I've been off and on working on this for probably a week or two and I just need to get it put to bed. So, here's what's going on.
The Setup
I've got a CISCO 2901 as the router
The 2901 connects directly to port 24 on my core 2960 (this is a small satellite office)
Port 12 on core is connected to port 12 on New for testing purposes.
I am remote and have hands in the office during the day. I am connected to a laptop that has a console cable connected directly to new and I can access the core switch from anywhere via SSH.
What's Not Working
I am unable to even ping the New switch. I can't ping the gateway from the New switch and I cannot ping the New switch. Other than the console cable and the network cable from port 12 on Core to port 12 on New, there's nothing connected to New switch and it's not accessible without the console cable.
The Configs
Core
Building configuration... Current configuration : 7167 bytes ! ! Last configuration change at 20:50:19 UTC Tue Jan 29 2019 by user ! NVRAM config last updated at 20:27:42 UTC Tue Jan 29 2019 by user ! version 15.0 no service pad service timestamps debug datetime msec service timestamps log datetime msec service password-encryption ! hostname 2960-01-Location ! boot-start-marker boot-end-marker ! ! username admin privilege 15 secret 5 supersecret aaa new-model ! ! aaa authentication login SysAdmin local group radius aaa authorization console aaa authorization exec SysAdmin local group radius aaa accounting system default start-stop group radius ! ! ! ! ! ! aaa session-id common ! ! no ip domain-lookup ip domain-name domain.local ! ! crypto pki trustpoint TP-self-signed-2960468352 enrollment selfsigned subject-name cn=IOS-Self-Signed-Certificate-2960468352 revocation-check none rsakeypair TP-self-signed-2960468352 ! ! crypto pki certificate chain TP-self-signed-2960468352 certificate self-signed 01 ** SSL KEY HERE ** quit spanning-tree mode pvst spanning-tree extend system-id ! ! ! ! ! ! ! ! ! vlan internal allocation policy ascending ! ! ! ! ! ! ! ! ! ! ! interface FastEthernet0 no ip address ! interface GigabitEthernet0/12 switchport mode trunk spanning-tree portfast ! ..... interface GigabitEthernet0/22 description right rack PDU switchport access vlan 50 switchport trunk allowed vlan 50,60 switchport mode trunk spanning-tree portfast ! interface GigabitEthernet0/23 description Uplink to Cisco 2901 switchport mode trunk spanning-tree portfast ! interface GigabitEthernet0/24 description Uplink to 2960-02-Austin switchport mode trunk spanning-tree portfast ! interface GigabitEthernet0/25 ! interface GigabitEthernet0/26 ! interface Vlan1 no ip address ! interface Vlan60 ip address 10.21.60.3 255.255.255.0 ! ip default-gateway 10.21.60.1 no ip http server no ip http secure-server ! kron occurrence Backup at 23:00 Sun recurring policy-list Backup ! kron policy-list Backup cli show run | redirect tftp://10.101.50.41/2960-01-Location.cfg ! access-list 10 permit 10.0.0.0 0.255.255.255 snmp-server community THING RO snmp-server location Place ! radius-server host 10.100.50.40 key 7 KEY radius-server host 10.20.50.40 key 7 KEY ! ! banner login ^C ***************************************************************************** * This is a private system operated for and by Company. * * Authorization from Company is required to use this system. * * Use by unauthorized persons is prohibited. * * If you find this equipment please call * ***************************************************************************** ^C ! line con 0 exec-timeout 0 0 authorization exec SysAdmin logging synchronous login authentication SysAdmin line vty 0 4 access-class 10 in exec-timeout 60 0 authorization exec SysAdmin logging synchronous login authentication SysAdmin length 0 transport input telnet ssh line vty 5 15 access-class 10 in exec-timeout 60 0 authorization exec SysAdmin logging synchronous login authentication SysAdmin transport input telnet ssh ! ntp server 10.21.60.1 end
New
Building configuration... Current configuration : 4034 bytes ! ! Last configuration change at 08:21:52 UTC Tue Jan 3 2006 by admin ! version 15.0 no service pad service timestamps debug datetime msec service timestamps log datetime msec service password-encryption ! hostname 2960-02-location ! boot-start-marker boot-end-marker ! ! username admin privilege 15 secret 5 supersecret aaa new-model ! ! aaa authentication login SysAdmin local group radius aaa authorization console aaa authorization exec SysAdmin local group radius aaa accounting system default start-stop group radius ! ! ! ! ! ! aaa session-id common switch 1 provision ws-c2960s-24pd-l ! ! no ip domain-lookup ip domain-name NLGC.linkp.local ! ! ! spanning-tree mode pvst spanning-tree extend system-id ! ! ! ! ! ! ! ! ! vlan internal allocation policy ascending ! ! ! ! ! ! ! ! ! ! ! interface FastEthernet0 no ip address ! interface GigabitEthernet1/0/12 switchport mode trunk spanning-tree portfast ! interface GigabitEthernet1/0/24 spanning-tree portfast ! interface GigabitEthernet1/0/25 ! interface GigabitEthernet1/0/26 switchport mode trunk ! interface TenGigabitEthernet1/0/1 ! interface TenGigabitEthernet1/0/2 ! interface Vlan1 no ip address ! interface Vlan60 ip address 10.21.60.21 255.255.255.0 ! ip default-gateway 10.21.60.1 no ip http server no ip http secure-server ! kron occurrence Backup at 23:00 Sun recurring policy-list Backup ! kron policy-list Backup cli show run | redirect tftp://10.101.50.41/2960-01-Location.cfg ! access-list 10 permit 10.0.0.0 0.255.255.255 ! snmp-server community THING RO snmp-server location Location ! ! radius server NLGCRadius1 address ipv4 10.20.50.40 auth-port 1645 acct-port 1646 key 7 KEY ! radius server NLGCRadius2 address ipv4 10.100.50.40 auth-port 1645 acct-port 1646 key 7 KEY ! ! banner login ^C ***************************************************************************** * This is a private system operated for and by Company. * * Authorization from Company is required to use this system. * * Use by unauthorized persons is prohibited. * * If you find this equipment please call * ***************************************************************************** ^C ! line con 0 exec-timeout 0 0 authorization exec SysAdmin logging synchronous login authentication SysAdmin line vty 0 4 access-class 10 in exec-timeout 60 0 authorization exec SysAdmin logging synchronous login authentication SysAdmin length 0 transport input telnet ssh line vty 5 15 access-class 10 in exec-timeout 60 0 authorization exec SysAdmin logging synchronous login authentication SysAdmin transport input telnet ssh ! ntp server 10.21.60.1 end
No comments:
Post a Comment