Re: Extended Ranged VLAN

From: Sadiq Yakasai <sadiqtanko_at_gmail.com>
Date: Wed, 1 Dec 2010 11:51:03 +0000

More to what Dale and Michel have mentioned:

When you attempt to create these VLANs (extended), in VTP mode
Client/Server, the switch wont just let you.

More below:

Rack1SW1#
Rack1SW1#
Rack1SW1#sh vtp status
VTP Version : running VTP1 (VTP2 capable)
Configuration Revision : 2
Maximum VLANs supported locally : 1005
Number of existing VLANs : 33
VTP Operating Mode : Server
VTP Domain Name : CCIE_SECURITY
VTP Pruning Mode : Disabled
VTP V2 Mode : Disabled
VTP Traps Generation : Disabled
MD5 digest : 0x6B 0x7B 0xAF 0xE9 0x07 0xEC 0xE4 0x41
Configuration last modified by 183.1.37.7 at 3-3-93 17:22:49
Local updater ID is 183.1.37.7 on interface Vl37 (lowest numbered VLAN
interface found)
Rack1SW1#
Rack1SW1#
Rack1SW1#
Rack1SW1#sh vlan b

VLAN Name Status Ports
---- -------------------------------- ---------
-------------------------------
1 default active Fa0/3, Fa0/7, Fa0/8, Fa0/9
                                                Fa0/12, Fa0/14, Fa0/16,
Fa0/17
                                                Fa0/18, Fa0/19, Fa0/21,
Fa0/22
                                                Gi0/1, Gi0/2
2 VLAN0002 active Fa0/2, Fa0/20
4 VLAN0004 active
5 VLAN0005 active Fa0/5
8 VLAN0008 active
10 VLAN0010 active
11 VLAN0011 active
12 VLAN0012 active
20 VLAN0020 active
30 AUTH-VLAN-30 active
33 VLAN0033 active
34 VLAN0034 active
37 VLAN0037 active
41 VLAN0041 active
46 VLAN0046 active Fa0/4, Fa0/6
50 ASA-FAILOVER-VLAN active
100 VLAN0100 active Fa0/11
101 VLAN0101 active

VLAN Name Status Ports
---- -------------------------------- ---------
-------------------------------
102 VLAN0102 active
110 VLAN0110 active Fa0/1, Fa0/10, Fa0/24
121 VLAN0121 active
122 VLAN0122 active
123 VLAN0123 active
125 VLAN0125 active
126 VLAN0126 active
200 VLAN0200 active
201 VLAN0201 active
255 VLAN0255 active Fa0/13, Fa0/15
600 VLAN0600 active
1002 fddi-default act/unsup
1003 token-ring-default act/unsup
1004 fddinet-default act/unsup
1005 trnet-default act/unsup
Rack1SW1#
Rack1SW1#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Rack1SW1(config)#vlan 4000
Rack1SW1(config-vlan)#exit
% Failed to create VLANs 4000
Extended VLAN(s) not allowed in current VTP mode.
%Failed to commit extended VLAN(s) changes.

Rack1SW1(config)#
*Mar 19 17:12:34.831: %SW_VLAN-4-VLAN_CREATE_FAIL: Failed to create VLANs
4000: extended VLAN(s) not allowed in current VTP mode
Rack1SW1(config)#
Rack1SW1(config)#do sh vlan b

VLAN Name Status Ports
---- -------------------------------- ---------
-------------------------------
1 default active Fa0/3, Fa0/7, Fa0/8, Fa0/9
                                                Fa0/12, Fa0/14, Fa0/16,
Fa0/17
                                                Fa0/18, Fa0/19, Fa0/21,
Fa0/22
                                                Gi0/1, Gi0/2
2 VLAN0002 active Fa0/2, Fa0/20
4 VLAN0004 active
5 VLAN0005 active Fa0/5
8 VLAN0008 active
10 VLAN0010 active
11 VLAN0011 active
12 VLAN0012 active
20 VLAN0020 active
30 AUTH-VLAN-30 active
33 VLAN0033 active
34 VLAN0034 active
37 VLAN0037 active
41 VLAN0041 active
46 VLAN0046 active Fa0/4, Fa0/6
50 ASA-FAILOVER-VLAN active
100 VLAN0100 active Fa0/11

VLAN Name Status Ports
---- -------------------------------- ---------
-------------------------------
101 VLAN0101 active
102 VLAN0102 active
110 VLAN0110 active Fa0/1, Fa0/10, Fa0/24
121 VLAN0121 active
122 VLAN0122 active
123 VLAN0123 active
125 VLAN0125 active
126 VLAN0126 active
200 VLAN0200 active
201 VLAN0201 active
255 VLAN0255 active Fa0/13, Fa0/15
600 VLAN0600 active
1002 fddi-default act/unsup
1003 token-ring-default act/unsup
1004 fddinet-default act/unsup
1005 trnet-default act/unsup
Rack1SW1(config)#
Rack1SW1(config)#
Rack1SW1(config)#
Rack1SW1(config)#vtp mode tra
Rack1SW1(config)#vtp mode transparent
Setting device to VTP TRANSPARENT mode.
Rack1SW1(config)#vlan 4000
Rack1SW1(config-vlan)#exit
Rack1SW1(config)#
Rack1SW1(config)#do sh vlan b

VLAN Name Status Ports
---- -------------------------------- ---------
-------------------------------
1 default active Fa0/3, Fa0/7, Fa0/8, Fa0/9
                                                Fa0/12, Fa0/14, Fa0/16,
Fa0/17
                                                Fa0/18, Fa0/19, Fa0/21,
Fa0/22
                                                Gi0/1, Gi0/2
2 VLAN0002 active Fa0/2, Fa0/20
4 VLAN0004 active
5 VLAN0005 active Fa0/5
8 VLAN0008 active
10 VLAN0010 active
11 VLAN0011 active
12 VLAN0012 active
20 VLAN0020 active
30 AUTH-VLAN-30 active
33 VLAN0033 active
34 VLAN0034 active
37 VLAN0037 active
41 VLAN0041 active
46 VLAN0046 active Fa0/4, Fa0/6
50 ASA-FAILOVER-VLAN active
100 VLAN0100 active Fa0/11

VLAN Name Status Ports
---- -------------------------------- ---------
-------------------------------
101 VLAN0101 active
102 VLAN0102 active
110 VLAN0110 active Fa0/1, Fa0/10, Fa0/24
121 VLAN0121 active
122 VLAN0122 active
123 VLAN0123 active
125 VLAN0125 active
126 VLAN0126 active
200 VLAN0200 active
201 VLAN0201 active
255 VLAN0255 active Fa0/13, Fa0/15
600 VLAN0600 active
1002 fddi-default act/unsup
1003 token-ring-default act/unsup
1004 fddinet-default act/unsup
1005 trnet-default act/unsup
4000 VLAN4000 active
Rack1SW1(config)#
Rack1SW1(config)#
Rack1SW1(config)#
Rack1SW1(config)#
Rack1SW1(config)#vtp mode ser
Rack1SW1(config)#vtp mode server
Device mode cannot be VTP SERVER because extended VLAN(s) exist
Rack1SW1(config)#no vlan 4000
Rack1SW1(config)#vtp mode server
Setting device to VTP SERVER mode
Rack1SW1(config)#

On Wed, Dec 1, 2010 at 10:37 AM, Michel Grossenbacher <pashtuk_at_gmail.com>wrote:

> Heya
> Just a little thing to add here. I don't think you can add extended VLANs
> while the switch is in VTP Server mode. Dont know about VTPv3 but pretty
> sure not on v2.
> To use extended VLANs the Switch has to be in VTP Transparent mode, at
> least
> with v1 and v2.
> regards
>
> Michel
>
> On 1 December 2010 10:42, Dale Shaw <dale.shaw_at_gmail.com> wrote:
>
> > Hi,
> >
> > VTP doesn't support extended range VLAN IDs* so even if the switch is
> > in Client or Server mode, extended range VLANs must be defined
> > manually.
> >
> > The VLAN definitions appear in the running config like they do in
> > Transparent mode.
> >
> > The definitions are saved in NVRAM so they are persistent through
> reloads.
> >
> > It is incorrect to say that extended range VLAN definitions appear in
> > the running config only when in VTP Transparent mode.
> >
> > * I vaguely recall VTPv3 supports them but you should verify.
> >
> > Cheers
> > Dale
> >
> > On Wednesday, December 1, 2010, Faisal Ilyas <faisal.learning_at_gmail.com>
> > wrote:
> > > Salam,
> > >
> > > I have a problem in understanding as i dont have the real lab with
> me...
> > i
> > > have read in the book that Extended-ranged VLANs stored in running
> config
> > > only when a switch is in transparent mode, i am unable to get it as if
> we
> > > restart the switch all the extended vlans will be gone and we have to
> > > recreate them ???
> > >
> > >
> > >
> > >
> > > --
> > > Regards,
> > > M. Faisal.
> > >
> > >
> > > Blogs and organic groups at http://www.ccie.net
> > >
> > > _______________________________________________________________________
> > > Subscription information may be found at:
> > > http://www.groupstudy.com/list/CCIELab.html
> >
> >
> > Blogs and organic groups at http://www.ccie.net
> >
> > _______________________________________________________________________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
>
>
>
>
>
>
> 

-- 
CCIEx2 (R&S|Sec) #19963
Blogs and organic groups at http://www.ccie.net
Received on Wed Dec 01 2010 - 11:51:03 ART

This archive was generated by hypermail 2.2.0 : Sat Jan 01 2011 - 09:37:49 ART