Cisco RPS "sh env all" Need Output Explained?

I am having an issue with a power supply in one of my WS-C3560X-48T-L  When running a "sh env all or sh env power" on a similar switch I am receiving the following output.

Perimeter_3560_3#sh env all

FAN is OK

TEMPERATURE is OK

SW  PID                 Serial#     Status           Sys Pwr  PoE Pwr  Watts

--  ------------------  ----------  ---------------  -------  -------  -----

 1  Fixed                                            Good

SW  Status          RPS Name          RPS Serial#  RPS Port#

--  -------------   ----------------  -----------  ---------

1   Active          <>

Most of my switches show the PID as " Built-in". What is the significance between "Fixed" and Built-in" and if it is anything I should address?

Another example:

COLO_3560_24#sh env all

FAN is OK

TEMPERATURE is OK

SW  PID                 Serial#     Status           Sys Pwr  PoE Pwr  Watts

--  ------------------  ----------  ---------------  -------  -------  -----

 1  Built-in                                         Unavail

SW  Status          RPS Name          RPS Serial#  RPS Port#

--  -------------   ----------------  -----------  ---------

1   Active          <>

I'd say it's just different wording in different IOS versions. They might have updated it in IOS to support the new PowerStack features in the new WS-C3560X-48T-S  series switches.

Data plan for the GPON Internet access service

MA5600T/Huawei MA5683T /Huawei MA5680T

Configure the data according to the user requirements.Access rate

Access port

Configure the data according to the network planning.

VLAN planning

The cooperation with the upper-layer device should be considered in the VLAN planning. The upstream VLAN must be the same as that of the upper-layer device.

QoS policy

Configure the data according to the QoS policy of the entire network. Generally, the priority of the Internet access service is lower than the priorities of the voice and video services.

T-CONT ID

It is recommended that you do not use T-CONT 0 to transmit services.

GEM port index

-

ONT

Capability set profile

The ONT capability set profile must be the same as the actual capacity set.

ONT index

GPON supports a split ratio of up to 1:128. You need to plan the ONTs connected to the MA5600T/MA5603T/MA5608T to facilitate management.

Authentication mode

The password, SN, and LOID+CHECKCODE can be used for authentication.

Upper-layer LAN switch

The LAN switch transparently transmits the service packets of the MA5600T/MA5603T/MA5608T on Layer 2.

The VLAN ID must be the same as the upstream VLAN ID of the MA5600T/MA5603T/MA5608T.

-

BRAS

The BRAS performs the related configurations according to the authentication and accounting requirements for dialup users, for example, configures the access user domain (including the authentication scheme, accounting scheme, and authorization scheme bound to the domain) and specifies the RADIUS server.

If the BRAS is used to authenticate users, you need to configure the user name and the password for each user on the BRAS. If the BRAS is used to allocate IP addresses, you need to configure the corresponding IP address pool on the BRAS.

cisco switch 3750 http access

I have upgraded my cisco stack to WS-C3750X-24P-S    e-universalk9npe-mz.150-2.SE2.bin. However I can no longer http:// to the switch. I have ip http-server flash:c3750e-universalk9npe-mz.150-2.SE2.bin and when I run sh ip http server status I get HTTP server status: Enabled

HTTP server port: 80

HTTP server authentication method: enable

HTTP server access class: 0

HTTP server base path: flash:html

HTTP server help root:

Maximum number of concurrent server connections allowed: 16

Server idle time-out: 180 seconds

Server life time-out: 180 seconds

Maximum number of requests allowed on a connection: 25

HTTP server active session modules: ALL

HTTP secure server capability: Present

HTTP secure server status: Disabled

HTTP secure server port: 443

HTTP secure server ciphersuite:  3des-ede-cbc-sha des-cbc-sha rc4-128-md5

        rc4-128-sha aes-128-cbc-sha aes-256-cbc-sha dhe-aes-128-cbc-sha

        dhe-aes-256-cbc-sha

HTTP secure server client authentication: Disabled

HTTP secure server trustpoint:

HTTP secure server active session modules: ALL

dhstack1#sh ip http server status

HTTP server status: Enabled

HTTP server port: 80

HTTP server authentication method: enable

HTTP server access class: 0

HTTP server base path: flash:html

HTTP server help root:

Maximum number of concurrent server connections allowed: 16

Server idle time-out: 180 seconds

Server life time-out: 180 seconds

Maximum number of requests allowed on a connection: 25

HTTP server active session modules: ALL

HTTP secure server capability: Present

HTTP secure server status: Disabled

HTTP secure server port: 443

HTTP secure server ciphersuite:  3des-ede-cbc-sha des-cbc-sha rc4-128-md5

        rc4-128-sha aes-128-cbc-sha aes-256-cbc-sha dhe-aes-128-cbc-sha

        dhe-aes-256-cbc-sha

HTTP secure server client authentication: Disabled

HTTP secure server trustpoint:

HTTP secure server active session modules: ALL

delete the below line  and try

ip http path flash:/c  WS-C3750X-24P-L  -universalk9npe-mz.150-2.SE2/c3750e-universalk9npe-mz.150-2.SE2.bin

Cisco 1841 HWIC-4ESW Inter VLAN NAT

We have a Cisco 1841 with a EHWIC-4ESG  with a simple config and need to do a NAT between 2 vlans.

We need that all traffic from 192.168.16.0/24 with destination for 10.1.0.0/16 and for 10.120.0.0/16 be source NATed for range 10.2.166.x. This because we have a partner that delegated this sub-range for us to connect for his company network.

FastEthernet 0/0/3 is connected to the router of this partner with address 10.2.166.1.

When traffic go out from router using a simple telnet or came from our VPDN or from router itself (telnet with source interface vlan1) NAT works fine and is logged in ACLs. But when traffic cames from LAN the NAT do not work and is not logged in the ACLs.

Here is relevant parts of the config. Router is running IOS 12.4.8 Advanced Security.

If somebody have questions please fell free to ask and sorry for my poor english.

Current configuration : 6527 bytes

!

version 12.4

service timestamps debug uptime

service timestamps log uptime

service password-encryption

!

hostname XXXXXX

!

boot-start-marker

boot-end-marker

!

!

aaa new-model

!

!

aaa authentication login default line

aaa authentication ppp default local

aaa authorization network default if-authenticated

!

aaa session-id common

!

resource policy

!

ip cef

!

!

no ip dhcp use vrf connected

ip dhcp excluded-address 192.168.16.1 192.168.16.10

!

ip dhcp pool 1

   network 192.168.16.0 255.255.255.0

   domain-name xxxxx

   default-router 192.168.16.1

   dns-server 208.67.222.222

!

!

ip name-server 208.67.222.222

vpdn enable

!

vpdn-group 1

! Default PPTP VPDN group

 accept-dialin

  protocol pptp

  virtual-template 1

 local name VPDN01

!

!

!

!

username cnteste privilege 7 password 7 HSDFQW37REWHIUFGSFGDSAJGF8EW7RTW87

!

!

!

crypto isakmp policy 10

 encr 3des

 hash md5

 authentication pre-share

 group 2

 lifetime 28800

!

crypto isakmp policy 20

 encr aes 256

 authentication pre-share

 group 5

 lifetime 3600

crypto isakmp key jojojojo address 148.177.xxx.xxx

crypto isakmp key kekekeke address 200.255.xxx.xxx

!

!

crypto ipsec transform-set VPN_001 esp-aes 256 esp-sha-hmac

crypto ipsec transform-set VPN_002 esp-3des esp-md5-hmac

!

crypto map VPNs 1 ipsec-isakmp

 description VPNs Remota 002

 set peer 200.255.xxx.xxx

 set security-association lifetime seconds 28800

 set transform-set VPN_002

 set pfs group5

 match address 160

crypto map VPNs 2 ipsec-isakmp

 description VPNs Remota 001

 set peer 148.177.xxx.xxx

 set transform-set VPN_001

 match address 150

!

!

!

interface Loopback998

 ip address 200.170.xxx.xxx 255.255.255.255

 ip nat outside

 ip virtual-reassembly

!

interface Loopback999

 ip address 200.170.xxx.xxx 255.255.255.255

 ip nat outside

 ip virtual-reassembly

!

interface FastEthernet0/0

 description ISP01

 ip address dhcp

 ip nat outside

 ip virtual-reassembly

 speed auto

 full-duplex

 fair-queue

 crypto map VPNs

!

interface FastEthernet0/1

 description RESERVED FOR ISP02

 ip address dhcp

 ip nat outside

 ip virtual-reassembly

 shutdown

 speed auto

 full-duplex

 fair-queue

!

interface FastEthernet0/0/0

 description Interface LAN

!

interface FastEthernet0/0/1

 shutdown

!

interface FastEthernet0/0/2

 shutdown

!

interface FastEthernet0/0/3

 description PARTNER CONNECTION

 switchport access vlan 10

!

interface Virtual-Template1

 ip unnumbered Vlan1

 ip nat inside

 ip virtual-reassembly

 ip mroute-cache

 peer default ip address dhcp-pool 1

 ppp encrypt mppe auto passive

 ppp authentication ms-chap ms-chap-v2

!

interface Vlan1

 description description VLAN 1 Interface F0/0/0

 ip address 192.168.16.1 255.255.255.0

 ip nat inside

 ip virtual-reassembly

 ip policy route-map FROM-LAN

!

interface Vlan10

 description VLAN 10 Interface F0/0/3 PARTNER CONNECTION

 ip address 10.2.166.100 255.255.254.0

 ip nat outside

 ip virtual-reassembly

!

ip local pool VPDN01 192.168.254.51 192.168.254.199

ip route 0.0.0.0 0.0.0.0 189.38.252.1

ip route 10.1.0.0 255.255.0.0 10.2.166.1

ip route 10.120.0.0 255.255.0.0 10.2.166.1

!

ip http server

ip http port 2280

ip http authentication local

no ip http secure-server

ip nat pool NAT-PARTNER 10.2.166.128 10.2.166.160 prefix-length 26

ip nat inside source list 140 interface FastEthernet0/0 overload

ip nat inside source list NAT-PARTNER pool NAT-PARTNER overload

!

ip access-list extended NAT-PARTNER

 permit ip 192.168.16.0 0.0.0.255 10.1.0.0 0.0.255.255 log-input

 permit ip 192.168.16.0 0.0.0.255 10.120.0.0 0.0.255.255 log-input

 deny   ip any any

!

access-list 1 permit 192.168.16.0 0.0.0.255

access-list 1 permit 192.168.254.0 0.0.0.255

access-list 71 permit 192.168.16.1

access-list 99 permit 192.168.16.3

access-list 100 permit ip any any

access-list 101 deny   ip any any

access-list 130 permit ip 192.168.254.0 0.0.0.255 10.0.0.0 0.255.255.255

access-list 140 deny   ip 192.168.16.0 0.0.0.255 10.1.0.0 0.0.255.255

access-list 140 deny   ip 192.168.16.0 0.0.0.255 10.90.0.0 0.0.255.255

access-list 140 deny   ip 192.168.16.0 0.0.0.255 10.97.0.0 0.0.255.255

access-list 140 deny   ip 192.168.16.0 0.0.0.255 10.120.0.0 0.0.255.255

access-list 140 permit ip 192.168.16.0 0.0.0.255 any

access-list 140 permit ip 192.168.254.0 0.0.0.255 any

access-list 150 permit ip 192.168.16.0 0.0.0.255 10.97.0.0 0.0.255.255 log

access-list 160 permit ip 192.168.16.0 0.0.0.255 10.90.0.0 0.0.255.255 log

!

route-map FROM-LAN permit 10

 match ip address NAT-PARTNER

 set ip next-hop 10.2.166.1

!

Just to tank you. In the end we did a IOS upgrade to 12.4.25 and EHWIC-1GE-SFP-CU   NAT is now Ok with same config.

PowerConnect 6248 & Cisco 3560 Switch trunk connection

We are upgrading our production switches from a set of Cisco 2960 L2 to the Dell Powerconnect 6248's.  Right now the Cisco 2960 swithches are connected to a set of Cisco WS-C3560V2-24TS-S   L3 switches via trunks ( 2 trunks from switch to switch via ports 23 and 24). 

We are only running vlan 1 and the code for ports 23 and 24 on both switches look like this:

Interface gigabit ethernet 0/23

switchport trunk encapsulation dot1q

switchport mode trunk

!

Interface gigabit ethernet 0/24

switchport trunk encapsulation dot1q

switchport mode trunk

I am looking for the best way to trunk the Powerconnect 6248's to the Cisco WS-C3560V2-48TS-S  's using the same ports.  I am having a problem with the "encapsulation dot1q" aspect on the powerconnects.  Any advise would be greatly appreciated.

page 31 from here has the commands to use

VoIP phones not shown in Catalyst 3560

I have 5 Avaya VoIP phones connected to my WS-C3560V2-48TS-S   layer 3 switch. The VoIP gets dhcp from the PBX. VoIP phones and PBX are connected to the switch with voice vlan 10. When I do sh ip arp, I don't see any VoIP phones. But when I do the sh mac address-table, I see their MAC addresses there. One thing I noticed is it will appear in the ARP table only after I ping the VoIP phone. Can somebody help me to make sense of this? Thanks

The WS-C3560X-24P-L   is a layer 2 switch, it routes packets based on MAC address and so its ARP table will not hold IP addresses unless the switch communicates directly with the device.  When you ping the phone, a connection is made and the ARP table notes the IP.

Still won't log MAC addresses, unless it needs to.

Cisco 3750 trunk to Extreme 450

I am trunking a Cisco WS-C3750X-48T-L   to an Extreme 450 and when I plug into the port I'm unable to pull an address from the DHCP server on the extreme side.

Below is the 3750 config;

interface Port-channel7

 description Etherchannel Trunks to Extreme Switch

 switchport trunk encapsulation dot1q

 switchport trunk native vlan 998

 switchport trunk allowed vlan 998,999

 switchport mode trunk

end

!

interface GigabitEthernet1/0/21

 description temp connection to extreme core

 switchport trunk encapsulation dot1q

 switchport trunk native vlan 998

 switchport trunk allowed vlan 998,999

 switchport mode trunk

 channel-group 7 mode active

end

!

interface GigabitEthernet1/0/23

 description temp connection to extreme core

 switchport trunk encapsulation dot1q

 switchport trunk native vlan 998

 switchport trunk allowed vlan 998,999

 switchport mode trunk

 channel-group 7 mode active

end

!

interface GigabitEthernet2/0/15

 description temp connx to Vlan 998

 switchport WS-C3750X-48T-S   access vlan 998

 switchport mode access

 spanning-tree portfast

 spanning-tree bpduguard enable

Yes, that is correct.

Cisco T1 hwic echo

We use IP phones and we connect directly to our other office using a HWIC-1T  line on a cisco 1941 router.  On the one side the sound quality is perfect.  On the other side the sound has a echo.  Is there commands that I can do to eliminate. 

this is what I have

interface Serial0/0/0

ip address 10.1.100.1 255.255.255.0

service-module t1 clock source internal

service-module t1 timeslots 1-24

I am using a cisco 1941 with a hwic dsu/csu inteface card.

I know that, unlike the Cisco 2900 platform, the Cisco 1941 cannot be used as a Local Gateway Service (LGS) for a Hosted Voice Service (HVS).  However, I think you should be able to use it to support voice. 

A Cisco WS-X45-SUP7L-E   module supports up to 2M rate. The question is that, are you using this circuit for both voice and data? if the answer is yes, have you separated your voice traffic from your data traffic or do you let the two compete for bandwidth?

Voice has to be protected and there are two ways you can do this. On your LAN, you can have a dedicated VoIP subnet. You can then design QoS to protect that subnet in the event of congestion.   You need to do more tests to find out why voice works on one side but not the other.

Samsung HD204UI 2T drive -- Why is it so very slow!

I just bought a "SAMSUNG EcoGreen HWIC-2T   F4 HD204UI 2TB 32MB Cache SATA 3.0Gb/s 3.5" Internal Hard Drive" 

I ran:

mkfs.ext2 /dev/sdc2

on a 1.8t partition and it took nearly 8 hours.

I then copied 14G over to it and that took 2hours. 

Does this sound normal for this drive?  I know it's only 5400 rpm, but I am using this as a backup drive and from the reviews I've read thought the performance would be fine.

I need to determine if this is faulty or just a bad spec'd drive.  Any help appreciated.

Even if the test comes up clean, I'd note that amount of time it took to run and see if you can get Samsung to RMA/Exchange it anyway. There's definitely something wrong with that drive, taking that long. It is always easier to just get an exchange than try to run some software that supposedly fixes the issue... Honestly I'd rather have a clean disk than one WS-X45-SUP7-E   that was damaged and may just get worse.

Cisco 2811 Configuring a HWIC-3G-CDMA-S

I currently have a Cisco 2811 with a Bonded Dual HWIC-1T 1, we have a full IP block of  xxx.xxx.xxx.1 - 254

Recently the hard line went out and our out of state warehouse lost access and couldn't put in orders. The warehouse uses a unix server that has our server IP hard coded. Lets say xxx.xxx.xxx.120. The warehouse enters orders via scan guns and it comes directly into our server via that IP. They cannot change it easily. So it always needs to be the same, the failover needs to be on the router.

Obvously when the hard line goes down they can no longer get in.

The boss upstairs decided that any loss of service was unacceptable so tasked me out to find a solution, after talking to our provider (Sprint) wecame to the conclusion that we needed a wireless backup.

They say this wireless backup will allow the warehouse to communicate with our xxx.xxx.xxx.120 server in the event of a T1 hard line failure. I still don't understand how, but they say it will

However, they are giving me the brushoff with configuring the HWIC-3G-CDMA-S card. I ask for a quote on how much to install and configure and they come back with "too expensive" $1500 or more, call a third party. It's almost as if they are in cahoots with a thirdy party or something. I mean, it's their service, their equipment, their plan...

My question is, can I configure this myself with help from you guys here?

It's not actually in the 2811 yet so I can't do anything right now but do I need to get a third party inolved?  I configured the Cisco 2811 dual bonded T1 with Experts-Exchange help so I figured I might be able to do the same with the WS-X45-SUP7L-E -S card.

It's very possible that they can accomplish this then, considering that they have full control of the routing.  If they're willing to guarantee it, it sounds like it's worth spending the $1500.  We can help you with configuring *your* end of the 3G connection, but Sprint is going to need to be involved in the routing.  It's probably better to just get them to do all of it fo

Stacking two HWIC-4ESW modules within a cisco 2811 router

I am trying to stack two EHWIC-4ESG  switch modules in my router and I am failing to get inter-VLAN communication on one of my switch ports on the 2nd card.  I have configured two ports as stacking partners and cabled them together with a cat5 cable (not a crossover cable).  I have setup on of the ports on the 2nd HWIC as a access port for vlan 15.  That port is cabled directly to my dell switch and that port is configured as an access port on same vlan. 

interface FastEthernet0/0/0

 no ip address

!

interface FastEthernet0/0/1

 description 14net

 switchport access vlan 14

 no ip address

 duplex full

 speed 100

!

interface FastEthernet0/0/2

 switchport mode trunk

 switchport stacking-partner interface FastEthernet0/1/2

 no ip address

!

interface FastEthernet0/0/3

 description 9net

 switchport access vlan 9

 no ip address

 duplex full

 speed 100

!

interface FastEthernet0/1/0

 switchport access vlan 15

 no ip address

 duplex full

 speed 100

!

interface FastEthernet0/1/1

 no ip address

!

interface FastEthernet0/1/2

 switchport mode trunk

 switchport stacking-partner interface FastEthernet0/0/2

 no ip address

!

interface FastEthernet0/1/3

 no ip address

!

interface Vlan1

 no ip address

!

interface Vlan8

 ip address 192.168.8.2 255.255.255.0

 no ip redirects

 no ip unreachables

 no ip proxy-arp

!

interface Vlan9

 ip address 192.168.9.1 255.255.255.0

 no ip redirects

 no ip unreachables

 no ip proxy-arp

!

interface Vlan14

 ip address 192.168.14.1 255.255.255.0

 no ip redirects

 no ip unreachables

 no ip proxy-arp

!

interface Vlan15

 ip address 192.168.15.1 255.255.255.0

 ip access-group 115 in

 no ip redirects

 no ip unreachables

 no ip proxy-arp

!

no ip forward-protocol nd

no ip http server

ip http authentication local

no ip http secure-server

ip http timeout-policy idle 60 life 86400 requests 10000

!

ip flow-cache timeout active 1

ip flow-export source FastEthernet0/1

ip flow-export version 5

ip flow-export destination 192.168.6.90 9996

!

ip route 0.0.0.0 0.0.0.0 192.168.2.3

ip route 192.168.46.0 255.255.255.0 192.168.6.5

ip route 192.168.47.0 255.255.255.0 192.168.6.5

!

As each VWIC3-1MFT-T1/E1   is a separate L2 domain you need to configure the VLANs on each HWIC.

Cisco router 2901 amber alarm always on

I have a cisco Cisco 2901-V  router amber light is on all the times once its powered on with the cables plugged in or without the cables but the router still not working correctly.

Here's what I have troubleshooted:

1. I have tested the smart Jack by using a loop  back plug and it turned green from red.

2. I have tested from the circuit ID ( biscuit Jack) to the smart Jack and it passed using a loop back plug.

3. I have tested the router by plugging the loop back plug in to the ethwic card T1 port csu/dsu on the router and it turned green but the amber or alarm is still on .

4. I have copied the old configurations from the old cisco router 2901 and paste it into the new router using hyper terminal but the new router still having (al) alarm on.

I have attempted and exhausted every method to figure out why the alarm is always on but no avail. I can only think either hardware or software might be the problem with the new router but not sure.

 I have ordered a brand new cisco router 2901 and it will be here this coming Monday and hopefully someone can share some advice.

 If you do not see any alarms, then the local hardware is probably in good condition. In that case, complete the following steps:

Check the cabling. Ensure that the cable between the interface port and the T1 Service Provider's equipment or T1 terminal equipment is connected correctly. Ensure the cable is connected to the correct ports. Correct the cable connections if necessary.

Check the cable integrity by looking for breaks or other physical abnormalities in the cable. Ensure the pinouts are set correctly. Replace the cable if necessary.

Check the settings at the remote end and verify that they match your port settings.

If the problem persists, contact your service provider.

for T1 lines, if there is signalling issue you will get alarm...as suggested contact your provider?

or provide your OLD and new configurations Cisco2911-V  with IOS you are using..old and new?