cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
4371
Views
0
Helpful
17
Replies

cat2960 native VLAN1 TAGGED

fsoffia
Level 1
Level 1

hello

I configured vlan 1,2 and 3 on switch cat2960 ios: C2960 Software (C2960-LANBASE-M), Version 12.2(25)SEE2.

I connected the switch f0/1 port configured like a TRUNK 802.1q, to a cisco2610 router with ios : C2600 Software (C2600-IS-M), Version 12.2(40).

I configured Ethernet SUBINTERFACES on router for 802.1q intervlan routing.

E0/0 subinterface on router has vlan 1 NATIVE encapsulation.

I can't ping the switch from router console and viceversa, intervlan routuing does not work.

THE PROBLEM IS THAT ON CAT2960 THE TRUNK HAS THE VLAN1 TAGGED but the router NO.

Switch#sh interfaces f0/1 switchport

Name: Fa0/1

Switchport: Enabled

Administrative Mode: trunk

Operational Mode: trunk

Administrative Trunking Encapsulation: dot1q

Operational Trunking Encapsulation: dot1q

Negotiation of Trunking: On

Access Mode VLAN: 1 (default)

Trunking Native Mode VLAN: 1 (default)

Administrative Native VLAN tagging: enabled

Voice VLAN: none

Administrative private-vlan host-association: none

Administrative private-vlan mapping: none

Administrative private-vlan trunk native VLAN: none

Administrative private-vlan trunk Native VLAN tagging: enabled

Administrative private-vlan trunk encapsulation: dot1q

Administrative private-vlan trunk normal VLANs: none

Administrative private-vlan trunk private VLANs: none

Operational private-vlan: none

Trunking VLANs Enabled: ALL

Pruning VLANs Enabled: 2-1001

Capture Mode Disabled

Capture VLANs Allowed: ALL

Protected: false

Unknown unicast blocked: disabled

Unknown multicast blocked: disabled

Appliance trust: none

Switch#

IS THERE A COMMAND THAT CAN DISABLE "ADMINISTRATIVE NATIVE VLAN TAGGING" on CAT2960 ?

best regards

francesco

17 Replies 17

Edison Ortiz
Hall of Fame
Hall of Fame

Can you post configs from the router and switch as well as show ip int brief from each device ?

o_albegov
Level 1
Level 1

Try "no vlan DOt1q tag native" command.

hello

the command that you specify does NON exist on cat2960.

VLAN Config guide (OL-8603-01) for IOS 12.2(25)SEE, pag 12-19 say that native VLAN (default vlan 1) is not tagged on truk interfaces.

It seems me that it's not right.

Have you an idea for removing tagging for native vlan 1 on trunks ?

best regards

francesco

glen.grant
VIP Alumni
VIP Alumni

you might want to post the port configs from the router and the switch . Normally you should not have to mess with the tagging stuff just make sure the native vlan matches on each end of the link .

If you still want to remove the Vlan1 as the native vlan, you can simply create a bogus vlan which does not exist anywhere on the network and set that as the native vlan on the trunk port. This way all the inter-vlan traffic will be tagged towards the router.

Vlan 999

Name Bogus Vlan

Int fa 0/1

switchport trunk native vlan 999

On the router side do not use the native keyword on the router side.

But to be very true, I have personally seen a lots of issues when you remove native vlan on a router-on-stick model for inter-vlan routing that you are setting up.

If you have the same native vlan setup on both the sides it should work. Please paste the router and switch config and we will be able to take it further.

-amit singh

hello amit,

I just want to remove ADMINISTRATIVE VLAN 1 TAGGING from switch trunk !

Cat2950 does not have this problem, for example !

Is it possible ?

Anyway I attached config files from cisco2610 and cisco2960.

best regards

On the router, you have

interface Ethernet0/0.1

encapsulation dot1Q 1 native

ip address 192.168.1.2 255.255.255.0

Remove the native keyword on the encapsulation, then reset both ports and check the 2960 status again.

Edison,

If you remove the native keyword on the interface e0/0.1, the original poster will face the native vlan issues as the trunk port will have vlan 1 as the native vlan bydefault.The router will drop the untagged poackets sourced from vlan1 in this case.

I would agree on this if there is a bogus vlan configured on the trunkport as the native vlan instead of the vlan1.

-amit singh

Amit,

I believe the native tagging is being learned by the router on this case. I was unable to duplicate this behavior when trunking 2 switches. I understand this may cause a disruption of services but I wanted to verify if by removing the native keyword from the router, would the switch behave any differently.

[edit:] never mind, I checked on 3560 switches and the native VLAN tagging is indeed enabled. Very interesting. I don't see this information on the 3500 or 6500 switches ...

Amit Singh
Cisco Employee
Cisco Employee

francesco,

Unfortunately You cannot do it on 2960, the command to tag the native vlan on the trunk port is not supported on 2960.The work around that I gave in my earlier post will eventually do the same function but the Native vlan tagging will remain enabled.

-amit singh

hello Amit,

I agree with you.

On Cat2960 at the moment I think we can't disable native vlan tagging on trunk ports.

On cisco2610 native vlan 1 tagging is by default, we have just tried this ...

I think like you that a bogus vlan at the moment is the only solution.

I don't like this but it's the only...

Do you think that it could be an IOS bug ?

best regards

francesco

Franceso,

What is the IOS version running on the 2600 router. If it is later than 12.1.3T then, I think its a bug. This is not an expected behaviour. This behaviour could have been expecetd in the earlier IOS than 12.1.3T.

In earlier IOS " native " keyword was not supported under the sub-interface config.If configured wrong, the router would expect a tag dot1q frame on VLAN1 and the switch is not expecting a tag on VLAN1. As a result, no traffic will pass between VLAN1 on the switch and the router. In these situations always put the configuration for the native VLAN under the main interface and on the trunk create subinterface for all other VLAN.

I think you might be hitting this BUG : CSCds42715

Did you try upgrading the IOS on the router with int the same train. We have only two options here:

Try upgrading the IOS to the latest train

Confiigure the bogus vlan on the trunk port and TAG all the vlans to the router trunk.

Let us know if that works.

-amit singh

hi amit

this is "sh version" for cisco2610

best regards

FRANCESCO,

You are running 12.2.40 which is a much later release than 12.1.3T.

This looks a bug for me so try upgrading the IOS to the latest one in 12.2 series to 12.2.46 or move to 12.3 train and it should work for you.

Otherwise you can create a bogus vlan on the trunkport to tag all the vlans on the trunkport and it should for you as well.

HTH,Please rate all the posts that helped.

-amit singh

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: