Solved

Network problem

Posted on 2009-07-13
7
520 Views
Last Modified: 2012-05-07
The link between SITE A-C6509B (4/48) and SITE B-C6509A (G3/48) is a 100Mbit/s LAN Extension Service circuit.  As a result of problems being experienced with traffic running on this link, a test VLAN was created with ID 2000.  This VLAN only exists in these two switches, and only on this one link.  The subnet created on this VLAN (172.20.1.0/24) is not included in any routing protocol, and only exists on this VLAN.
 
172.20.1.2 SITE B-C6509A -> G3/48 -> LES circuit -> G4/48 -> SITE A-C6509B 172.20.1.1
 
If the link is configured with just VLAN 2000, pinging both ways between the two nodes on 172.20.1.0/24 works fine.  It also works if you have VLANs 1 and 2000.  However, if you add further VLANs, the following behaviour is exhibited:
 
An extended ping (10000 packets) from 172.20.1.2 (on SITE B-C6509A) to 172.20.1.1 (on SITE A-C6509B) fails.  However, the ARP table is completed correctly for 172.20.1.2.  Also, the mac address table is showing the mac address for 172.20.1.2 in VLAN2000 correctly via G3/48.  The same is true at the other end of the link - the arp and mac tables for 172.20.1.2 are completed correctly.  After a while, the mac address table times out at both ends, even with the continued ping attempts.
Whilst the extended ping is failing, issuing "ping 172.20.1.2" from SITE A-C6509B not only works, but it causes a few hundred pings in the opposite direction to succeed.
OSPF is the routing protocol

 
 

The-link-between-SITE-A.doc
0
Comment
Question by:andrewsmith950
  • 5
7 Comments
 
LVL 34

Assisted Solution

by:Istvan Kalmar
Istvan Kalmar earned 100 total points
ID: 24838811
HI,

What showing the spanning-tree on the vlan 2000?
0
 

Author Comment

by:andrewsmith950
ID: 24838993
Site B-C6509A#sh spanning-tree vlan 2000

VLAN2000
  Spanning tree enabled protocol rstp
  Root ID    Priority    34768
             Address     001a.30b3.8000
             Cost        3
             Port        1665 (Port-channel1)
             Hello Time   2 sec  Max Age 20 sec  Forward Delay 15 sec

  Bridge ID  Priority    34768  (priority 32768 sys-id-ext 2000)
             Address     001b.8f4e.2000
             Hello Time   2 sec  Max Age 20 sec  Forward Delay 15 sec
             Aging Time 300

Interface           Role Sts Cost      Prio.Nbr Type
------------------- ---- --- --------- -------- -----------------------------
Gi3/48              Desg FWD 30        128.304  P2p
Po1                 Root FWD 3         128.1665 P2p


Site A-C6509B#sh spanning-tree vlan 2000

VLAN2000
  Spanning tree enabled protocol rstp
  Root ID    Priority    34768
             Address     001a.30b3.8000
             Cost        22
             Port        432 (GigabitEthernet4/48)
             Hello Time   2 sec  Max Age 20 sec  Forward Delay 15 sec

  Bridge ID  Priority    34768  (priority 32768 sys-id-ext 2000)
             Address     001b.9090.b000
             Hello Time   2 sec  Max Age 20 sec  Forward Delay 15 sec
             Aging Time 300

Interface           Role Sts Cost      Prio.Nbr Type
------------------- ---- --- --------- -------- ------------------------
Gi4/48              Root FWD 19        128.432  P2p
Po1                 Desg FWD 3         128.1665 P2p
0
 
LVL 50

Expert Comment

by:Don Johnston
ID: 24839002
Are any of your switches CatOS? If so, are you using GVRP? If you are, you'll need to set the port registration to the IOS switches to "fixed registration".
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 

Author Comment

by:andrewsmith950
ID: 24839079
No we are using IOS

C6509A#sh vers
Cisco IOS Software, s72033_rp Software (s72033_rp-ADVIPSERVICESK9_WAN-M), Versio
n 12.2(33)SXH3, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2008 by Cisco Systems, Inc.
Compiled Thu 24-Jul-08 19:18 by prod_rel_team

ROM: System Bootstrap, Version 12.2(17r)S4, RELEASE SOFTWARE (fc1)
0
 

Author Comment

by:andrewsmith950
ID: 24839443
I just noticed the interface has an STP cost of 30 on it.
Could this be the problem?
It is probably the reason why we keep getting routing loops


interface GigabitEthernet4/47
 description LES-Connection
 switchport
 switchport trunk encapsulation dot1q
 switchport trunk allowed vlan 1,10-12,2000
 switchport mode trunk
 logging event link-status
 speed 100
 duplex full
 wrr-queue bandwidth 20 100 200
 priority-queue queue-limit 5
 wrr-queue queue-limit 65 15 15
 wrr-queue random-detect min-threshold 1 70 100 100 100 100 100 100 100
 wrr-queue random-detect min-threshold 2 70 100 100 100 100 100 100 100
 wrr-queue random-detect min-threshold 3 40 40 50 50 60 60 70 70
 wrr-queue random-detect max-threshold 1 100 100 100 100 100 100 100 100
 wrr-queue random-detect max-threshold 2 100 100 100 100 100 100 100 100
 wrr-queue random-detect max-threshold 3 70 70 80 80 90 90 100 100
 wrr-queue cos-map 2 1 1 2
 wrr-queue cos-map 3 5 3 4
 wrr-queue cos-map 3 7 6 7
 rcv-queue threshold 1 50 50 60 60 100 100 100 100
 rcv-queue threshold 2 60 80 100 100 100 100 100 100
 rcv-queue cos-map 1 1 0
 rcv-queue cos-map 1 2 1
 rcv-queue cos-map 1 3 2
 rcv-queue cos-map 1 4 3
 rcv-queue cos-map 2 1 4
 rcv-queue cos-map 2 2 5
 rcv-queue cos-map 2 3 6
 rcv-queue cos-map 2 4 7
 mls qos trust dscp
 auto qos voip trust
 spanning-tree cost 30
0
 

Author Comment

by:andrewsmith950
ID: 24840517
Just tested by removing the cost and the problem still exists
0
 

Accepted Solution

by:
andrewsmith950 earned 0 total points
ID: 24862843
The problem was vlans having their own instances of Spanning tree due to VTP pruning. And OSPF using multipath load balancing and some routes coming to dead ends. Also all HSRP groups were in default group 0.
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

#Citrix #Citrix Netscaler #HTTP Compression #Load Balance
If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

791 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question