RE: LACP Problem from Joe Astorino on 2009-06-26 (Ccielab archives 06/2009)

From: Joe Astorino <jastorino_at_ipexpert.com>
Date: Fri, 26 Jun 2009 06:41:36 -0400

Neil,

You have got to have your native VLAN defined on every switch it is used on.
You can't have your native VLAN be a VLAN that does not exist!

Regards,

Joe Astorino
CCIE #24347 (R&S)
Sr. Support Engineer - IPexpert, Inc.
URL: http://www.IPexpert.com

-----Original Message-----
From: nobody_at_groupstudy.com [mailto:nobody_at_groupstudy.com] On Behalf Of
Clark, Neil (ACP)
Sent: Friday, June 26, 2009 6:27 AM
To: ccielab_at_groupstudy.com
Subject: LACP Problem

Hi Guys,

I am after some advice regarding LACP. We have the below configuration
on our network which works ok but when we remove vlan 4094 from the vlan
database we lose the etherchannels. I am assuming that LACP sends
control packets across the native vlan that is set on the trunk and
removing this from the database affects the channel. We want to remove
the vlan from the database to protect against VLAN hopping and to give
us configuration protection should the trunk fail.

interface Port-channel2
switchport access vlan 4093
switchport trunk encapsulation dot1q
switchport trunk native vlan 4094
switchport trunk allowed vlan 510-516
switchport mode trunk
logging event trunk-status
logging event bundle-status

interface GigabitEthernet1/0/1
switchport access vlan 4093
switchport trunk encapsulation dot1q
switchport trunk native vlan 4094
switchport trunk allowed vlan 510-516
switchport mode trunk
logging event trunk-status
logging event status
speed 1000
duplex full
no cdp enable
channel-group 2 mode active
!
interface GigabitEthernet1/0/2
switchport access vlan 4093
switchport trunk encapsulation dot1q
switchport trunk native vlan 4094
switchport trunk allowed vlan 510-516
switchport mode trunk
logging event trunk-status
logging event status
speed 1000
duplex full
no cdp enable
channel-group 2 mode active
!
interface GigabitEthernet1/0/3
switchport access vlan 4093
switchport trunk encapsulation dot1q
switchport trunk native vlan 4094
switchport trunk allowed vlan 510-516
switchport mode trunk
logging event trunk-status
logging event status
speed 1000
duplex full
no cdp enable
channel-group 2 mode active
!
interface GigabitEthernet1/0/4
switchport access vlan 4093
switchport trunk encapsulation dot1q
switchport trunk native vlan 4094
switchport trunk allowed vlan 510-516
switchport mode trunk
logging event trunk-status
logging event status
speed 1000
duplex full
no cdp enable
channel-group 2 mode active

This configuration is mirrored at the other end, all works fine until I
remove vlan 4094 from the vlan database.

Any help would be appreciated.

Cheers

Neil
Received on Fri Jun 26 2009 - 06:41:36 ART

This archive was generated by hypermail 2.2.0 : Wed Jul 01 2009 - 20:02:37 ART