I know I hit the same issue with that lab. It's tricky due to all the tunneling going on, but first I would research the L2PTGuard function to understand why the port is being shut down. Googling that error message results in two good links in the first 3 hits:
http://www.cisco.com/en/US/tech/tk389/tk621/technologies_tech_note09186a00806cd87b.shtml http://www.cisco.com/en/US/docs/switches/lan/catalyst3550/software/release/12.1_13_ea1/configuration/guide/swtunnel.html#wp1006657 Essentially, an interface with L2PT enabled is receiving a packet that already has gone through the L2PT process (make sure you understand how the port "knows" that). So think through why that's happening and how you can mitigate it. On Tue, Feb 14, 2012 at 9:38 AM, Babacar Diop <[email protected]> wrote: > All, > > I have been on this lab for too log now trying to figure out why my > Q&Q/L2TP tunnel is not working for Task 5.6. Here are my configs for > SW2/SW4. > > =============================================== > Cat2 > ------- > > interface FastEthernet0/19 > switchport access vlan 990 > switchport trunk encapsulation dot1q > switchport trunk allowed vlan 1-11,13-989,991-998,1000-4094 > switchport mode dot1q-tunnel > l2protocol-tunnel cdp > l2protocol-tunnel stp > l2protocol-tunnel vtp > no cdp enable > ! > interface FastEthernet0/20 > switchport trunk encapsulation dot1q > switchport trunk allowed vlan 1-11,13-989,991-998,1000-4094 > switchport mode trunk > ! > interface FastEthernet0/21 > switchport trunk encapsulation dot1q > switchport trunk native vlan 567 > switchport trunk allowed vlan 100,200,300,567 > switchport mode trunk > ! > interface FastEthernet0/22 > switchport trunk encapsulation dot1q > switchport trunk allowed vlan 990 > switchport mode trunk > ! > interface FastEthernet0/23 > switchport trunk encapsulation dot1q > switchport trunk native vlan 567 > switchport trunk allowed vlan none > switchport mode trunk > ! > interface FastEthernet0/24 > switchport trunk encapsulation dot1q > switchport trunk allowed vlan 1-11,13-989,991-998,1000-4094 > switchport mode trunk > > > ============================================================================= > Cat4 > ------- > interface GigabitEthernet1/0/19 > switchport access vlan 990 > switchport trunk encapsulation dot1q > switchport trunk allowed vlan 1-11,13-989,991-998,1000-4094 > switchport mode dot1q-tunnel > l2protocol-tunnel cdp > l2protocol-tunnel stp > l2protocol-tunnel vtp > no cdp enable > ! > interface GigabitEthernet1/0/20 > switchport trunk encapsulation dot1q > switchport trunk allowed vlan 1-11,13-989,991-998,1000-4094 > switchport mode trunk > ! > interface GigabitEthernet1/0/21 > switchport trunk encapsulation dot1q > switchport trunk native vlan 567 > switchport trunk allowed vlan 100,200,300,567 > switchport mode trunk > ! > interface GigabitEthernet1/0/22 > switchport trunk encapsulation dot1q > switchport trunk allowed vlan 990 > switchport mode trunk > ! > interface GigabitEthernet1/0/23 > switchport trunk encapsulation dot1q > switchport trunk allowed vlan 1-11,13-89,991-998,1000-4094 > switchport mode trunk > ! > interface GigabitEthernet1/0/24 > switchport trunk encapsulation dot1q > switchport trunk allowed vlan 1-11,13-665,667-989,991-998,1000-4094 > switchport mode trunk > ===================================================================== > > I have already tried doing this a couple of times, but it still does not > work. I get the error: > > 00:10:58: %PM-4-ERR_DISABLE: l2ptguard error detected on Gi1/0/19, putting > Gi1/0/19 in err-disable state > Cat4#sh int stat > 00:11:00: %LINEPROTO-5-UPDOWN: Line protocol on Interface > GigabitEthernet1/0/19, changed state to down > Cat4#sh int stat > 00:11:01: %LINK-3-UPDOWN: Interface GigabitEthernet1/0/19, changed state to > down > Cat4#sh int status > I am sure you have ran into this issue. > > Thanks for your help. > > Khalifa > _______________________________________________ > For more information regarding industry leading CCIE Lab training, please > visit www.ipexpert.com > > Are you a CCNP or CCIE and looking for a job? Check out > www.PlatinumPlacement.com > > http://onlinestudylist.com/mailman/listinfo/ccie_rs > _______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com http://onlinestudylist.com/mailman/listinfo/ccie_rs
