Roads IPv4 SG300-10 bug

Hello together

I bought the SG300-10 Switch a few days ago and updated to the 1.3.0.59 firmware, but I think that there is a bug in the firmware.

If I go to IPv4 'Configuration IP' roads' in Mode L3, nothing is displayed. In the log file, I see that:

2147477311 2013 Mar-16 09:51:34 Error % HTTP_HTTPS-E-DIAGNOSTICS: ERROR - in tag, can not find the rlInetRoutingDistanceTable table in the MIB.      
2147477518 2013 14-Mar-22:39:22 Error % HTTP_HTTPS-E-DIAGNOSTICS: ERROR - in the tag, can not find the rlInetRoutingDistanceTable of the table in the MIB, aggregated (1)

The switch reset does not help.

Someone at - it the same problem?

Thanks for help.

Hi Ephraim, this is a known bug and should be fixed in the next update 1.3.0.62. I can't give an ETA for the release of this software. However, if it is an urgent matter, please contact helpdesk small business asking an escalation level 2 team and asking the firmware.

-Tom
Please mark replied messages useful

Tags: Cisco Support

Similar Questions

  • Cannot create the IPv4 Interface on switch SG300-20 entries

    It is a brand new switch, mode of L3, and I am connected to port 5. By default, all ports are VLAN1 (management) defined as the PVID and are defined in trunk mode. I can connect without problems, and nothing else is connected to the switch.

    I did a master reset (via the web interface and button reset for 20 seconds) several times, and every time I try to assign an IP address to a VIRTUAL LAN on the page located at IP Configuration > GPI and Interfaces > Interface IPv4, I lose connectivity to the switch and it should be reset.

    I make no changes to the VLAN1 (management) or the port I am logged in, but the problem persists. My switch is bad? Thanks in advance.

    Hello Terry,

    It is done, your switch has several types of IP addresses,

    -static IP address (you set this)

    -dhcp (a server or router that sets)

    -default (if neither of the other is defined) 192.168.1.254.

    If the sg300 or 500 device has the default IP address and add another IP interface (on a virtual LAN or on a port), it will determine that static or dhcp is the management interface and the address 'by default' won't work any more.

    The workaround for this is:

    When you configure layer 3 routing on a sg300 or switch 500, once the switch is in mode l3, you must:

    1 - give each VLAN interface a static IP from vlan1.  This can be the same as the default 192.168.1.254, but I recommend to choose another address where you decide to add another switch in the future.

    2 - before you set an IP address on the new VLAN, assign a port of access to the new vlan (so you can move your desktop to this vlan) management if necessary.  management of VLAN--> belonging to a vlan port.  Once you assign the ip address and your management interface goes far, move your pc to port on the new virtual local network, give it a static and reconnect to the new IP address.

    3. use the cable from the console and CLI to configure the interface vlan, as the console port does not go down, or lose connectivity when configuring a VLAN.

    Hope this helps,

    Dan

  • SG300 IP ACL link bug

    Hi all

    Installation of 2 switches SG300 (latest firmware) in a small network gave me the following challenge:

    How can I link an IP ACL to VLAN instead of a physical port?

    The situation:

    -1 Central SG300-20 trunk of layer 3 city to L2 SG300-10.

    -1 remote SG300-10 in layer 2, including the L3 SG300-20 trunk.

    -Several VLANS on both switches, including their IVR on the L3 and InterVLAN routing on the switch switch L3 activated.

    -Would be nice if the traffic between them VLAN in some way may be limited hollow ACL.

    Problems of the ACL to the ports linking instead of VLAN:

    -Port membership regarding the different VLAN is very non-bobines, so the use of 'interface' is not possible to 'mirror' of the administration of the ACL to the administration of VLAN. Moving ports through VLANss creates an ACL administration "gene."

    -More important; What remote ports on layer 2 switch (the other side of the trunk)? How can I link several ACL on the L3 switch to the ports of the physical L2 switch different? Hollow InterVLAN traffic of the trunk should also be limited by the ACL on the SG300-20 L3...

    How can I accomplish this?

    Rommel salvation

    How can I link an IP ACL to VLAN instead of a physical port?

    It is not supported at this time, the link is for LAG and port only, not a virtual interface.

    -Would be nice if the traffic between them VLAN in some way may be limited hollow ACL.

    The ACL works for traffic of penetration which can only be descriminated by several different methods. As a SVI is the interface VLAN, you can distinguish the subnet or specific IP addresses contained in actually making the access rules for the VLAN even if she is not related to the virtual interface.

    -More important; What remote ports on layer 2 switch (the other side of the trunk)? How can I link several ACL on the L3 switch to the ports of the physical L2 switch different? Hollow InterVLAN traffic of the trunk should also be limited by the ACL on the SG300-20 L3...

    The same traffic VLAN, a layer 2 device could tip locally. Communication inter - VLAN traffic to be sent to the routed interface. As traffic is only limited penetration on the SX300 I do not see a complication, as a request of 2 connected device layer would be entered in the port of switch Sx300.

    The only thing that I can determine the post, is that you can have a hell of a large ACL according to restrictive how you want to be with specific host connections. Just keep it minus 512 ACE since that's what the switch takes care of.

    -Tom
    Please mark replied messages useful

  • The SG300 1.3.0.59 firmware bug

    Hi all, I am having trouble with this firmware in a SG300-28 switch. In fact the DHCP server, a new feature in this version of firmware, does not work properly. DHCP static public reservations do not work: customer ID and MAC address are not recognized properly, and the DHCP server assigns the first free IP address in the pool, rather than reserved.

    If Cisco engineers reading this, plese fix.

    The issue is well documented in this thread, and it is present in the 500 series too:

    https://supportforums.Cisco.com/message/3941468#3941468

    Any help is appreciated.

    Thanks, Andrea

    Hello Andrea, the command is available on the global config

    Configure the terminal

    The dhcp server IP

    If the command is not available, it is because you do not use 1.3.0.59 at least. I'm under 1.3.0.59 and 1.3.0.62 and two software images have the command available.

    -Tom
    Please mark replied messages useful

  • Why Mozilla Firefox is not admit profile bug, about 'plugin is not responding' Shockwave problem?

    I am a long time user, more than 10 years, Firefox and Netscape before that. This is the first time I've ever seen "plugin is not responding", and even less for Shockwave. I followed subject suggested solution. Checked plugins updated and reinstalled several even if they were up-to-date. Even reinstalled Firefox. Performed a full scan of Norton on my system (totally transparent). Finally. On the forum to help ADOBE, not on Mozilla (!), someone said blowing their profile and starting again solved the problem. This is a drastic measure, because it nukes all saved Firefox bookmark and setting. BUT THIS MARKET. Dear Mozilla sneaky: you have a bug in PROFILE. Please, admit it and fix it.

    Of course, first try the less disruptive mechanisms. But if they don't work, as they DID NOT for me:
    (1) rename/move your profile truncated (courtesy of a behaviour Firefox bad unknown or ignored) then that is the road - in other words, actually deleted. You can also simply delete the profile.
    (2) then create a new profile
    (3) Optional: If you have saved the wrong profile, try to send it to Mozilla so that they can find and fix their bug

    To locate the file bad profile, follow the instructions in https://support.mozilla.org/en-US/kb/profiles-where-firefox-stores-user-data?redirectlocale=en-US & redirectslug = Profiles

    Note from Moderator: ' Rename/move your profile' is not the same as deleting what you always have access to files in the particular profile of things like bookmarks. In addition, if you want to rename or move your profile and automatically create a new default profile, the file to rename or move is the Firefox folder that contains the file profiles.ini. See article profiles for its location.

  • Wifi MacBook - ipv4 vs ipv6 issues

    Hello

    I use an Airport Extreme edition last, software 7.7.3, to distribute the connection of my Internet service provider. The router DHCP, Airport Extreme is only a wifi router.

    I have many devices connected with happiness at the Airport (iPhone, printers, my macbook), however my friend's macbook 13' sometimes fail to connect to the internet. I can't know for sure it connects to the airport at all, but it seems because it has an IPv6 address. I read somewhere on a forum that it could be related to ipv6. And indeed when I change the settings of 'Link-local' only airport, it connects in IPv4 and it works like a charm.

    No idea if it's a bug of macOS or bug Apple Airport will address?

    Thank you.

    This is a bug and there long... Set the link-local Mac only for IPv6 on the wireless or ethernet, depending on which is used.

    Auto which is by default gets it wrong more often.

  • Safari Sidebar Bug (?)

    Hi all

    Recently, whenever I open Safari, a new window or tab, the sidebar on the left (with bookmarks/reading list/subscriptions in there) is now automatically and it became very annoying it scroll of the road every time!

    is this a bug or have I changed a setting somewhere that I didn't know that?

    Thank you

    Safari Version 9.0.1

    If you haven't already done so, try to go to the display of Safari menu and click on "Hide Sidebar."

  • New bug password and restrictions of ATV

    Bugs in the new Apple TV are driving me crazy! I got the 2nd Gen (a first for black) because they were released and I love it. Since my children are pretty old to analyze and find money for distance, I had enabled restriction. When I implemented the new ATV I activated just like my other two ATV last gen. Immediately, I noticed a problem with the new system. The old ATV would encourage the code 4 digit (which is defined during activation of the restrictions) whenever I would try to play the media above the permitted level or make a new purchase. It is a quick and simple solution that prevented kid "accidental" purchases or posting unauthorized action films by children. The code was particularly easy to enter when using the Remote app on any of my iOS devices.

    The new ATV however is constantly prompting me for my full iTunes connection whenever I play all media, same appreciation G movies I already own. The worst thing is that because the existing Remote app is not supported by the new ATV, I have to enter my really long iTunes password and complex by using the new remote control and the line of alphabet silly interface. I tried to disable the restrictions affecting everything back any permit setting but she always asking my password whenever something is played. The password is set to never ask, but it seems not to matter. The only way I could solve the problem is to reset the ATV and set it up again from scratch. Of course, this resulted quickly in several 'accidental' purchases on the road to Crossy.

    I hope that a new remote iOS app is coming soon and that they will in the company touchID. With the families of sharing and permission requests that can be sent to the parent's phone, it would be great if the same might work for mountain BIKING. I LOVE apple products and the ATV but it is a deal breaker for me.

    It is a bad user experience I've resorted to dive into my old (3rd generation) ATV up to what an update is published.

    Being a community from user to user, Apple will not read your comments, but if you have any suggestions that you think might improve Apple TV you can send your feedback here at Apple

  • The support of SG300 - 10 TEAR?

    Hello!

    In the documentation for the CLI of the SG 300 series, it shows sh ip rip road as a command. I installed the latest firmware and this command is no longer available. Support of the SG300 series TEAR?

    Thank you!

    Richard S.

    Hello Richard,.

    My name is David Aguilar, and I am an engineer with Cisco Small Business Center. Thanks for writing.

    The SG300 series can't RIP. Only static routes (up to 32) are supported. However, models of SG500X support the dynamic routing RIP version 2 Protocol.

    Regarding the new firmware Sx300, he added a number of security features impressive including inspection IP ARP, DHCP snooping and encryption of SSD.

    All the best,

    -David Aguilar

    Cisco Small Business Support Center

  • No internet with SG300 and RV320

    Hello

    Kind of a number is double.

    I currently have a SG300 L3 mode and a RV320 router. My original thought was to have the L2 switch and have the handle RV320 routing, DHCP, and DNS. I was told by some of my colleagues that I should have the L3 switch manages the Routing and use the RV320 just at the gates of the internet with firewall/NAT. The problem I have now is, according to the Administrator's guide, the RV320 must be in gateway mode since it will be the device actually connected to the internet... Problem is that ping outside the internet does not work, DNS relay seems to work, but nothing else. How are the packages supposed to get out if the router has not a '. '. 1"address. In addition, one-to-one NAT and PAT is not enabled, is NAT works not at all?

    I put virtual local networks in place in the RV320 and roads seem to be there. What I am doing wrong? I'm about to give up and return to the L2 mode on the switch.

    Also, I had to give the DHCP responsibility towards the SG300 as the RV320 handed himself a default gateway '.» 60"and not the". " 1 "the SG300. What is the problem with that? I want to use RV320 as my DHCP/DNS box, but that seems to be easier said than done.

    SG300:

    VLAN104

    VLAN105

    192.168.4.1

    192.169.5.1

    RV320:

    VLAN104

    VLAN105

    192.168.5.60

    192.168.4.60

    I don't think its possible to do, but maybe cisco can ring if it is possible or not

  • Recommended value for IPv4 FIB AAGR 7600?

    I'm just wondering if there is a "best practices" or widely accepted value inhabitants settled on?

    I understand that I ask a broad question, the best answer is "it depends."
    and each circumstance may have different needs and different values.

    Dilapidated fast from our network:
    IPv6 is enabled but unproductive, but we want the complete picture of IPv6 at year end.  No multicast and not necessary.

    Table full of IPv4, multihomed, and private peering.  Some 75 ASN us with peers.  No multi-path, no plans for her.

    RSP720-3CXL

    We hope to get another 4-5 years from the material, we are no where near capacity from fabric/backplane.  We do VoIP, packets, lower bps higher PPS.

    We are 95% with warnings of threshold.  default value of 512 k

    I saw an exchange of views and people seem to stabilize on 640 k.

    Any consideration is not to use 640 k?

    View orders:

    #show mls cef maximum-routes
    Maximum routes FIB AAGR:
    =======================
    Current: -.
    -------
    IPv4 + MPLS - 512 k (default)
    IPv6 + IP Multicast - 256 k (default)

    #show mls cef su

    Total of roads: 498430
    Unicast IPv4 routes: 496353
    Multicast IPv4 routes: 4
    Routes MPLS: 2049
    Unicast IPv6 routes: 22
    IPv6 multicast routes: 5
    Moe routes: 0

    #

    Use of the FIB AAGR: Total % used used (s)
    72 bit (IPv4, MPLS, MOE) 524288 498420 95%
    144 bits (mcast IP, IPv6) 262144 33 1%

    We settled with the below in 'standard' overall 7600 estate.

    #show mls cef maximum-routes

    Maximum routes FIB AAGR:
    =======================
    Current: -.
    -------
    IPv4 + MPLS - 736 k (default)
    IPv6 - 128 k
    IP Multicast - 16 k

    Use of module FIB AAGR: % Total used used (s)
    4 72 bits (IPv4, MPLS, MOE) 753664 540607 72%
    144 bits (mcast IP, IPv6) 147456 17731 12%

  • VRF Installationavecuneracine road inaccessible NH

    Hello

    I just start dabling in the VRF to GNS3 so forgive me if this is a silly question. My understanding is that roads be installed in the SIDES if the next hop address is inaccessible. I announced a single route in the VRF (from BGP) and installed the road even if the VRF ignores the next hop.

    #show ip route vrf Border1 test

    Routing table: test
    Code: L - local, C - connected, S - static, mobile R - RIP, M-, B - BGP
    D - EIGRP, OSPF, IA - external EIGRP, O - EX - OSPF inter zone
    N1 - type external OSPF NSSA 1, N2 - type external OSPF NSSA 2
    E1 - OSPF external type 1, E2 - external OSPF of type 2
    i - IS - Su - summary IS, L1 - IS - IS level 1, L2 - IS level - 2
    -IS inter area, * - candidate failure, U - static route by user
    o - ODR, P - periodic downloaded route static, H - PNDH, l - LISP
    + - replicated road, % - next hop override

    Gateway of last resort is not set

    10.0.0.0/32 is divided into subnets, subnets 1
    C 10.99.99.1 is directly connected, Loopback9
    B 200.1.1.0/24 [20: 20] via 10.35.1.1, 00:40:12, GigabitEthernet3/0

    #show ip route vrf Border1 test 10.35.1.1

    Routing table: test
    Subnet in the table %

    test definition VRF
    RD 100: 100
    !
    ipv4 address family
    import the unicast ipv4 IMPORT OF GLOBAL - map
    output-address-family

    interface Loopback9
    VRF forwarding test
    10.99.99.1 IP 255.255.255.255

    IP-list of prefixes LEAK VRF seq 5 permit 26 200.1.1.0/24

    IMPORT OF GLOBAL-enabled 10 route map
    address for correspondence prefix LEAK VRF ip-list

    I have a really basic VRF configuration and made no big thing with her. Any ideas on how the VRF can install this road when there isn't a road to the next hop?

    Hello cwhite0013,

    It is true that BGP should not install a route if it has an entry for the next break in the Routing Table.

    Looking at your configuration, I can see the router "flows" in the VRF 'test', the 200.1.1.0/24 road which is originally in the global Routing Table.

    In this case, the router must send traffic to a next break in the global Routing Table. This is the reason for which the router is looking for the jump next 10.35.1.1 not in the VRF 'test', but in the global Routing Table where there should be an entry for it.

    I hope this helps.

  • SG300-52. Prefer to send traffic to the default gateway rather than static route? Network stops if I disable ICMP redirects.

    I have 4 switches, each act as their own with a 26 subnet mask. They have static routes for every other switch. The firewall has a static route to each switch. If I unplug the LAN of the Firewall interface, traffic stops the flow of the switches. If I block the side LAN firewall, ICMP redirects, traffic stalls outside.

    So if you are connected to this switch, say that you pull an ip address of 192.168.122.20. Your front door is the 192.168.122.62 switch. If you try to access a server 192.168.127.142, the SG300 sends your traffic to 192.168.127.254 to get an ICMP redirect, rather than simply to communicate directly with 192.168.127.50.

    My network 'basic' is 192.168.127.0/24 vlan1 and the firewall is 192.168.127.254

    This is the route of one of my switches table (which has 192.168.122.0/26 and ports run on vlan122)

     Maximum Parallel Paths: 1 (1 after reset) IP Forwarding: enabled Codes: > - best, C - connected, S - static S 0.0.0.0/0 [1/1] via 192.168.127.254, 73:48:13, vlan 1 C 192.168.122.0/26 is directly connected, vlan 122 S 192.168.123.0/26 [1/1] via 192.168.127.123, 73:48:13, vlan 1 S 192.168.124.0/26 [1/1] via 192.168.127.124, 73:48:13, vlan 1 S 192.168.125.0/26 [1/1] via 192.168.127.125, 73:48:14, vlan 1 C 192.168.127.0/24 is directly connected, vlan 1

    In any case, what gives? Why the switch would first try to send the stream to the firewall?

    EDIT: Here is the server routing table:

     [email protected]/* */:~$ ip route show default via 192.168.127.254 dev eth0 192.168.122.0/26 via 192.168.127.122 dev eth0 192.168.123.0/26 via 192.168.127.123 dev eth0 192.168.124.0/26 via 192.168.127.124 dev eth0 192.168.125.0/26 via 192.168.127.125 dev eth0 192.168.127.0/24 dev eth0 proto kernel scope link src 192.168.127.142

    Hi Jonathan,.

    I'm sorry. I misunderstood the routing table you want to accomplish. Your concern seems relevant given that the matching rule more will be selected instead of one: page 275 http://www.cisco.com/c/dam/en/us/td/docs/switches/lan/csbms/sf30x_sg30x/...

    ... "When the routing of traffic, the next hop is decided based on the longest match on the prefix (LPM algorithm). A destination IPv4 address might match several routes in the IPv4 static routing Table. The device uses the matching route with the higher, subnet mask that is, the longest match on the prefix. "...

    So go ahead and report it to the support team so the guys can make the laboratory, confirm it and declare additional:

    http://www.Cisco.com/c/en/us/support/Web/TSD-Cisco-small-business-suppor...

    Kind regards

    Aleksandra

  • SG300 combination with Apple AirPort Extreme

    Hello

    I recently bought a SG300 series switch. I want to connect my internet connection in a port of the switch and connect my Apple AirPort Extreme in the switch. So I want that all my other ports on the switch to be put to rout by the airport. Connection Internet and airport to the switch gives you access to the Internet for all wireless clients connected to it. But no switch ports can ping from the airport.

    How can I configure this as simple as possible?

    What I've done so far is to switch the L3 and nothing else. With nothing has changed from the default settings, I was expecting unrestricted access between ports, but appears not to be the case.

    It's my first time, so I expect that it's probably a simple problem.

    I hope someone can point me in the right direction.

    Thank you in advance.

    FR. Lars

    Lars salvation,

    I don't know what is the idea behind connection WAN and LAN to SG300. Is it because you have a single switch, but would need two?

    Also I am not aware how the airport works. Not NAT?

    To add a static route you must navigate Configuration IP--> IP--> Routes IPv4 interfaces and management

    Destination must be 0.0.0.0 IP prefix also 0.0.0.0 if this static route so to access internet.

    Kind regards

    Aleksandra

  • SG300. installation aid

    Hello

    So here is my current setup & I'll type this out better than I can.

    I have a modem from my ISP (1 ethernet port) which is running on DHCP & a Cisco Asa5505 who is doing DHCP for my devices connected to my layer 2 switch the 192.168.1.x subnet & a just cheap WAP do wifi internal.

    I recently bought a SG300 - 10 p that circumstances would require me to connect a 2nd ASA and would need a 2nd port to the outside world for work (what they would give me a WAP & IP phone). Has changed & I currently do not know where to go from here insofar as all snap & Im fairly new to the network.

    I converted the Layer 3 switch and the latest firmware. I have Setup several VLANS on the switch & DHCP for each Vlan.

    192.168.2.0 network PC

    192.168.3.0 network server

    192.168.4.0 network wireless

    192.168.5.0 network Wifi comments

    I have Setup Port 10 as an uplink to the layer 2 switch allow to VLAN 2,3,4. I still need to configure the switch of layer 2 with the information of Vlan, if I can score some ports to get the right IP addresses.

    I have Setup Port 3 as a trunk for Vlan 4 and 5 (I have to configure the WAP more late which is pretty easy).

    Here's where I'm stuck:

    Currently my SG300 - 10 p is configured with an IP address of 192.168.1.x

    It would be more logical to have the ASA as my router connection between the Modem and the SG300 - 10 p of the 192.168.1.x network, or I would be better to have the modem plugged into the SG300 - 10 p then have the ASA on one of the ports? One day, I wish I could use my 5505 so that I can VPN into my network (a ball of wax) quite different for another weekend.

    I would like to have all the networks have access to the Internet.

    I want to limit the wifi network invited to see the other networks other than the Internet.

    I think that covers pretty well and I want to just make sure I get configured right and all connected directions correctly. Any help or suggestions are appreciated. I want to make it as easy as possible with the best solution for scalability if work decided to give me another SAA again.

    Thank you

    Don

    I'd go modem > ASA > SG300. The SG300 should have a default route to the ASA and ASA will need roads for each subnet pointing the SG300 so that he knows how to get back. I hope that helps you in a certain direction.

Maybe you are looking for