Solved

Cisco 2950 24 port - VLANs configured, ports added, they even work - but config tells me VLAN2 is administratively down??

Posted on 2006-06-12
6
3,124 Views
Last Modified: 2008-01-09
Hi, as mentioned above, I have created two VLANs on a 2950 switch and added ports to port VLANS. I have tested this and it works, I can ping within the VLANs but not between them. Excellent. What I also want to do is assign both VLANs a management IP address so that I can telnet to them and access them when they're on the remote site. I've assigned an IP to VLAN 2 but when I look at the VLAN's properties it says it's administratively down. What haven't I done?

sh int vlan 2

VLAN2 is administratively down, line protocol is down
  Hardware is CPU Interface, address is 0030.8028.7440 (bia 0030.8028.7440)
  Internet address is 192.168.0.253/24
  MTU 1500 bytes, BW 10000 Kbit, DLY 1000 usec,
     reliability 255
  Encapsulation ARPA
  ARP type: ARPA, ARP Timeout 04:00:00

sh vlan

VLAN Name                             Status    Ports
---- -------------------------------- --------- -------------------------------
1    default                          active
2    internal                         active
             Fa0/5, Fa0/6, Fa0/7, Fa0/8,
                                                Fa0/9, Fa0/10, Fa0/11, Fa0/12,
                                                Fa0/13, Fa0/14, Fa0/15, Fa0/16
3     active    Fa0/17, Fa0/18, Fa0/19, Fa0/20,
                                                Fa0/21, Fa0/22, Fa0/23, Fa0/24
1002 fddi-default                     active
1003 token-ring-default               active
1004 fddinet
1005 trnet-default                    active

VLAN Type  SAID       MTU   Parent RingNo BridgeNo Stp  BrdgMode Trans1 Trans2
---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------
1    enet  100001       -        0      0
2    enet  100002     1500  -      -      -        -    -        0      0
3    enet  100003     1500  -      -      -        -    -        0      0
1002 fddi  101002     1500  -      -      -        -     101003     1500  -
 -      -        -    -        0      0
1004 fdnet 101004     1500  -      -      -        ieee -        0      0
1005 trnet 101005     1500  -      -      -        ibm  -        0      0
Switch#

(I know it looks like not all of the first bunch of ports are in VLAN 2, but they are, my terminal software is being buggy). Can anyone recommend some freeware terminal software by the way?

Also, last couple of questions, can I configure the switch to authenticate telnet/ssh sessions by RADIUS? How do I set the telnet/enable passwords?

Thanks.

George
0
Comment
Question by:georgemason
  • 3
  • 3
6 Comments
 
LVL 79

Expert Comment

by:lrmoore
ID: 16888161
Hyperterm that comes with all versions of Windows is good.
Interface VLAN2 will not come "up" unless VLAN1 is administratively shut down.
"interface vlanxx" is a layer 3 interface that is used only to administer the switch. You cannot have more than one enabled at any one time.

How do I set the telnet/enable passwords?
switch(config)#enable password <mynewpa$$w0rd>
switch(config)#line vty 0 15
switch(config-if)#password <newPa$S>

Yes you can use Radius with AAA commands
http://www.cisco.com/univercd/cc/td/doc/product/lan/cat2950/12122ea7/scg/swauthen.htm#wp1091098

aaa new-model
aaa authentication login default group RADIUS
radius-server host <ip address>
radius-server key <string>

0
 
LVL 1

Author Comment

by:georgemason
ID: 16889341
OK, have downed VLAN 1 as follows: conf t, int vlan 1, shutdown, end

VLAN 2 is still also administratively down. What else do I need to do?

(incidentally, thanks for the info on the AAA and telnet/en passwords)
0
 
LVL 1

Author Comment

by:georgemason
ID: 16889346
Here is the info on the interfaces too:

Switch#sh int            
VLAN1 is administratively down, line protocol is dow                                                  
  Hardware is CPU Interface, address is 0030.8028.7440 (bia 0030.8028.7440)                                                                          
  Internet address is 172.16.0.1/16                                  
  MTU 1500 bytes, BW 10000 Kbit, DLY 1000 usec,                                              
     reliability 255/255, txload 1/255, rxload 1/255                                                    
  Encapsulation ARPA, loopback not set                                      
  ARP type: ARPA, ARP Timeout 04:00:00                                      
  Last input never, output 00:02:49, output hang never                                                      
  Last clearing of "show interface" counters never                                                  
  Queueing strategy: fifo                        
  Output queue 0/40, 0 drops; input queue 0/75, 0 drops                                                      
  5 minute input rate 0 bits/sec, 0 pa                                    
  5 minute output rate 0 bits/sec, 0 packets/sec                                                
     0 packets input, 0 bytes, 0 no buffer                                          
     Received 0 broadcasts, 0 runts, 0 giants, 0 throttles                                                          
     0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored                                                        
     0 input packets with dribble condition detected                                                    
     5 packets output, 1974 bytes, 0 underruns                                              
     0 output errors, 0 collisions, 1 interface resets                                                      
     0 babbles, 0 late collision, 0 deferred                                            
     0 lost carrier, 0 no carrier                                
     0 output buffer failures, 0 output buffers swapped out                                                          
VLAN2 is administratively down, line protocol is down                                                    
  Hardware is CPU Interface, address is 0030.8028.7440 (bia 0030.8028.7440)                                                                          
  Internet address is 192.168.0.253/24                                      
  MTU 1500 bytes, BW 10000 Kbit, DLY 1000 usec,                                              
     reliability 255/255, txload 1/255, rxload 1/255                                                    
  Encapsulation ARPA                    
  ARP type: ARPA, ARP Timeout 04:00:00                                      
FastEthernet0/1 is down, line protocol is down                                              
  Hardware is Fast Ethernet, address is 0030.8028.7441 (bia 0030.8028.7441)                                                                          
  MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,                                              
     reliability 255/255, txload 1/255, rxload 1/255                                                    
  Encapsulation ARPA, loopback not set                                      
  Keepalive not set                  
  Auto-duplex , Auto Speed , 100BaseTX/FX                                        
  ARP type: ARPA, ARP Timeout 04:00:00                                      
  Last input never, output never, output hang never                                                  
  Last clearing of "show interface" counters never                                                  
  Queueing strategy: fifo                        
  Output queue 0/40, 0 drops; input queue 0/75, 0 drops                                                      
  5 minute input rate 0 bits/sec, 0 packets/sec                                              
  5 minute output rate 0 bits/sec, 0 packets/sec                                                
     1 packets input, 64 bytes                              
     Received 0 broadcasts, 0 runts, 0 giants, 0 throttles                                                          
     0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored                                                        
     0 watchdog, 0 multicast                            
     0 input packets with dribble condition detected                                                    
     1 packets output, 64 bytes, 0 underruns                                            
     0 output errors, 0 collisions, 1 interface resets                                                      
     0 babbles, 0 late collision, 0 deferred                                            
     0 lost carrier, 0 no carrier                                
     0 output buffer failures, 0 output buffers swapped out                                                          
FastEthernet0/2 is down, line protocol is down                                              
  Hardware is Fast Ethernet, address is 0030.8028.7442 (bia 0030.8028.7442)                                                                          
  MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,                                              
     reliability 255/255, txload 1/255, rxload 1/255                                                    
  Encapsulation ARPA, loopback not set                                      
  Keepalive not set                  
  Auto-duplex , Auto Speed , 100BaseTX/FX                                        
  ARP type: ARPA, ARP Timeout 04:00:00                                      
  Last input never, output 00:01:05, output hang never                                                      
  Last clearing of "show interface" counters never                                                  
  Queueing strategy: fifo                        
  Output queue 0/40, 0 drops; input queue 0/75, 0 drops                                                      
  5 minute input rate 0 bits/sec, 0 packets/sec                                              
  5 minute output rate 0 bits/sec, 0 packets/sec                                                
     4 packets input, 371 bytes                              
     Received 3 broadcasts, 0 runts, 0 giants, 0 throttles                                                          
     0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored                                                        
     0 watchdog, 2 multicast                            
     0 input packets with dribble condition detected                                                    
     4 packets output, 1210 bytes, 0 underruns                                              
     0 output errors, 0 collisions, 1 interface resets                                                      
     0 babbles, 0 late collision, 0 deferred                                            
     0 lost carrier, 0 no carrier                                
     0 output buffer failures, 0 output buffers swapped out                                                          
FastEthernet0/3 is up, line protocol is up                                      
  Hardware is Fast Ethernet, address is 0030.8028.7443 (bia 0030.8028.7443)
  MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,
     reliability 255/255, txload 1/255, rxload 1/255
  Encapsulation ARPA, loopback not set
  Keepalive not set
  Auto-duplex (Full), Auto Speed (100), 100BaseTX/FX
  ARP type: ARPA, ARP Timeout 04:00:00
  Last input never, output 00:00:01, output hang never
  Last clearing of "show interface" counters never
  Queueing strategy: fifo
  Output queue 0/40, 0 drops; input queue 0/75, 0 drops
  5 minute input rate 0 bits/sec, 0 packets/sec
  5 minute output rate 0 bits/sec, 0 packets/sec
     45 packets input, 6635 bytes
     Received 44 broadcasts, 0 runts, 0 giants, 0 throttles
     0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
     0 watchdog, 2 multicast
     0 input packets with dribble condition detected
     39 packets output, 4146 bytes, 0 underruns
     0 output errors, 0 collisions, 1 interface resets
     0 babbles, 0 late collision, 0 deferred
     0 lost carrier, 0 no carrier

Switch#
0
Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

 
LVL 79

Accepted Solution

by:
lrmoore earned 250 total points
ID: 16889386
switch#config t
switch(config)#interface vlan2
switch(config)#no shut
switch(config)#exit
switch#

Additionally, any one of the actual physical ports in vlan2 must be plugged into something.
0
 
LVL 1

Author Comment

by:georgemason
ID: 16889446
Bizarrely, by issuing the no shutdown command on VLAN2, it worked. This despite the fact that I'd issued that command quite a few times before I'd shut down VLAN1.

Still, lrmoore, thanks very much! This is going to a client site tomorrow, and it wasn't ready. It's 10pm here and I was starting to lose hope! The points are yours....
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 16889512
That's just they way these switches work. You can't "no shut" vlan 2 until vlan 1 is shut..

Good luck!
0

Featured Post

Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

#Citrix #Citrix Netscaler #HTTP Compression #Load Balance
Don’t let your business fall victim to the coming apocalypse – use our Survival Guide for the Fax Apocalypse to identify the risks and signs of zombie fax activities at your business.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

816 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

8 Experts available now in Live!

Get 1:1 Help Now