NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
GSM7328FS 7.3.1.7 losing L3 vlan interfaces?
Hello all, and thank you all for the help you've provided me in the past just by searching / reading your posts, especially advantagecom.
I have a star topology with a GSM7328FS at the core feeding 20 FSM7352S stacks, all running 7.3.1.7. Until recently, we had one L2 subnet, no vlans, and were using a PIX515e as our router. We have since set up 3 vlans with L3 routing interfaces on the core switch and had that switch take over as the router, then routing to the PIX. Prior to the vlans, we had no issues ever, save for the occasional line card or power supply failure. Since adding the vlans, we have been down at least once a week with symptoms including L3 interface high ping times or complete unavailability. At that point, all the L2 stuff seems okay, everything still talks to everything else, with normal ping times, but no routing is happening at all, so no internet, no vpn tunnels etc...
I have checked and verified no error packets, 590 out of 1664 MAC addys known, L3 interfaces do show as present on the switch even when routing has stopped.
What I would like to know is:
Is anyone seeing this behaviour on 7.3.1.7?
Is there something I should check that might affect only the L3 interfaces?
If anyone has experienced something similar, did installation of an 8 series firmware help or hurt the issue?
Thanks for your time.
Aaron
I have a star topology with a GSM7328FS at the core feeding 20 FSM7352S stacks, all running 7.3.1.7. Until recently, we had one L2 subnet, no vlans, and were using a PIX515e as our router. We have since set up 3 vlans with L3 routing interfaces on the core switch and had that switch take over as the router, then routing to the PIX. Prior to the vlans, we had no issues ever, save for the occasional line card or power supply failure. Since adding the vlans, we have been down at least once a week with symptoms including L3 interface high ping times or complete unavailability. At that point, all the L2 stuff seems okay, everything still talks to everything else, with normal ping times, but no routing is happening at all, so no internet, no vpn tunnels etc...
I have checked and verified no error packets, 590 out of 1664 MAC addys known, L3 interfaces do show as present on the switch even when routing has stopped.
What I would like to know is:
Is anyone seeing this behaviour on 7.3.1.7?
Is there something I should check that might affect only the L3 interfaces?
If anyone has experienced something similar, did installation of an 8 series firmware help or hurt the issue?
Thanks for your time.
Aaron
5 Replies
- What do you show in your logs around the time of the failure?
- I'm sorry I haven't been back in a bit...
The switch has been stable for the last 10 days or so.
As such, I have not yet had a chance to upload logs while the L3 interfaces were unavailable.
I will reply if / when this occurs again with the output of the tech support logs.
If I should upload a different log / output, please let me know.
Thank you. - So far I have been running fw 8.0.3.15 on that switch with no loss of vlan routing so far.... might be worth upgrading to this level of firmware. I do recall a bug in v7 with what you describe.
- Here's my config. I just set 5 additional ports to tagging for vlan 10 last night, and it has been up and down all day. Please let me know if anyone sees anything questionable with the config.
Thank you.
set prompt "GSM7328FS"
network protocol none
vlan database
vlan 10
vlan 252
vlan name 252 elan
vlan 253
vlan name 253 tlan
vlan routing 252
vlan routing 10
vlan routing 253
exit
configure
sntp client mode unicast
! sntp server status is active
sntp server time-d.netgear.com
stack
exit
logging buffered
slot 1/0 5
set slot power 1/0
no set slot disable 1/0
ip routing
ip route 0.0.0.0 0.0.0.0 192.10.20.21
ip route 192.168.247.0 255.255.255.0 192.10.80.63
arp cachesize 1664
lineconfig
exit
spanning-tree configuration name 00-1F-33-FD-85-71
port-channel NC_to_Core
interface 1/0/19
addport 0/1/1
exit
interface 1/0/20
addport 0/1/1
exit
snmp-server sysname "SFP_Switch1"
snmp-server location "Phone Room"
snmp-server contact "xxxxxx"
router ospf
router-id 192.168.252.254
exit
router rip
exit
classofservice dot1p-mapping 6 3
classofservice dot1p-mapping 7 3
no classofservice trust
classofservice ip-dscp-mapping 48 3
classofservice ip-dscp-mapping 49 3
classofservice ip-dscp-mapping 50 3
classofservice ip-dscp-mapping 51 3
classofservice ip-dscp-mapping 52 3
classofservice ip-dscp-mapping 53 3
classofservice ip-dscp-mapping 54 3
classofservice ip-dscp-mapping 55 3
classofservice ip-dscp-mapping 56 3
classofservice ip-dscp-mapping 57 3
classofservice ip-dscp-mapping 58 3
classofservice ip-dscp-mapping 59 3
classofservice ip-dscp-mapping 60 3
classofservice ip-dscp-mapping 61 3
classofservice ip-dscp-mapping 62 3
classofservice ip-dscp-mapping 63 3
classofservice ip-precedence-mapping 6 3
classofservice ip-precedence-mapping 7 3
ip name-server 192.10.10.5 192.10.10.110
interface 1/0/1
description 'xxxxxx'
vlan pvid 10
vlan participation exclude 1
vlan participation include 10
vlan tagging 10
vlan participation include 252
vlan tagging 252
vlan participation include 253
vlan tagging 253
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/2
description 'xxxxxx'
vlan pvid 10
vlan participation exclude 1
vlan participation include 10
vlan tagging 10
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/3
description 'xxxxxx'
vlan pvid 10
vlan participation exclude 1
vlan participation include 10
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/4
description 'xxxxxx'
vlan pvid 10
vlan participation exclude 1
vlan participation include 10
vlan tagging 10
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/5
description 'Network Closet Access Stack'
vlan pvid 10
vlan participation exclude 1
vlan participation include 10
vlan tagging 10
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/6
description 'xxxxxx'
vlan pvid 10
vlan participation exclude 1
vlan participation include 10
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/7
description 'xxxxxx'
vlan pvid 10
vlan participation exclude 1
vlan participation include 10
vlan tagging 10
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/8
description 'xxxxxx'
vlan pvid 10
vlan participation exclude 1
vlan participation include 10
vlan tagging 10
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/9
description 'xxxxxx'
vlan pvid 10
vlan participation exclude 1
vlan participation include 10
vlan tagging 10
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/10
description 'xxxxxx'
vlan pvid 10
vlan participation exclude 1
vlan participation include 10
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/11
description 'xxxxxx'
vlan pvid 10
vlan participation exclude 1
vlan participation include 10
vlan tagging 10
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/12
description 'xxxxxx'
vlan pvid 253
vlan participation exclude 1
vlan participation include 253
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/13
description 'xxxxxx'
vlan pvid 10
vlan participation exclude 1
vlan participation include 10
vlan tagging 10
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/14
description 'xxxxxx'
vlan pvid 253
vlan participation exclude 1
vlan participation include 253
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/15
description 'xxxxxx'
vlan pvid 10
vlan participation exclude 1
vlan participation include 10
vlan tagging 10
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/16
description 'xxxxxx'
vlan pvid 253
vlan participation exclude 1
vlan participation include 253
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/17
vlan pvid 10
vlan participation exclude 1
vlan participation include 10
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/18
description 'xxxxxx'
vlan pvid 253
vlan participation exclude 1
vlan participation include 253
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/19
description 'LAG1'
vlan pvid 10
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/20
description 'LAG2'
vlan pvid 10
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/21
description 'Nortel elan vlan252'
vlan pvid 10
vlan participation exclude 1
vlan participation include 10
vlan tagging 10
vlan participation include 252
vlan tagging 252
vlan participation include 253
vlan tagging 253
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/22
description 'Phone Room 48port switch'
vlan pvid 10
vlan participation exclude 1
vlan participation include 10
vlan tagging 10
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/23
vlan pvid 10
vlan participation exclude 1
vlan participation include 10
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/24
vlan pvid 10
vlan participation exclude 1
vlan participation include 10
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/25
vlan pvid 10
vlan participation exclude 1
vlan participation include 10
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/26
vlan pvid 10
vlan participation exclude 1
vlan participation include 10
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/27
vlan pvid 10
vlan participation exclude 1
vlan participation include 10
no lldp transmit
no lldp receive
no lldp med
exit
interface 1/0/28
vlan pvid 10
vlan participation exclude 1
vlan participation include 10
no lldp transmit
no lldp receive
no lldp med
exit
interface lag 1
description 'NC Distribution 2Gb to Core SFP'
vlan pvid 10
vlan participation exclude 1
vlan participation include 10
vlan tagging 10
exit
interface vlan 252
routing
ip address 192.168.252.254 255.255.255.0
ip ospf
ip rip
exit
interface vlan 10
routing
ip address 192.10.20.20 255.255.0.0
exit
interface vlan 253
routing
ip address 192.168.253.254 255.255.255.0
ip ospf
ip rip
exit
exit - Since yesterday I have installed our backup GSM7328FS with FW 8.0.3.25 and connected it to the existing (FW 7.3.1.7) GSM7328FS on port 24 on both switches.
The new switch was factory defaulted, brought up and configured from console. I changed the l3 vlan 10 IP address on the old switch, and set the new switch to that same gateway IP. It is doing better, but still has issues.
All this switch is doing is providing the l3 gateway address for vlan 10, which about 400 machines use. I am showing about 3mb/s down and 1mb/s up on the internet router upstream from this switch. My pings (from a machine plugged in port 23 of the new GSM7328FS) to the l3 interface are inconsistent, ranging from 1ms to 100's and dropouts. The ping from the same machine through to www.yahoo.com range from 8ms to 30's and 40's but do not drop out.
show process CPU has indicated an average CPU utilization of 14% over 5 minutes on the switch.
This switch is factory default plus vlan 10 l2 and l3 setup with two ports (1/0/23, 1/0/24) setup for untagged vlan 10 pvid 10 and one port (1/0/21) setup for port mirroring 1/0/24 (uplink to old switch).
If someone has some ideas or questions about the config, please let me know.
The old core switch has hardly stable on l3, but had been relatively trouble free for almost two months. Wednesday night we started changing downstream switches from untagged vlan 10 uplinks to the core to tagged, and that is when this all started. I could go back and untag all those downstream switches, but we really need this config to work to be able to properly trunk wireless to our APs.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
