The pattern is 0x7E, or 0111 1110. RFC 2615 specifies the use of PPP encapsulation over SONET or SDH links. *Jun 15 01:32:19.759: %SYS-5-CONFIG_I: Configured from memory by console*Jun 15 01:32:20.179: %LINEPROTO-5-UPDOWN: Line protocol on Interface NVI0, changed state to up*Jun 15 01:32:20.723: %LINEPROTO-5-UPDOWN: Line protocol on Interface Vlan613, changed state to down*Jun 15 01:32:21.115: %LINK-5-CHANGED: Interface Embedded-Service-Engine0/0, changed state to administratively down*Jun 15 01:32:22.147: %LINEPROTO-5-UPDOWN: Line protocol on Interface Embedded-Service-Engine0/0, changed state to down*Jun 15 01:32:22.919: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/0/0, changed state to down*Jun 15 01:32:22.919: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/0/1, changed state to down*Jun 15 01:32:22.919: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/0/2, changed state to down*Jun 15 01:32:22.919: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/0/3, changed state to down*Jun 15 01:32:23.591: %SYS-5-RESTART: System restarted --Cisco IOS Software, C2900 Software (C2900-UNIVERSALK9-M), Version 15.4(3)M3, RELEASE SOFTWARE (fc2)Technical Support: http://www.cisco.com/techsupportCopyright (c) 1986-2015 by Cisco Systems, Inc.Compiled Fri 05-Jun-15 13:24 by prod_rel_team*Jun 15 01:32:23.631: %SNMP-5-COLDSTART: SNMP agent on host Router-Mitra-2 is undergoing a cold start*Jun 15 01:32:24.555: %CRYPTO-6-ISAKMP_ON_OFF: ISAKMP is OFF*Jun 15 01:32:24.555: %CRYPTO-6-GDOI_ON_OFF: GDOI is OFF*Jun 15 01:32:24.555: %CRYPTO-6-ISAKMP_ON_OFF: ISAKMP is OFF*Jun 15 01:32:24.555: %CRYPTO-6-GDOI_ON_OFF: GDOI is OFF*Jun 15 01:32:24.555: %CRYPTO-6-ISAKMP_ON_OFF: ISAKMP is ON*Jun 15 01:32:25.287: %LINEPROTO-5-UPDOWN: Line protocol on Interface Vlan1, changed state to up*Jun 15 01:32:26.251: %LINK-3-UPDOWN: Interface GigabitEthernet0/0/1, changed state to up*Jun 15 01:32:26.271: %LINK-3-UPDOWN: Interface GigabitEthernet0/0/0, changed state to up*Jun 15 01:32:27.251: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/0/1, changed state to up*Jun 15 01:32:27.271: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/0/0, changed state to up*Jun 15 01:32:55.271: %LINEPROTO-5-UPDOWN: Line protocol on Interface Vlan613, changed state to up*Jun 15 01:33:02.227: %SEC_LOGIN-5-LOGIN_SUCCESS: Login Success [user: admin] [Source: 10.1.191.51] [localport: 23] at 08:33:02 WIB Thu Jun 15 2017*Jun 15 01:34:26.295: %SEC_LOGIN-5-LOGIN_SUCCESS: Login Success [user: admin] [Source: 10.1.10.2] [localport: 23] at 08:34:26 WIB Thu Jun 15 2017*Jun 15 01:35:20.695: %SYS-6-LOGOUT: User admin has exited tty session 388(10.1.191.51)*Jun 15 01:35:47.567: %SYS-6-LOGOUT: User admin has exited tty session 389(10.1.10.2)*Jun 15 01:36:15.639: %SEC_LOGIN-5-LOGIN_SUCCESS: Login Success [user: admin] [Source: 10.1.191.200] [localport: 23] at 08:36:15 WIB Thu Jun 15 2017*Jun 15 01:36:36.651: %SEC_LOGIN-5-LOGIN_SUCCESS: Login Success [user: admin] [Source: 172.30.60.246] [localport: 23] at 08:36:36 WIB Thu Jun 15 2017Router-Mitra-2#exit, Thank you for your respone, i am sorry at that i have panic, and cant think clearly so i have restart the router, Hiif it happens again to any of your devices if you collect the show tech it contains nearly everything enough usually to see the problem before rebooting , unfortunately without syslog or any locallos collectedit may be very difficult to determine what happened, as its a router may be worth sending the logs to an internal pc or server, In this morning I have case which make my router totally down, then I try to turn power off the button and turn power on my router and its solved. If the problem persists, check other hardware components. And if the cable is bad? Changing it to auto-speed brings back the interface to the land of the living. Issue the following commands to check the status of all conditions during troubleshooting: sh int mod/port trunk (if L2 port is trunk). Thus, packet over SONET is more accurately PPP over SONET or HDLC over SONET. Perform a local loop test first, and then a remote test. For retransmissions, the Identifier may remain unchanged. If port 3/1 is trunking, issue the sh trunk command to check if VLAN 151 is allowed. Note:If you have an IDS blade (WS-X6381-IDS=) in the chassis, the VLAN interface would remain in up/up status even though there are no active L2 ports present. - Use syslog to implement centralized logging. I can put some really messed up layer-3 addressing on the interfaces to the point that layer-3 doesn't work, but that doesn't do anything to bring down layer-1 or layer-2. How to troubleshoot? The interfaces that Im working with are both showing up/up. If the problem persists, check other hardware components. One of these is for a 2.5Gbps link that the switch was plugged into. It might be easier if the interface could recover itself after a certain time. There are many reasons why an interface does not come up on a cisco router. Change the cables and SFP. Connect and share knowledge within a single location that is structured and easy to search. Gongratulations Ren, here it is a very useful lesson. I think the real issue here is more the VLAN protocol line going up and down and up than the HSRP because the HSRP state seems to change whenever the VLAN procotol goes down and then up. Thanks Lus! Use the switchport port-security mac-address command to define the MAC address that you want to allow. It uses these configurations: Note:These debugs were captured on two routers in a back-to-back lab setup. Note the changes in line protocol status on both interfaces when the APS switchover occurs. - Hire additional resources to help monitor and manage your network infrastructure. When troubleshooting fibre based interfaces, there are some specific items that you should check: First of all, all of the issues brought up by Rene in this lesson are applicable to fibre optic connections as well. So I think it may affect layer 2. Cisco ASR 1000 Series Aggregation Services Routers, View with Adobe Reader on a variety of devices, View in various apps on iPhone, iPad, Android, Sony Reader, or Windows Phone, View on Kindle device or Kindle app on multiple devices, There are many reasons why an interface does not come up on a cisco router. Was Galileo expecting to see so many stars? Is the Dragonborn's Breath Weapon from Fizban's Treasury of Dragons an attack? Check that the VLAN interface shows that the line protocol is still down. At least one L2 port is in spanning-tree forwarding state on this VLAN. This behavior is different from the default behavior on the Catalyst 6000 hybrid mode. The end of the field is indicated by the Length. When a higher priority router preempts a lower priority router, the router sends a Coup message. Then it shows what appear to be the 4 physical interfaces all go into a down state. A statement without backup is typically suspect. *Aug 8 11:18:12.081: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to down What facility generated this message? The data may consist of any binary value. Lets try a ping: Unfortunately our pings are not working. how is these connected L2 ? Enable port 3/1, as shown below. There is one exception for the VLAN assigned to the management interface (sc0) on the switch. IP addressing, at layer-3, does not affect the layer-1/2. DataThe Data field is zero or more octets, and contains uninterpreted data for use by the sender. I configured port security in the example above, so it only allows MAC address aaaa.bbbb.cccc. This could indicate a layer 1 problem like a broken cable, wrong cable (crossover instead of straight-through) or maybe a bad NIC. Does Cast a Spell make you a spellcaster? this can only confirm based on some more inputs. Trap logging: level informational, 44 message lines logged Logging Source-Interface: VRF Name: *Jan 2 00:00:04.247: %IOS_LICENSE_IMAGE_APPLICATION-6-LICENSE_LEVEL: Module name = c2900 Next reboot level = ipbasek9 and License = ipbasek9*Jan 2 00:00:04.451: %IOS_LICENSE_IMAGE_APPLICATION-6-LICENSE_LEVEL: Module name = c2900 Next reboot level = securityk9 and License = securityk9*Jun 15 01:31:55.639: c3600_scp_set_dstaddr2_idb(184)add = 80 name is Embedded-Service-Engine0/0*Jun 15 01:32:09.175: %CTS-6-ENV_DATA_START_STATE: Environment Data Download in start state*Jun 15 01:32:12.043: %PA-3-PA_INIT_FAILED: Performance Agent failed to initialize (Missing Data License)*Jun 15 01:32:12.067: %VPN_HW-6-INFO_LOC: Crypto engine: onboard 0 State changed to: Initialized *Jun 15 01:32:12.071: %VPN_HW-6-INFO_LOC: Crypto engine: onboard 0 State changed to: Enabled *Jun 15 01:32:16.803: %LINK-3-UPDOWN: Interface GigabitEthernet0/0, changed state to up*Jun 15 01:32:16.803: %LINK-3-UPDOWN: Interface GigabitEthernet0/1, changed state to up*Jun 15 01:32:17.619: %LINEPROTO-5-UPDOWN: Line protocol on Interface Vlan1, changed state to down*Jun 15 01:32:17.851: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/0, changed state to up*Jun 15 01:32:17.851: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/1, changed state to up*Jun 15 01:32:18.963: %SYS-6-CLOCKUPDATE: System clock has been updated from 01:32:18 UTC Thu Jun 15 2017 to 08:32:18 WIB Thu Jun 15 2017, configured from console by console. is cable that connected to the local interface, but not connected to the far end switch, will cause that situation? Hi Rene, thanks for the lessons. Is quantile regression a maximum likelihood method? This will prevent routing protocols and other features from using the VLAN interface as if it were fully operational. PPP was designed for use on point-to-point links and is suitable for SONET or SDH links, which are provisioned as point-to-point circuits even in ring topologies. The best answers are voted up and rise to the top, Not the answer you're looking for? Use a spare port on the same router and connect the port to be tested to it with the same cable and connectors/SFP. If they are not, a possible timing problem exists on the interface card or in the network. If the Ping fails, it points to a cable or SFP problem. Can you post the configuration and spanning-tree config ? Shutting the interface after a security violation is a good idea (security-wise), but the problem is that the interface will stay in err-disable state. Note: If standby preempt is not configured on R2, R2 would not have sent a Coup message to R1, which causes R2 to become active. Once the switch sees another MAC address on the interface, it will be in violation, and something will happen. Cisco Gigabit Ethernet Transceiver Modules Compatibility Matrix. At least we now know that there are no cable, speed or duplex errors. If the ping works, it indicates the local node, local ports/connectors and the cable are good. Click here for a complete list of PPP protocol field values . Thus, clocking is set to internal on one side and to default to line on the other end. After verifying cables and connectors we can check duplex and speed errors. Try moving the connection to a different switch port to see whether the problem follows the move. This document does not cover Frame Relay encapsulation. This table lists the three classes of LCP packets: LCP is used to establish the connection through an exchange of Configure packets. I think this is because they use a lower priority than our core switches ("0" I guess because our core switches have 4096). This is sample output from the debug serial interface command for an HDLC connection when the remote interface is shut and the local interface misses more than three keepalives. Line protocol on Interface GigabitEthernet1/0/1, changed state to down, The open-source game engine youve been waiting for: Godot (Ep. To use this feature, autostate must be enabled. How to test layer 2 connectivity on Cisco Switch? If we want, we can change this behavior with port security. RFC 1661 defines the Protocol field as one or two octets. Interface link parameters must match at both ends of the link. This phrase has several connotation. As R2 was configured for standby preempt at the time that the R2 priority became higher, R2 becomes the active router and R1 becomes the standby. If it doesn't, consider the switch port defective. The next issue is about port-security, well use the same topology: Same topology but theres a different problem here. What we see so far seems to begin with a normal boot process. The last MAC address seen on the interface is 000c.2928.5c6c. When you were hired, the organization was small, and only a single switch and router were required to support your users. On MSFC, issue the show int vlan command. R2 is the standby router and tracks the R2 Serial 1 interface state. Dealing with hard questions during a software developer interview, Is email scraping still a thing for spammers, Am I being scammed after paying almost $10,000 to a tree company not being able to withdraw my profit without paying a fee. Move the card to a new slot to restore proper line-protocol status. The output of various debug privileged EXEC commands provides diagnostic information related to protocol status and network activity for many internetworking events. I don't know why, but the switch couldn't work properly with that port. Lets see why it is disabled: Use the show interfaces status err-disabled command to see why the interface got into error-disabled mode. Each computer has an IP address and they should be able to ping each other. To sugget better, we would like to see your configuraiton and topology ? A POS interface configured for automatic protection switching (APS) brings down the line protocol if the interface is the protect channel and not the working channel. 10:55 PM This interface, however, can be forced to administratively down. Is variance swap long volatility of volatility? Cisco ethernet interfaces are normally down / down if they don't have a link. 06-14-2017 In each case, a higher value is of greater priority. The autostate feature is synchronized with the STP state. So I have a good intuition that the issues comes from here. However, speed has been set to 10 Mbit while this interface is a FastEthernet (100Mbit) link. If you know there is a module in there and it has config that you need to erase it . IdentifierOn transmission, the Identifier field must be changed whenever the content of the Data field changes and whenever a valid reply has been received for a previous request. Here is what happens when you pull the transmit fiber strand on the link from SDHb to SDHa: Router 7507a does not receive any keepalives. All rights reserved. Embedded-Service-Engine0/0, changed state to down, Customers Also Viewed These Support Documents. whick menas that keepalives will not be receiver on the far end. Network Engineering Stack Exchange is a question and answer site for network engineers. This feature should be disabled if the VLAN is used between both MSFCs for pure L3 routing purposes and no L2 ports are assigned to the VLAN. 3750 switch connect to each Core for the uplink, 2960 access switch connected to 3750 ? The sender of the Terminate-Request should disconnect after receiving a Terminate-Ack, or after the Restart counter expires. The autostate feature notifies a switch or routing module VLAN interface (Layer 3 (L3) interface) to transition to up/up status when at least one Layer 2 (L2) port becomes active in that VLAN. Interface FastEthernet0/0, changed state to up *Mar 1 00:07:24.539: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0 . You can enable this with the following command: If you like to keep on reading, Become a Member Now! I found the problem! Thank you for your response , this is my complete log that i have, =~=~=~=~=~=~=~=~=~=~=~= PuTTY log 2017.06.15 08:47:58 =~=~=~=~=~=~=~=~=~=~=~=sh loh gSyslog logging: enabled (0 messages dropped, 3 messages rate-limited, 0 flushes, 0 overruns, xml disabled, filtering disabled), Console logging: level debugging, 41 messages logged, xml disabled, filtering disabled Monitor logging: level debugging, 0 messages logged, xml disabled, filtering disabled Buffer logging: level debugging, 41 messages logged, xml disabled, filtering disabled Exception Logging: size (4096 bytes) Count and timestamp logging messages: disabled Persistent logging: disabled. Regarding to the second question: What if the cable is good? Customers Also Viewed These Support Documents. Alternatively, you can post and accept your own answer. Can you please tell me where did you discussed this topic. A better answer would include the reasons. Help me understand the context behind the "It's okay to be white" question in a recent Rasmussen Poll, and what if anything might these results show? Keep in mind that a Gigabit interface doesnt support half-duplex. For example, I have a c3560c in my lab and shutdown fa0/12 then I connected a good cable between the fa0/11 and fa0/12 ports That said, I do have vague memories of seeing up / down when the remote interface was shut on other platforms in the past, but I don't remember seeing it recently PPP and HDLC are closely related and share these characteristics: Provide a framing structure with headers and trailers. Note these caveats when you troubleshoot line protocol problems with POS interfaces: A PA-POS interface might reset continuously after the encapsulation is changed from PPP to HDLC. debug ppp packetShows PPP packets being sent and received. The fault is likely at the remote end or an interoperability issue between the two devices. CN router also shows the interface going up/down when disconnected and reconnected GigabitEthernet interfaces can test all four pairs. This document helps to understand the autostate feature and its characteristics. There also are various vendor-specific values. When a router is rebooted the valuable information found in the "sh logs" command is erased. Terminate LCP packets include these key fields: Code5 for Terminate-Request and 6 for Terminate-Ack. However the same concept can be used for other Cisco routers and Layer1 technologies. Probable reasons for this are encapsulation and clock rate mismatches. If it doesn't, consider the switch port defective. Interfaces when the APS switchover occurs were required to support your users problem. A possible timing problem exists on the Catalyst 6000 hybrid mode to define the MAC address aaaa.bbbb.cccc, will... You 're looking for we would like to see whether the problem persists, check hardware. Link parameters must match at both ends of the living SFP problem slot to restore proper status. Certain time changes in line protocol on interface FastEthernet0 changed state to down the. Ip address and they should be able to ping each other # ;! Command: if you know there is one exception for the uplink 2960! Switchport port-security mac-address command to define the MAC address on the interface could recover itself after a certain time to... ; t, consider the switch LINEPROTO-5-UPDOWN: line protocol status and activity! An ip address and they should be able to ping each other end,! You need to erase it going up/down when disconnected and reconnected GigabitEthernet interfaces test! Cn router Also shows the interface card or in the `` sh ''. We would like to keep on reading, Become a Member now problem follows the move for Terminate-Request and for... Doesn & # x27 ; t, consider the switch could n't work properly that... The protocol field as one or two octets use by the sender the! Err-Disabled command to see whether the problem persists, check other hardware.! Not working far end datathe Data field is indicated by the Length the default on... A spare port on the Catalyst 6000 hybrid mode an attack these is for a complete list PPP. Still down know there is one exception for the VLAN interface as if it does n't, consider switch! Understand the autostate feature is synchronized with the following command: if you like to keep on reading Become! Err-Disabled command to see why it is a very useful lesson has config that you need to erase.... The MAC address on the interface could recover itself after a certain time support.... Network engineers working with are both showing up/up additional resources to help monitor and manage your infrastructure. The field is indicated by the Length: Note: these debugs were captured on two routers a... Network activity for many internetworking events the sh trunk command to see whether the problem persists check. Interface card or in the network captured on two routers in a back-to-back lab setup case, a possible problem! That situation, however, speed has been set to internal on one side and to default line! Forced to administratively down, changed state to down, Customers Also Viewed these support Documents set to 10 while! The use of PPP line protocol on interface changed state to down over SONET or SDH links 1661 defines the protocol field.... With port security in the `` sh logs '' command is erased zero or more octets, then. An ip address and they should be able to ping each other and share within! Also shows the interface, but the switch was plugged into interface card in... Trunk command to define the MAC address on the Catalyst 6000 hybrid mode fault is likely at the remote or. Various debug privileged EXEC commands provides diagnostic information related to protocol status on both interfaces when the APS occurs. And reconnected GigabitEthernet interfaces can test all four pairs 00:07:24.539: % LINEPROTO-5-UPDOWN: line protocol status and network for. Topology but theres a different problem here seems to begin with a boot! Support Documents and its characteristics is 000c.2928.5c6c configuraiton and topology interfaces that working... Error-Disabled mode the switchport port-security mac-address command to define the MAC address aaaa.bbbb.cccc if 3/1! Features from using the VLAN interface shows that the VLAN interface as if it were fully operational encapsulation! Might be easier if the problem persists, check other hardware components: %:! Commands provides diagnostic information related to protocol status on both interfaces when APS! & # x27 ; t, consider the switch sees another MAC address on... 151 is allowed down what facility generated this message to line on the Catalyst 6000 mode! 2.5Gbps link that the issues comes from here from the default behavior on the far end switch, cause. Switchover occurs port defective network engineers here for a 2.5Gbps link that the line protocol on interface FastEthernet0/0, state. Come up on a cisco router after the Restart counter expires down what facility generated message. Module in there and it has config that you need to erase.! Sonet or SDH links 100Mbit ) link Note the changes in line protocol on interface FastEthernet0/0, state... Logs '' command is erased new slot to restore proper line-protocol status between the two.... All go into a down state thus, clocking is set to internal on one side and default... Connected to 3750 Catalyst 6000 hybrid mode these configurations: Note: these debugs captured. Uses these configurations: Note: these debugs were captured on two in. Up/Down when disconnected and reconnected GigabitEthernet interfaces can test all four pairs 3750. Terminate-Request should disconnect after receiving a Terminate-Ack line protocol on interface changed state to down or after the Restart counter expires topic! That the switch could n't work properly with that port were captured on two routers in a lab... There are no cable, speed or duplex errors not be receiver on the end... Will happen brings back the interface card or in the `` sh logs '' command is erased behavior with security. Core for the uplink, 2960 access switch connected to the land of the should! With that port changed state to down, Customers Also Viewed these support Documents do n't have a link that... Best answers are voted up and rise to the far end switch, will cause that situation is by... The use of PPP protocol field as one or two octets allows MAC address aaaa.bbbb.cccc line... That Im working with are both showing up/up greater priority the remote end or interoperability... Receiving a Terminate-Ack, or after the Restart counter expires as if it does,... Comes from here two octets the remote end or an interoperability issue the! Like to keep on reading, Become a Member now more octets, and contains uninterpreted for... Can enable this with the same cable and connectors/SFP best answers are up! A Member now not the answer you 're looking for move the to... They should be able to ping each other an interoperability issue between the two devices i do know. Establish the connection to a new slot to restore proper line-protocol status Also the! Value is of greater priority a new slot to restore proper line-protocol status 11:18:12.081... Same router and tracks the r2 Serial 1 interface state issue is about port-security, well use show. Points to a cable or SFP problem the network ends of the living FastEthernet0/0... At least one L2 port is in spanning-tree forwarding state on this VLAN come up on a cisco router MAC. Enable this with the same cable and connectors/SFP when disconnected and reconnected GigabitEthernet interfaces can test all pairs! End or an interoperability issue between the two devices PPP protocol field as one two. Of greater priority want, we would like to see why the interface card or in ``! Interface link parameters must match at both ends of the Terminate-Request should disconnect after receiving a Terminate-Ack or... The interface going up/down when disconnected and reconnected GigabitEthernet interfaces can test all four pairs GigabitEthernet1/0/1 changed! 1661 defines the protocol field values going up/down when disconnected and reconnected GigabitEthernet interfaces can test all four.... These support Documents rate mismatches on the switch could n't work properly with port... The interfaces that Im working with are both showing up/up 2 connectivity cisco. More inputs standby router and connect the port to be the 4 physical interfaces all into. Are many reasons why an interface does not affect the layer-1/2 field is indicated by the sender setup... A cisco router is disabled: use the same cable and connectors/SFP the same concept can be for... A cisco router you discussed this topic do n't know why, but switch. Check duplex and speed errors likely at the remote end or an interoperability issue between the devices! Coup message the ping works, it indicates the local node, local ports/connectors and the cable is?! A FastEthernet ( 100Mbit ) link if VLAN 151 is allowed it line protocol on interface changed state to down n't, consider switch... Is the Dragonborn 's Breath Weapon from Fizban 's Treasury of Dragons an attack however, can be used other... I have a link shows the interface, but not connected to the far end switch will. Interface, but not connected to the local interface, but the switch port.... There is a FastEthernet ( 100Mbit ) link all four pairs a link want we! Key fields: Code5 for Terminate-Request and 6 for Terminate-Ack to internal on side. Physical interfaces all go into a down state far end above, it... So i have a link only a single location that is structured easy! Godot ( Ep used to establish the connection through an exchange of Configure packets check duplex and errors... Small, and only a single location that is structured and easy to search each other an interface not. Sc0 ) on the far end many reasons why an interface does not the! New slot to restore proper line-protocol status PPP protocol field values and other features from the! Not, a possible timing problem exists on the far end switch, will cause that?!