Solved

Cisco 2950 24 port - VLANs configured, ports added, they even work - but config tells me VLAN2 is administratively down??

Posted on 2006-06-12
6
3,121 Views
Last Modified: 2008-01-09
Hi, as mentioned above, I have created two VLANs on a 2950 switch and added ports to port VLANS. I have tested this and it works, I can ping within the VLANs but not between them. Excellent. What I also want to do is assign both VLANs a management IP address so that I can telnet to them and access them when they're on the remote site. I've assigned an IP to VLAN 2 but when I look at the VLAN's properties it says it's administratively down. What haven't I done?

sh int vlan 2

VLAN2 is administratively down, line protocol is down
  Hardware is CPU Interface, address is 0030.8028.7440 (bia 0030.8028.7440)
  Internet address is 192.168.0.253/24
  MTU 1500 bytes, BW 10000 Kbit, DLY 1000 usec,
     reliability 255
  Encapsulation ARPA
  ARP type: ARPA, ARP Timeout 04:00:00

sh vlan

VLAN Name                             Status    Ports
---- -------------------------------- --------- -------------------------------
1    default                          active
2    internal                         active
             Fa0/5, Fa0/6, Fa0/7, Fa0/8,
                                                Fa0/9, Fa0/10, Fa0/11, Fa0/12,
                                                Fa0/13, Fa0/14, Fa0/15, Fa0/16
3     active    Fa0/17, Fa0/18, Fa0/19, Fa0/20,
                                                Fa0/21, Fa0/22, Fa0/23, Fa0/24
1002 fddi-default                     active
1003 token-ring-default               active
1004 fddinet
1005 trnet-default                    active

VLAN Type  SAID       MTU   Parent RingNo BridgeNo Stp  BrdgMode Trans1 Trans2
---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------
1    enet  100001       -        0      0
2    enet  100002     1500  -      -      -        -    -        0      0
3    enet  100003     1500  -      -      -        -    -        0      0
1002 fddi  101002     1500  -      -      -        -     101003     1500  -
 -      -        -    -        0      0
1004 fdnet 101004     1500  -      -      -        ieee -        0      0
1005 trnet 101005     1500  -      -      -        ibm  -        0      0
Switch#

(I know it looks like not all of the first bunch of ports are in VLAN 2, but they are, my terminal software is being buggy). Can anyone recommend some freeware terminal software by the way?

Also, last couple of questions, can I configure the switch to authenticate telnet/ssh sessions by RADIUS? How do I set the telnet/enable passwords?

Thanks.

George
0
Comment
Question by:georgemason
  • 3
  • 3
6 Comments
 
LVL 79

Expert Comment

by:lrmoore
Comment Utility
Hyperterm that comes with all versions of Windows is good.
Interface VLAN2 will not come "up" unless VLAN1 is administratively shut down.
"interface vlanxx" is a layer 3 interface that is used only to administer the switch. You cannot have more than one enabled at any one time.

How do I set the telnet/enable passwords?
switch(config)#enable password <mynewpa$$w0rd>
switch(config)#line vty 0 15
switch(config-if)#password <newPa$S>

Yes you can use Radius with AAA commands
http://www.cisco.com/univercd/cc/td/doc/product/lan/cat2950/12122ea7/scg/swauthen.htm#wp1091098

aaa new-model
aaa authentication login default group RADIUS
radius-server host <ip address>
radius-server key <string>

0
 
LVL 1

Author Comment

by:georgemason
Comment Utility
OK, have downed VLAN 1 as follows: conf t, int vlan 1, shutdown, end

VLAN 2 is still also administratively down. What else do I need to do?

(incidentally, thanks for the info on the AAA and telnet/en passwords)
0
 
LVL 1

Author Comment

by:georgemason
Comment Utility
Here is the info on the interfaces too:

Switch#sh int            
VLAN1 is administratively down, line protocol is dow                                                  
  Hardware is CPU Interface, address is 0030.8028.7440 (bia 0030.8028.7440)                                                                          
  Internet address is 172.16.0.1/16                                  
  MTU 1500 bytes, BW 10000 Kbit, DLY 1000 usec,                                              
     reliability 255/255, txload 1/255, rxload 1/255                                                    
  Encapsulation ARPA, loopback not set                                      
  ARP type: ARPA, ARP Timeout 04:00:00                                      
  Last input never, output 00:02:49, output hang never                                                      
  Last clearing of "show interface" counters never                                                  
  Queueing strategy: fifo                        
  Output queue 0/40, 0 drops; input queue 0/75, 0 drops                                                      
  5 minute input rate 0 bits/sec, 0 pa                                    
  5 minute output rate 0 bits/sec, 0 packets/sec                                                
     0 packets input, 0 bytes, 0 no buffer                                          
     Received 0 broadcasts, 0 runts, 0 giants, 0 throttles                                                          
     0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored                                                        
     0 input packets with dribble condition detected                                                    
     5 packets output, 1974 bytes, 0 underruns                                              
     0 output errors, 0 collisions, 1 interface resets                                                      
     0 babbles, 0 late collision, 0 deferred                                            
     0 lost carrier, 0 no carrier                                
     0 output buffer failures, 0 output buffers swapped out                                                          
VLAN2 is administratively down, line protocol is down                                                    
  Hardware is CPU Interface, address is 0030.8028.7440 (bia 0030.8028.7440)                                                                          
  Internet address is 192.168.0.253/24                                      
  MTU 1500 bytes, BW 10000 Kbit, DLY 1000 usec,                                              
     reliability 255/255, txload 1/255, rxload 1/255                                                    
  Encapsulation ARPA                    
  ARP type: ARPA, ARP Timeout 04:00:00                                      
FastEthernet0/1 is down, line protocol is down                                              
  Hardware is Fast Ethernet, address is 0030.8028.7441 (bia 0030.8028.7441)                                                                          
  MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,                                              
     reliability 255/255, txload 1/255, rxload 1/255                                                    
  Encapsulation ARPA, loopback not set                                      
  Keepalive not set                  
  Auto-duplex , Auto Speed , 100BaseTX/FX                                        
  ARP type: ARPA, ARP Timeout 04:00:00                                      
  Last input never, output never, output hang never                                                  
  Last clearing of "show interface" counters never                                                  
  Queueing strategy: fifo                        
  Output queue 0/40, 0 drops; input queue 0/75, 0 drops                                                      
  5 minute input rate 0 bits/sec, 0 packets/sec                                              
  5 minute output rate 0 bits/sec, 0 packets/sec                                                
     1 packets input, 64 bytes                              
     Received 0 broadcasts, 0 runts, 0 giants, 0 throttles                                                          
     0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored                                                        
     0 watchdog, 0 multicast                            
     0 input packets with dribble condition detected                                                    
     1 packets output, 64 bytes, 0 underruns                                            
     0 output errors, 0 collisions, 1 interface resets                                                      
     0 babbles, 0 late collision, 0 deferred                                            
     0 lost carrier, 0 no carrier                                
     0 output buffer failures, 0 output buffers swapped out                                                          
FastEthernet0/2 is down, line protocol is down                                              
  Hardware is Fast Ethernet, address is 0030.8028.7442 (bia 0030.8028.7442)                                                                          
  MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,                                              
     reliability 255/255, txload 1/255, rxload 1/255                                                    
  Encapsulation ARPA, loopback not set                                      
  Keepalive not set                  
  Auto-duplex , Auto Speed , 100BaseTX/FX                                        
  ARP type: ARPA, ARP Timeout 04:00:00                                      
  Last input never, output 00:01:05, output hang never                                                      
  Last clearing of "show interface" counters never                                                  
  Queueing strategy: fifo                        
  Output queue 0/40, 0 drops; input queue 0/75, 0 drops                                                      
  5 minute input rate 0 bits/sec, 0 packets/sec                                              
  5 minute output rate 0 bits/sec, 0 packets/sec                                                
     4 packets input, 371 bytes                              
     Received 3 broadcasts, 0 runts, 0 giants, 0 throttles                                                          
     0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored                                                        
     0 watchdog, 2 multicast                            
     0 input packets with dribble condition detected                                                    
     4 packets output, 1210 bytes, 0 underruns                                              
     0 output errors, 0 collisions, 1 interface resets                                                      
     0 babbles, 0 late collision, 0 deferred                                            
     0 lost carrier, 0 no carrier                                
     0 output buffer failures, 0 output buffers swapped out                                                          
FastEthernet0/3 is up, line protocol is up                                      
  Hardware is Fast Ethernet, address is 0030.8028.7443 (bia 0030.8028.7443)
  MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,
     reliability 255/255, txload 1/255, rxload 1/255
  Encapsulation ARPA, loopback not set
  Keepalive not set
  Auto-duplex (Full), Auto Speed (100), 100BaseTX/FX
  ARP type: ARPA, ARP Timeout 04:00:00
  Last input never, output 00:00:01, output hang never
  Last clearing of "show interface" counters never
  Queueing strategy: fifo
  Output queue 0/40, 0 drops; input queue 0/75, 0 drops
  5 minute input rate 0 bits/sec, 0 packets/sec
  5 minute output rate 0 bits/sec, 0 packets/sec
     45 packets input, 6635 bytes
     Received 44 broadcasts, 0 runts, 0 giants, 0 throttles
     0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
     0 watchdog, 2 multicast
     0 input packets with dribble condition detected
     39 packets output, 4146 bytes, 0 underruns
     0 output errors, 0 collisions, 1 interface resets
     0 babbles, 0 late collision, 0 deferred
     0 lost carrier, 0 no carrier

Switch#
0
How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

 
LVL 79

Accepted Solution

by:
lrmoore earned 250 total points
Comment Utility
switch#config t
switch(config)#interface vlan2
switch(config)#no shut
switch(config)#exit
switch#

Additionally, any one of the actual physical ports in vlan2 must be plugged into something.
0
 
LVL 1

Author Comment

by:georgemason
Comment Utility
Bizarrely, by issuing the no shutdown command on VLAN2, it worked. This despite the fact that I'd issued that command quite a few times before I'd shut down VLAN1.

Still, lrmoore, thanks very much! This is going to a client site tomorrow, and it wasn't ready. It's 10pm here and I was starting to lose hope! The points are yours....
0
 
LVL 79

Expert Comment

by:lrmoore
Comment Utility
That's just they way these switches work. You can't "no shut" vlan 2 until vlan 1 is shut..

Good luck!
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
not output on the show arp command 5 42
ESXi VLAN Lab 2 32
HSRP needed? 4 25
W 10 Workstation can't join Win 2012 domain 12 23
Let’s list some of the technologies that enable smooth teleworking. 
If your business is like most, chances are you still need to maintain a fax infrastructure for your staff. It’s hard to believe that a communication technology that was thriving in the mid-80s could still be an essential part of your team’s modern I…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now