Bart Dorlandt - BAMweb.nl

Below you'll find a configuration for a DHCP server with 1 pool and option 161. This will let voice devices now where to find their voice gateway.

ip dhcp excluded-address 192.9.232.1 192.9.232.70
!
ip dhcp pool Name1
network 192.9.232.0 255.255.255.0
default-router 192.9.232.1
domain-name fpg1
option 161 ip 192.9.232.248
dns-server 192.9.232.248
lease 3

Sample configuration:

Switch# configure terminal
Switch(config)# aaa new-model
Switch(config)# radius-server host xxx.xxx.xx.xx key xxxxx
Switch(config)# aaa authentication dot1x default group radius
Switch(config)# interface fastethernet0/1
Switch(config-if)# dot1x port-control auto
Switch(config-if)# end

I

I love to use the include, exclude and begin filters in Cisco. Reminds me of grep, which I also love :)

Its only been days in which I found out how to have multiple include commands working together. This is how to do it:

show spanning-tree detail | inc (is executing the ieee)|(topology)

To have everything advertised accept a single or couple of routes is possible using the following commands:

router bgp <BGP ID>
address-family ipv4 vrf <VRF>
redistribute connected route-map <not_advertised_ID>

access-list <number> deny <IP subnet> <invers subnetmask>
access-list <number> deny <IP subnet> <invers subnetmask>
access-list <number> deny <IP subnet> <invers subnetmask>
access-list 1 permit any

route-map <not_advertised_ID> permit 10
match ip address <number>

I was in need of a new IOS for the 3550 multi layer switch. So I took the newest IOS and tested it. Apparently this new IOS doesn't work as it supposed to be doing.

After uploading the new IOS (c3550-ipbasek9-mz.122-44.SE.bin) and deleted the configuration and the vlan.dat (don't you always forget that one) I rebooted the switch. It just comes up, no worries here.

After configuring the switch it can be used like a charm. The problem start after the next reboot. It walks through the POST and the IOS startup, the hardware check and posts the message. "Press RETURN to get started".

Once you press enter it will start generating a RSA key. This is the part it freezes. No crash, just freeze. From this point on, no reload seems to help...

This happens every time you want to configure your switch after using the new IOS.

Also the command " ip tacacs source-interface vlan" isn't understood anymore...

My opion:     a crappy IOS.

The previous IOS seems to be running just fine. (c3550-ipbasek9-mz.122-25.SEE4.bin)

In case one of your switches isn't communicating correctly with your VTP server, you might want to follow these steps.

First, check the VTP info for a working switch. Also take a look at the password, which is being used.

show vtp status

show vtp password

Look especially at the mode, version and the domain.

To configure these parameters use the following commands. Keep in mind you can only configure the version of VTP if it is server. So when you need to change this to version 2, you'll first have to make it server and then change the mode of VTP. Here ae the commands to use:

configure terminal
vtp password <password>
vtp mode server
vtp version 2
vtp mode client
vtp domain <domain>

This is the configuration I have used on a Cisco c3550-24PWR with c3550-ipbasek9-mz.122-25.SEE4.bin IOS. Before I've used this IOS: c3550-i5q3l2-mz.121-14.EA1a.bin, but this version had some issues with the dynamic VLANS we use in combination with URT.

interface FastEthernet0/1
switchport access vlan dynamic
switchport mode access
switchport voice vlan 101
no logging event link-status
speed 100
no snmp trap link-status
no cdp enable
spanning-tree portfast
spanning-tree bpduguard enable
spanning-tree guard root

The phone we used is a philips Dterm.