Hello Ronny,
CoA will not work with port security btw you probably have to change the
command with something like that:
clear mac address-table dynamic interface Gi1/0/21 vlan 1
If this command work then i will provide a patch.
Regards
Fabrice
Le 2016-07-12 09:15, Ronny Becker a écrit :
Hi,
CoA is enabled :-/
We are using port-security - should that work? Is there any extra
configuration for CoA on the switch?
This is the current config for this switch:
[10.1.199.110]
mode=production
VoIPCDPDetect=N
VoIPDHCPDetect=N
AccessListMap=N
description=TestSwitch
cliPwd=SwitchPw
UrlMap=N
registrationVlan=1200
useCoA=Y
cliUser=biosadmin
defaultVlan=10
deauthMethod=SNMP
type=Cisco::Catalyst_2960
VoIPLLDPDetect=N
isolationVlan=1200
voiceVlan=14
defaultRole=1203
RoleMap=N
REJECTVlan=1200
VoIPEnabled=Y
DienstleisterVlan=21
InternetVlan=120
macDetectionVlan=1200
Thanks for your help!
Regards
Ronny
2016-07-12 14:03 GMT+02:00 Fabrice Durand <[email protected]
<mailto:[email protected]>>:
Hello Ronny,
why don't you use CoA instead of telnet/ssh, 2960-X support it.
Regards
Fabrice
Le 2016-07-12 07:08, Ronny Becker a écrit :
Hi once again,
using some sniffing ... the clear mac address table command is
not available on 2960X Ciscos.
*vttest#.clear mac-address-table interface Gi1/0/21 vlan 1
clear mac-address-table interface Gi1/0/21 vlan 1
^
% Invalid input detected at '^' marker.
*
Is there a way to disable this? Because pf does not set the
linkDown trap - I think because of this error.
Regards
Ronny
2016-07-12 11:59 GMT+02:00 Ronny Becker
<[email protected] <mailto:[email protected]>>:
Hey again,
I switched from SSH to telnet and the same error occurs :-/
Tried to login via cli and telnet works, too.
2016-07-12 11:14 GMT+02:00 Ronny Becker
<[email protected] <mailto:[email protected]>>:
Hey,
packetfence has some problems on connecting to a cisco
2960 device.
The log shows:
Jul 12 11:08:38 pfsetvlan(5) ERROR: ERROR: Can not
connect to switch 10.1.199.110 using SSH
(pf::Switch::Cisco::Catalyst_2950::clearMacAddressTable)
Is there any switch to debug this, to get more
information on this and what the problem is?
I tried to connect to this switch on cli and it works. So
there is no network problem.
Regards
Ronny
------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are
consuming the most bandwidth. Provides multi-vendor support for NetFlow,
J-Flow, sFlow and other flows. Make informed decisions using capacity
planning
reports.http://sdm.link/zohodev2dev
_______________________________________________
PacketFence-users mailing list
[email protected]
<mailto:[email protected]>
https://lists.sourceforge.net/lists/listinfo/packetfence-users
--
Fabrice Durand
[email protected] <mailto:[email protected]> ::+1.514.447.4918
<tel:%2B1.514.447.4918> (x135) ::www.inverse.ca <http://www.inverse.ca>
Inverse inc. :: Leaders behind SOGo (http://www.sogo.nu) and PacketFence
(http://packetfence.org)
------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth
and traffic
patterns at an interface-level. Reveals which users, apps, and
protocols are
consuming the most bandwidth. Provides multi-vendor support for
NetFlow,
J-Flow, sFlow and other flows. Make informed decisions using
capacity planning
reports.http://sdm.link/zohodev2dev
_______________________________________________
PacketFence-users mailing list
[email protected]
<mailto:[email protected]>
https://lists.sourceforge.net/lists/listinfo/packetfence-users
------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are
consuming the most bandwidth. Provides multi-vendor support for NetFlow,
J-Flow, sFlow and other flows. Make informed decisions using capacity planning
reports.http://sdm.link/zohodev2dev
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
--
Fabrice Durand
[email protected] :: +1.514.447.4918 (x135) :: www.inverse.ca
Inverse inc. :: Leaders behind SOGo (http://www.sogo.nu) and PacketFence
(http://packetfence.org)
------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are
consuming the most bandwidth. Provides multi-vendor support for NetFlow,
J-Flow, sFlow and other flows. Make informed decisions using capacity planning
reports.http://sdm.link/zohodev2dev
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
