 1 (should be 64), but strange thing it is also set to trunk. I think you should manually set this to an access port.

2803VFDSW02 said:
interface FastEthernet1/20
switchport
switchport access vlan 1
switchport private-vlan trunk encapsulation dot1q
switchport private-vlan trunk native vlan tag
switchport mode trunk
no switchport nonegotiate
no switchport protected
no switchport block multicast
no switchport block unicast
ip device tracking maximum 0
no ip arp inspection trust
ip arp inspection limit rate 15 burst interval 1
ip arp inspection limit rate 15
load-interval 300
carrier-delay 2
no shutdown
snmp trap mac-notification change added
snmp trap mac-notification change removed
snmp trap link-status
macro description switch-automation
alarm profile ab-alarm
cdp tlv location
cdp tlv server-location
cdp tlv app
arp arpa
arp timeout 14400
spanning-tree link-type point-to-point
spanning-tree port-priority 128
spanning-tree cost 0
hold-queue 75 in
hold-queue 40 out
ip igmp snooping tcn flood
no bgp-policy accounting input
no bgp-policy accounting output
no bgp-policy accounting input source
no bgp-policy accounting output source
no bgp-policy source ip-prec-map
no bgp-policy source ip-qos-map
no bgp-policy destination ip-prec-map
no bgp-policy destination ip-qos-map
!
Click to expand...

f1/20 is set to mode access vlan 1 (should be 64), but the strange thing is that it is also set to trunk. I think you should manually set this to an access port.





I think you have two issues. Mismatched access VLAN configuration (should match 64 on all ports), but there is also a duplicate configuration to set as a trunk link on 2803VFDSW01/02 which is strange. I've seen this happen sometimes when doing configuration from the web browser Device Manager for multiple ports at a time. Instead of having each port set to 'dynamic auto' I think you should set them all to 'access' with the correct VLAN.

Although if it is possible, best practice would be to connect each 2803VFDSW01/02 to it's own port on the Stratx8000 and configure each port as a trunk.
 
I think the way to interpret the cisco config is as follows:

>>switchport mode trunk

This puts the port in trunk mode. Since there is no other command to set the config otherwise, the native vlan on this trunk port would be 1.

>>switchport access vlan 1

This sets the access vlan, IF the port is an access port. However, with the switchport mode trunk command, it is not. Therefore, this has no effect in this config (on this port).

So two of the switches are trunk ports, and the third is an access port. CDP will indicate the native vlan for each port, so you would have a mismatch. The access port will indicate the access vlan and the trunks I expect to advertise a native vlan of 1.

Also the access port does not expect to see spanning tree BPDUs, so is throwing the error you see about inconsistent ports.

As brendan says - don't you want all your inter-switch links to be trunks?
 
robertkjonesjr said:
I think the way to interpret the cisco config is as follows:

>>switchport mode trunk

This puts the port in trunk mode. Since there is no other command to set the config otherwise, the native vlan on this trunk port would be 1.

>>switchport access vlan 1

This sets the access vlan, IF the port is an access port. However, with the switchport mode trunk command, it is not. Therefore, this has no effect in this config (on this port).

So two of the switches are trunk ports, and the third is an access port. CDP will indicate the native vlan for each port, so you would have a mismatch. The access port will indicate the access vlan and the trunks I expect to advertise a native vlan of 1.

Also the access port does not expect to see spanning tree BPDUs, so is throwing the error you see about inconsistent ports.

As brendan says - don't you want all your inter-switch links to be trunks?
Click to expand...

Reading through the configs again you are entirely correct Robert. 🍺

I was too quick reading over them and the switchport access vlan 1 command on both 2803VFDSW01/02 is not even active as the interface is set as trunk just below this.

Nevertheless, setting both of these ports on 2803VFDSW01/02 to 'access' with vlan64 should resolve the issue.

But that is 2 votes now for changing your architecture so that these are direct trunk links with the main Stratix8000, yfcarer.
 

Similar Topics

S
Stratix 8000 compact flash card from a different model switch
What happens if you power up a 1783-MS10T with a Compact Flash card from a 1783-MS06T? Does it work, but with the "extra" ports unconfigured? If...
Replies
0
Views
50
shanefaulkner
S
C
Stratix 8000 Doesn't seem to get past powerup
Hey, I have a Stratix 8000 which have factory reset. When I power it on now the EIP Mod light flashes for about 10 seconds. Then all the status...
Replies
5
Views
2,238
Cyantology
C
B
Stratix 8000
Hello Guys I had to reset a stratix 8000 to its defaults, but now it haves an alarm a port is flashing brown/green the message it has is not...
Replies
4
Views
2,663
harryting
H
R
Stratix 8000 model- 1783-MS10T
I have forgot password of console login When I am going to connect stratix-8000 through putty terminal,I have a username but password was given by...
Replies
4
Views
1,698
Ratan_shubha
R
C
I have stratix 8000 I which pass data but cannot ping nor web into
I have a number of AB Stratix 8000 and 5700 switches which are passing all data but I cannot web into them nor ping them. these switches go into...
Replies
3
Views
2,580
cocsbob
C
Back
Top Bottom