Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
867
Views
0
Helpful
2
Replies

ACE 4710 in bridge mode not working

winpwnkmr
Level 1
Level 1

‎03-08-2010 06:40 AM

I am trying to configure ACE 4710 bridge mode and I am stuck up in physical interface configuration. I have configured gig1/2 of ACE as trunk port and on layer 2 switch I have assigned that interface (gig1/2) to VLAN 11. I tried trunk port also but it got disabled due to BPDU error.

I am not able to ping servers as well as gateway. Below are the topology and context configuration:

Router   (vlan 13: IP 172.16.11.254)

     |

ACE     (int gig1/2)

     |

L2 Switch

     |

Servers (vlan 11: IP 172.16.11.1 and 11.2)

Admin Context

===========

resource-class rc1
  limit-resource all minimum 0.00 maximum unlimited
  limit-resource sticky minimum 0.20 maximum unlimited

boot system image:c4710ace-mz.A3_2_4.bin

interface gigabitEthernet 1/1
  switchport access vlan 1000
  no shutdown
interface gigabitEthernet 1/2
  switchport trunk allowed vlan 11,13
  no shutdown
interface gigabitEthernet 1/3
  shutdown
interface gigabitEthernet 1/4
  shutdown


access-list ALL line 8 extended permit ip any any
access-list everyone line 8 extended permit ip any any
access-list everyone line 16 extended permit icmp any any


class-map type management match-any remote_access
  2 match protocol xml-https any
  3 match protocol icmp any
  4 match protocol telnet any
  5 match protocol ssh any
  6 match protocol http any
  7 match protocol https any
  8 match protocol snmp any

policy-map type management first-match remote_mgmt_allow_policy
  class remote_access
    permit

interface vlan 1000
  ip address 172.16.16.16 255.255.255.0
  access-group input ALL
  service-policy input remote_mgmt_allow_policy
  no shutdown

ip route 0.0.0.0 0.0.0.0 172.16.16.254

context test
  allocate-interface vlan 11
  allocate-interface vlan 13
  member rc1

test Context

=========

access-list bpdu-fixup ethertype permit bpdu

access-list ALL line 8 extended permit ip any any
access-list ALL line 16 extended permit icmp any any

rserver host srv1
  ip address 172.16.11.1
  inservice
rserver host srv2
  ip address 172.16.11.2
  inservice


serverfarm host srv
  rserver srv1
    inservice
  rserver srv2
    inservice

sticky ip-netmask 255.255.255.255 address both SG1
  timeout 120
  serverfarm srv

class-map type management match-any remote-mgmt
  201 match protocol snmp any
  202 match protocol ssh any
  203 match protocol icmp any
  204 match protocol http any
  205 match protocol https any
  206 match protocol xml-https any
class-map match-all slb-vip
  2 match virtual-address 172.16.11.10 any

policy-map type management first-match remote-mgmt
  class remote-mgmt
    permit

policy-map type loadbalance first-match slb
  class class-default
    sticky-serverfarm SG1

policy-map multi-match client-vips
  class slb-vip
    loadbalance vip inservice
    loadbalance policy slb
    loadbalance vip icmp-reply

interface vlan 11
  bridge-group 1
  access-group input bpdu-fixup
  access-group input ALL
  access-group output ALL
  no shutdown

interface vlan 13
  bridge-group 1
  access-group input bpdu-fixup
  access-group input ALL
  access-group output ALL
  service-policy input remote-mgmt
  service-policy input client-vips

  no shutdown

interface bvi 1
  ip address 172.16.11.9 255.255.255.0
  no shutdown

ip route 0.0.0.0 0.0.0.0 172.16.11.254


Could you pls. suggest where I am doing wrong?

Thanks,

Pawan

Labels:
0 Helpful
2 Replies 2

Gilles Dufour
Cisco Employee
Cisco Employee

‎03-08-2010 11:57 PM

" I tried trunk port also but it got disabled"   <----- if your L2 config is not correct, nothing will work.

What is the setup on the switch ? Trunk or access vlan ?

What is the status of the interface ? up ? down ?

Do you see something in your arp table ?

Gilles.

0 Helpful

winpwnkmr
Level 1
Level 1
In response to Gilles Dufour

‎03-09-2010 01:40 AM

I configured that port as trunk port and it's working now after I disabled BPDUguard.

Thanks,

Pawan

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents