Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1481
Views
0
Helpful
1
Replies

Routing problems on SGE2000 & SGE2000P stack

cory.seaman
Level 1
Level 1

‎03-05-2010 05:54 AM

Recently we've changed our network routing, and now we're seeing some strange behavior.  Inbound VPN connections can't connect to resources, and it looks like it's because return traffic is being routed incorrectly.

Example:

* Switch has some static IP routes:

     - 0.0.0.0 next hop 10.1.0.3 (Public internet)

     - 10.0.3.0/24 next hop 10.1.0.2 (WAN connection to VPN/firewall)

     - 10.10.10.0 (local)

* VPN client is connected on 10.0.3.3

* VPN client attempts to reach 10.10.10.10, but can't

* Tracert shows that outbound traffic from 10.10.10.x to 10.0.3.3 is being routed out 10.1.0.3 instead of 10.1.0.2

We've seen that 10.10.10.x clients on some ports will use the right route, while others use the wrong one.  This problem has only appeared in the past few days, and the most recent static route changes were a couple of weeks ago.  Rebooting the stack seems to take care of everything for a while, but then it creeps back in.  Assuming it's something to do with the switch's routing algorithm, but I'm not sure if there's anything that can be done to fix it directly.

We're still running firmware v1.0.0.45, and I see that there are v3.x versions available.  Is this a known issue that might be addressed by firmware, or should I be looking for a configuration problem?  Suggestions?

Labels:
0 Helpful
1 Reply 1

alissitz
Level 4
Level 4

‎03-05-2010 08:01 PM

I do not know if this was a known issue ... I have not heard of it. Certainly there have been bugs ... I just have not heard of this one in particular.

The fact that it 'creeps' back is pretty suspicious.

How long does it normally take to 'creep back'?

When the problem occurs, is it isolated to a particular switch or simply random for any port on any switch?

Devices 10.1.0.2 and 10.1.0.3 - are these sharing the same mac?  HSRP type of install ... and perhaps a failover event proceeds this routing confusion.

For sure I would suggest an upgrade to the latest code, and I think you will like the improved gui.  Kindest regards,

Andrew Lissitz

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Switch products supported in this community
Cisco Business Product Family
  • CBS110
  • CBS220
  • CBS250
  • CBS350
Cisco Switching Product Family
  • 110
  • 200
  • 220
  • 250
  • 300
  • 350
  • 350X
  • 550X
Customers Also Viewed These Support Documents