- Community Home
- >
- Networking
- >
- Switching and Routing
- >
- Aruba & ProVision-based
- >
- Re: Need to keep resetting port for device to work
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-08-2008 05:10 PM - last edited on тАО06-16-2014 08:07 PM by Lisa198503
тАО10-08-2008 05:10 PM - last edited on тАО06-16-2014 08:07 PM by Lisa198503
Need to keep resetting port for device to work
Hello.
I have a procurve 5406zl. For some strange reason my internet connection keeps dying intermittenly. it is connected to port a2. seems like the firewall and my switch is not playing nicely. the firewall is a sonic wall nsa 2400.
the switch ip is x.x.x.1
the firewall ip is x.x.x.5 (on port a2)
i can ping the firewall once and then afterwards i get a request timed out. its always after the first ping reply, then it stops working. sometimes my internet is still up but i cannot access the firewall. the switch itself can ping the firewall. any ideas? i am thinking its the STP but i am not sure. here is my config
; J8697A Configuration Editor; Created on release #K.13.09
hostname "spm5406"
time timezone -5
time daylight-time-rule Continental-US-and-Canada
console baud-rate 115200
module 1 type J8702A
module 2 type J8702A
interface A2
name "WAN"
speed-duplex auto-1000
exit
ip routing
timesync sntp
sntp unicast
snmp-server community "public" Unrestricted
vlan 1
name "DEFAULT_VLAN"
ip address 192.168.x.x 255.255.255.0
no untagged A1-A24,B1-B24
exit
vlan 3
name "xxx"
untagged A1-A24,B1-B24
ip address 192.168.200.1 255.255.255.0
exit
banner motd "xxx"
sntp server priority 1 192.168.x.x
ip dns domain-name "xxx.com"
ip dns server-address priority 1 198.6.1.2
no ip ssh
ip route 0.0.0.0 0.0.0.0 192.168.x.5
ip route 10.0.0.0 255.255.255.0 192.168.x.x
ip route x.x.x.0 255.255.0.0 192.168.x.x
ip route x.x.x.0 255.255.255.0 192.168.x.x
ip route x.x.x.0 255.255.254.0 192.168.x.x
ip route x.x.x.0 255.255.255.0 192.168.x.x
ip route x.x.x.0 255.255.255.0 192.168.x.x
spanning-tree force-version RSTP-operation
password manager
P.S. This thread has been moved from Switches, Hubs, Modems (Legacy ITRC forum) to ProCurve / ProVision-Based. -HP Forum Moderator
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-08-2008 10:45 PM
тАО10-08-2008 10:45 PM
Re: Need to keep resetting port for device to work
#sh log -a
command print
cenk
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-08-2008 11:11 PM
тАО10-08-2008 11:11 PM
Re: Need to keep resetting port for device to work
>i can ping the firewall once and then
>afterwards i get a request timed out. its
>always after the first ping reply, then it
>stops working
It is not some kind of very hard IDS rule that is blocking the connection when ICMP directed to the fw interface is detected?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-09-2008 08:14 AM
тАО10-09-2008 08:14 AM
Re: Need to keep resetting port for device to work
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-09-2008 08:47 AM
тАО10-09-2008 08:47 AM
Re: Need to keep resetting port for device to work
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-09-2008 09:53 AM
тАО10-09-2008 09:53 AM
Re: Need to keep resetting port for device to work
the firewall mac address and the switch arp table is correct.
now the client pc is getting the wrong mac address. i deleted the arp entry and let it re-add itself, but it keeps adding the wrong mac address. any ideas?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-09-2008 09:54 AM
тАО10-09-2008 09:54 AM
Re: Need to keep resetting port for device to work
http://forums11.itrc.hp.com/service/forums/questionanswer.do?threadId=1121297
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-09-2008 11:47 AM
тАО10-09-2008 11:47 AM
Re: Need to keep resetting port for device to work
> now the client pc is getting the wrong mac
> address. i deleted the arp entry and let it
> re-add itself, but it keeps adding the wrong
> mac address. any ideas?
The client PC is in vlan 3 too, like the firewall, and catches the wrong ARP resolution after a first successful one when resolving 192.168.200.5?
Sounds like a duplicate IP in this broadcast domain. Just find out where the MAC is coming from (something like "show mac-address-table", can't remember the exact syntax, I did too much Cisco IOS the last weeks). As in the other thread mentioned, there is a chance that it isn't really a dupe but some defective hardware (NIC, switch module) or software (NIC driver, switch firmware).
Keep in mind that false ARP resolutions can be introduced by unexpectedly activated proxy ARP on routers that think they have a route to the requested destination which isn't (as they wrongly assume) a connected route in the source network. Typically happens when plugging routed interfaces into the wrong broadcast domain (with devastating results, disrupting an arbitrary and ever-changing subset of the ARP transactions in this broadcast domain).
HTH,
Andre.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-09-2008 11:49 AM
тАО10-09-2008 11:49 AM
Re: Need to keep resetting port for device to work
thanks for any help.