CCNP TSHOOT 642-832 :: Layer 2 Troubleshooting

By on May 23, 2011. Posted in .

 

Poor Switch Performance

Most performance issues on switches are related to one of three errors:

  1. Cabling and port problems (layer 1)
  2. Duplex mismatches between switch ports and an attached device
  3. TCAM issues.

Physical layer Troubleshooting Commands

show interface
show interface counters
show interface counters errors

Look for the following errors:

FCS-Err
Usually a cabling issue.

Xmit-Err
The transmission buffers are full.  This is sometimes seen when switching from a fast link to a slower one.

Undersize, Giants
The transmitting NIC may have problems.

Single-Col, Multi-Col, Late-Col, Excess-Col
All of these are collision types, which can point to a duplex mismatch.  Cisco recommends setting all interfaces, switch and server, to auto.
 

Spanning Tree

Spanning Tree Protocol is a loop prevention mechanism to allow redundant Ethernet network connections.  Here is an important summary of how each switch determines Spanning Tree port roles:

1. Each switch periodically transmits BPDUs that include its bridge ID, current root bridge, and cost to that root bridge.  Additionally, each switch starts assuming it is the root bridge.

2. If a switch receives a BPDU from another switch with a different root, it does a comparison.  If the BPDU has a lower advertised root, the switch changes its root to match and recalculates the cost to the new root.  The port that received the BPDU is now the root port – all others become designated ports.

3. If a switch receives two BPDUs with the same root, it then compares costs and uses the port with the lowest cost.  The port with the higher cost is blocked – also called a non-designated port.

To quickly review STP costs, below is a list of link costs based on interface speed.

After the whole process, there will be only one root bridge – with each non-root switch having only one root port.

To see the status of spanning tree, do a show spanning-tree vlan vlan-id.

To view sent/received BPDU information for a switch, do a show spanning-tree interface interface detail.

Broadcast Storms

Broadcasts storms can occur due to Spanning Tree misconfigurations and/or rogue switches being added which closes a loop.  Regardless, a broadcast storm will be obvious when the switch slows way down, becoming unresponsive, and all the links light up solid green.

The CLI may be very slow to respond if you still have remote access to it, so often times to fastest way to fix the problem is to physically begin pulling redundant links.
 

Troubleshooting EtherChannels

EtherChannel issues usually fall into one of three categories:

1. Every port participating in an EtherChannel must have identical speed, duplex, access or trunk settings.  If an EtherChannel isn’t forming, check each port configuration.

2. Both sides of the EtherChannel must be configured as a bundle directly or be using a link aggregation protocol (LACP or PAgP).  If one side is configured as an EtherChannel and the other side is not, look for error-disabled EtherChannel ports on the EtherChannel-enabled switch.

3. If traffic is only flowing over a single link in a bundle, it is likely that the hash algorithm should be adjusted to use different seed values.  Also note that link bundles should be used in even numbered pairs like 2, 4, 8, etc.
 

VLANs

When troubleshooting issues that you suspect are related to VLAN logic, you should first make sure you have tested for physical layer issues like bad cabling, a power failure, or bad switch ports.  Also, check that you are not dealing with an issue with the switch itself – things like software bugs, loops, or ARP problems.

VLAN issues usually come in the form of misconfigured VLANs, improper VTP mode, trunk issues, or native VLAN mismatches. 

Switch Tables

It is important that you understand what show commands display information on what switch tables.  These will come in handy when you are isolating a switching issue.

MAC Address Table (MAC-to-port mapping)

show mac-address

VLAN Assignments (VLAN-to-port mapping)

show vlan

Trunk Assignments

show interface switchport
show interface switchport trunk
show etherchannel

 

Troubleshooting Inter-VLAN Routing

Routing between VLANs can be done on either a router, or a layer 3 switch – but the data plane is different depending on the platform you are using.

Either way, show ip cef displays the CEF forwarding table and show adjacency will show you the layer 2 headers used in forwarding.

Keep in mind that routers always use layer 3 information to pass traffic between ports.  Switches can either use MAC address forwarding (for layer 2 forwarding), SVIs for inter-VLAN routing, or layer 3 routed ports.  The last category, routed ports do not run layer 2 protocols like Spanning Tree – very important.

Last thing to remember – SVIs will only go into down state when all interfaces within that particular VLAN are down.

 

HSRP, VRRP, & GLBP

First hop redundancy protocols allow a layer 2 segment to have two gateway routers for redundancy, while still only showing a single gateway IP and MAC address.

The three FHRPs Cisco supports are HSRP, VRRP, and GLBP.

HSRP is one of the original FHRPs that was developed by Cisco and is proprietary.  One router is active and another is a backup (using HSRP keepalives to maintain connectivity).  HSRP is extremely popular and you should make sure to understand how it works for the TSHOOT exam.  Check out the High-Availability page to learn more.

VRRP is another gateway redundancy protocol that is an open standard and very similar to HSRP.

GLBP is Cisco proprietary; its primary advantage is its ability to automatically load balance between gateway routers.

HSRP

HSRP is the primary FHRP covered on the TSHOOT exam, so let’s go through the basics one more time.

HSRP is configured using the standby command under interface configuration mode.  Routers in the same HSRP group share a common MAC and virtual IP address.  The standby configuration statements define the HSRP group as well as the virtual IP in use.

Each HSRP-enabled router has a default HSRP priority of 100 (remember, highest wins).  If another router joins the group with a higher priority it will still not become the active router unless the preempt command is applied.

An example HSRP configuration could look something like:

Router(config)# interface gig1/1
Router(config-if)# ip address 192.168.1.2
Router(config-if)# standby 4 ip 192.168.1.1
Router(config-if)# standby 4 priority 200
Router(config-if)# standby 4 preempt

To show the current HSRP status, issue either show standby or show standby brief depending on the level of detail you require.

« »

2 Comments

  1. I do not believe GLBP is a standard.
    There is a lot of discussion about this.
    Some of the books say it is, others not.

    Reply

Leave a Comment

Your email address will not be published. Required fields are marked with *.

The CCNP Guide Newsletter

Join thousands of others by signing up for updates, articles, and exam advice delivered to your inbox.

Some Kind Words

Thanks Aaron for the great support. Hope you'll consider writing other guides as well. Now onto studying your updated guides :) Tony

I just wanted to thank you for your notes, they REALLY helped me put the SWITCH topics into perpesctive. 642-813 is as you know quite a difficult exam because it covers such a wide range of areas, and Im happy to say that with the help of your notesSean from Ireland

Thanks so much Aaron, you're a legend. Your exam guides were the best study purchase I made for my CCNP and your customer service is fantastic. Cheers,Shaun

Aaron! You're an incredible human being! thank you so much for putting this together and I am so glad came across your work. I cannot thank you enough for the amount of time and effort you put into organizing all this information. I am planning on writing my CCNP-ROUTE examRamanan

Hi Aaron, I just wanted to let you know that I really enjoyed your study guide for the Switch exam. I used the official certification guide and the foundation learning guide and found your material to be a very good companion to the cisco press books. I passed myNolan

Thanks for compiling the CCNP SWITCH guide. I took the test and passed with an 868. The guide's matter-of-fact presentation made picking up details and nuances very helpful. Kevin

Really liked the design and makeup of the guide. Topics and hints and tips were right on the mark. Very helpful. A job well done and much appreciated!Derek

Hi Aaron Just bought your Routing one. I passed the Switching one 2 days ago. Thanks for these. Your site is really cool! I could’ve bought all 3 at a discount but I think you deserve the money! Well done mate!Jack

I used the guide to pass my CCNP route with flying colors. Now my plan is to use the switch guide. Russell

Wow - this looks just like what i need - much better than buying umpteen cisco books and sifting through them - thanksStephen

Aaron, Thanks heaps for that, found the the download link and was able to get the new version. The guides have been a great help and were probably my greatest resource for passing my switch and route exams. Regards, Darryl

Hi Aaron - I passed the Switch exam thanks to your study guide. It was a difficult test so I had to really prepare. I just purchased your route guide a few days ago. Thanks again, Mark

I sat for the CCNP Switch exam this morning and passed with a pretty high score. The SWITCH guide from your site was a tremendous resource. The labs were especially helpful. I found the exam to be challenging but the questions for the most part were fair.Kevin

Just thought that I'd take some time to write and thank-you for creating the CCNP Switch Guide, I bought the guide 10-days ago as final preparation for my exam which I sat this morning and I passed with 934 largely thanks to the guide!!! The guide has been absolutely

I was searching for good study material to reinforce my reading. I found this site and took the SWITCH test last week and I can say that the guide helps me a lot. Great Material!!! Regards,Jose

Aaron, Just purchased Switch, be back for the others soon. Keep up the great work! BP

Hi, I passed the Route exam yesterday with a score of 965 and I couldn't have done it without the use of your guide. I love the way in which your guide is so exam focussed, it cuts out all of the unnecessary padding that you find in the CiscoChris

Latest From the Blog