This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SG 310(firmware 9.355-1) between a cisco switch 2960(vlan801) and cisco router 2911 (2911 connected to 2960 on WAN connection). No internet - nothing works

SG 310(firmware 9.355-1) appliance when installed between a cisco 2960(vlan801) and cisco router 2911 Default gateway (2911 connected to 2960 on WAN connection). SG310 blocks the internet and cannot even ping the DG which is cisco 2911.  
Here is the net config:  My subnet is 10.10.11.0/24 cisco 2960 (vlan 801) is connected to router cisco 2911 connected via internet WAN connection, everything works great.  The moment SG 310 (in a bridge) is introduced between the switch 2960 and the router 2911 it blocks all protocols, internally i can see the flowing firewall logs and mostly it is blocking external traffic, drop packets TCP etc.  Eth1 WAN port on SG310 is connected to the internet connection (WAN from the internet to  my router 2911), and Eth0 LAN port on SG310 goes into my cisco switch 2960.  This does not work.  Sophos techs have checked all the internal config on the SG310 like firewall etc and cannot detect any running logs as the connection drops the mement SG310 is introduced.  Need help

Cisco 2960     ............................> >>>>  LAN   SG310 UTM    WAN port<<<<<.........Cloud + ISP....................>>>>>Router Cisco 2911

Vlan 801                                                             STOPS ALL TRAFFIC                                                                                                                                                                                              All routing here at 2911

subnet 10.10.11.0/24



This thread was automatically locked due to age.
Parents
  • Hi, and welcome to the UTM Community!

    Agreed with Dlabun.  Then again, to which "Sophos techs" are you referring?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • BALfson;

    I am referring to Sophos UTM support: https://doc.sophos.com/support/help/en-us/contact/index.html 

    I have been working with Sophos UTM for a long time now.  As at our one location 1 we have no issues with SG 310. 
    This brand new install at location 2 is causing issues.
  • Loius hopefully this diagram will explain it better.  Sure I will post the router config in a second. 

  • Interfaces from Cisco router 2911::

    *******************************


    GigabitEthernet0/0 is up, line protocol is up
      Hardware is CN Gigabit Ethernet, address is 1cdf.0XXXXXX
      Description: Oak_Campus_Lan
      Internet address is 10.10.10.254/24
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation 802.1Q Virtual LAN, Vlan ID  1., loopback not set
      Keepalive set (10 sec)
      Full-duplex, 1000Mb/s, media type is RJ45
      output flow-control is XON, input flow-control is XON
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input 00:00:00, output 00:00:00, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/7208 (size/max/drops/flushes); Total output drops: 534
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 7255000 bits/sec, 698 packets/sec
      5 minute output rate 4483000 bits/sec, 571 packets/sec
         917516255 packets input, 4159718399 bytes, 0 no buffer
         Received 30393747 broadcasts, 0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 0 multicast, 602 pause input
     --More--              0 input packets with dribble condition detected
         511861048 packets output, 1757586156 bytes, 0 underruns
         0 output errors, 0 collisions, 0 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         13 lost carrier, 0 no carrier, 55216394 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/0.422 is up, line protocol is up
      Hardware is CN Gigabit Ethernet, address is 1cdf.0XXXXXX
      Description: VLan New
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation 802.1Q Virtual LAN, Vlan ID  422.
      Keepalive set (10 sec)
      ARP type: ARPA, ARP Timeout 04:00:00
      Last clearing of "show interface" counters never
    GigabitEthernet0/0.425 is up, line protocol is up
      Hardware is CN Gigabit Ethernet, address is 1cdf.0XXXXXX
      Internet address is 10.10.5.254/23
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
     --More--           Encapsulation 802.1Q Virtual LAN, Vlan ID  425.
      Keepalive set (10 sec)
      ARP type: ARPA, ARP Timeout 04:00:00
      Last clearing of "show interface" counters never
    GigabitEthernet0/1 is up, line protocol is up
      Hardware is CN Gigabit Ethernet, address is 1cdf.0XXXXXX
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation 802.1Q Virtual LAN, Vlan ID  1., loopback not set
      Keepalive set (10 sec)
      Full-duplex, 1000Mb/s, media type is RJ45
      output flow-control is XON, input flow-control is XON
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input 00:00:00, output 00:00:00, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/90133/4838394 (size/max/drops/flushes); Total output drops: 0
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 159000 bits/sec, 166 packets/sec
      5 minute output rate 2935000 bits/sec, 290 packets/sec
         2487972278 packets input, 1113380151 bytes, 868 no buffer
     --More--              Received 33882836 broadcasts, 0 runts, 0 giants, 35620 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 0 multicast, 0 pause input
         0 input packets with dribble condition detected
         2849812709 packets output, 3225268243 bytes, 0 underruns
         0 output errors, 0 collisions, 0 interface resets
         214362 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 26369572 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/1.420 is up, line protocol is up
      Hardware is CN Gigabit Ethernet, address is 1cdf.0XXXXXX
      Description: INTERNET
      Internet address is x.x.x.x/28
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation 802.1Q Virtual LAN, Vlan ID  420.
      Keepalive set (10 sec)
      ARP type: ARPA, ARP Timeout 04:00:00
      Last clearing of "show interface" counters never
    GigabitEthernet0/1.801 is up, line protocol is up
      Hardware is CN Gigabit Ethernet, address is 1cdf.0XXXXXX
     --More--           Description: Bur_Campus_Lan
      Internet address is 10.10.11.254/24
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation 802.1Q Virtual LAN, Vlan ID  801.
      Keepalive set (10 sec)
      ARP type: ARPA, ARP Timeout 04:00:00
      Last clearing of "show interface" counters never
    GigabitEthernet0/2 is administratively down, line protocol is down
      Hardware is CN Gigabit Ethernet, address is 1cdf.0f9e.be02 (bia 1cdf.0f9e.be02)
      Description: $ES_LAN$
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Auto-duplex, Auto Speed, media type is RJ45
      output flow-control is unsupported, input flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output never, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
      Queueing strategy: fifo
     --More--           Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 0 bits/sec, 0 packets/sec
         0 packets input, 0 bytes, 0 no buffer
         Received 0 broadcasts, 0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 0 multicast, 0 pause input
         0 input packets with dribble condition detected
         0 packets output, 0 bytes, 0 underruns
         0 output errors, 0 collisions, 0 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         1 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    NVI0 is up, line protocol is up
      Hardware is NVI
      Interface is unnumbered. Using address of GigabitEthernet0/0 (10.10.10.254)
      MTU 1514 bytes, BW 56 Kbit/sec, DLY 5000 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation UNKNOWN, loopback not set
      Keepalive set (10 sec)
      Last input never, output never, output hang never
      Last clearing of "show interface" counters never
     --More--           Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 0 bits/sec, 0 packets/sec
         0 packets input, 0 bytes, 0 no buffer
         Received 0 broadcasts, 0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
         0 packets output, 0 bytes, 0 underruns
         0 output errors, 0 collisions, 0 interface resets
         0 unknown protocol drops
         0 output buffer failures, 0 output buffers swapped out

    *************************************************************************************************************************************

    Show interfaces from Cisco switch 2960:

    *************************************************************************88

    show inter
    Bur_Campus_Cisco2960#show interfaces
    Vlan1 is up, line protocol is up
      Hardware is EtherSVI, address is 9c4e.2079.a440 (bia 9c4e.2079.a440)
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive not supported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input 2d00h, output never, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 0 bits/sec, 0 packets/sec
         3830 packets input, 299013 bytes, 0 no buffer
         Received 0 broadcasts (0 IP multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 packets output, 0 bytes, 0 underruns
         0 output errors, 2 interface resets
         0 unknown protocol drops
         0 output buffer failures, 0 output buffers swapped out
    Vlan2 is down, line protocol is down
     --More--           Hardware is EtherSVI, address is 9c4e.2079.a441 (bia 9c4e.2079.a441)
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive not supported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output never, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 0 bits/sec, 0 packets/sec
         0 packets input, 0 bytes, 0 no buffer
         Received 0 broadcasts (0 IP multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 packets output, 0 bytes, 0 underruns
         0 output errors, 0 interface resets
         0 unknown protocol drops
         0 output buffer failures, 0 output buffers swapped out
    Vlan801 is up, line protocol is up
      Hardware is EtherSVI, address is 9c4e.2079.a442 (bia 9c4e.2079.a442)
     --More--           Internet address is 10.10.11.252/24
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive not supported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input 00:00:00, output 00:00:00, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 1000 bits/sec, 3 packets/sec
      5 minute output rate 3000 bits/sec, 1 packets/sec
         45048354 packets input, 3356181819 bytes, 0 no buffer
         Received 0 broadcasts (0 IP multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         318642 packets output, 74738089 bytes, 0 underruns
         0 output errors, 2 interface resets
         2 unknown protocol drops
         0 output buffer failures, 0 output buffers swapped out
    FastEthernet0 is down, line protocol is down
      Hardware is PowerPC FastEthernet, address is 9c4e.2079.a439 (bia 9c4e.2079.a439)
     --More--           MTU 1500 bytes, BW 100000 Kbit/sec, DLY 100 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive not set
      Auto-duplex, Auto Speed, MII
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output never, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
      Queueing strategy: fifo
      Output queue: 0/0 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 0 bits/sec, 0 packets/sec
         0 packets input, 0 bytes
         Received 0 broadcasts (0 IP multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog
         0 input packets with dribble condition detected
         0 packets output, 0 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
     --More--              0 lost carrier, 0 no carrier
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/1 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a401 (bia 9c4e.2079.a401)
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 1000Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input 00:00:01, output 00:00:02, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 1000 bits/sec, 3 packets/sec
         513428995 packets input, 48013523899 bytes, 0 no buffer
         Received 503754776 broadcasts (7642505 multicasts)
         0 runts, 0 giants, 0 throttles
         1 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 7642505 multicast, 0 pause input
     --More--              0 input packets with dribble condition detected
         57044936 packets output, 7694708194 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/2 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a402 (bia 9c4e.2079.a402)
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 17/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 1000Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output 00:00:01, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 1660
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 417000 bits/sec, 822 packets/sec
      5 minute output rate 67198000 bits/sec, 5530 packets/sec
     --More--              3506344217 packets input, 278686430874 bytes, 0 no buffer
         Received 1085814 broadcasts (155525 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 155525 multicast, 0 pause input
         0 input packets with dribble condition detected
         27148370678 packets output, 40278293968355 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/3 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a403 (bia 9c4e.2079.a403)
      MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 10Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output 00:00:00, output hang never
      Last clearing of "show interface" counters never
     --More--           Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 517480437
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 2000 bits/sec, 3 packets/sec
         1879482 packets input, 570044079 bytes, 0 no buffer
         Received 503745 broadcasts (182451 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 182451 multicast, 0 pause input
         0 input packets with dribble condition detected
         74599726 packets output, 9761144184 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/4 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a404 (bia 9c4e.2079.a404)
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
     --More--           Full-duplex, 1000Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output 00:00:01, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 2000 bits/sec, 3 packets/sec
         25194 packets input, 17759417 bytes, 0 no buffer
         Received 23 broadcasts (5 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 5 multicast, 0 pause input
         0 input packets with dribble condition detected
         590523242 packets output, 56935254353 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/5 is up, line protocol is up (connected)
     --More--           Hardware is Gigabit Ethernet, address is 9c4e.2079.a405 (bia 9c4e.2079.a405)
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 17/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 1000Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output 00:00:00, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 725
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 67123000 bits/sec, 5521 packets/sec
      5 minute output rate 422000 bits/sec, 825 packets/sec
         26624486032 packets input, 40274567737405 bytes, 0 no buffer
         Received 5720600 broadcasts (159649 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 159649 multicast, 0 pause input
         0 input packets with dribble condition detected
         4076158084 packets output, 314693772004 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
     --More--              0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/6 is down, line protocol is down (notconnect)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a406 (bia 9c4e.2079.a406)
      MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Auto-duplex, Auto-speed, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output never, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 0 bits/sec, 0 packets/sec
         0 packets input, 0 bytes, 0 no buffer
         Received 0 broadcasts (0 multicasts)
         0 runts, 0 giants, 0 throttles
     --More--              0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 0 multicast, 0 pause input
         0 input packets with dribble condition detected
         0 packets output, 0 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/7 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a407 (bia 9c4e.2079.a407)
      MTU 1500 bytes, BW 100000 Kbit/sec, DLY 100 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 100Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output 00:00:00, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 28312800
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
     --More--           5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 3000 bits/sec, 4 packets/sec
         65373664 packets input, 21882912734 bytes, 0 no buffer
         Received 442129 broadcasts (167770 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 167770 multicast, 0 pause input
         0 input packets with dribble condition detected
         628100678 packets output, 64555012530 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/8 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a408 (bia 9c4e.2079.a408)
      MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 10Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
     --More--           Last input never, output 00:00:01, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 79543633
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 3000 bits/sec, 4 packets/sec
         8036339 packets input, 1847595611 bytes, 0 no buffer
         Received 451335 broadcasts (105679 multicasts)
         0 runts, 3 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 105679 multicast, 0 pause input
         0 input packets with dribble condition detected
         517855228 packets output, 51580707587 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/9 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a409 (bia 9c4e.2079.a409)
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
     --More--           Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 1000Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input 00:00:16, output 00:00:01, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 37168
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 34000 bits/sec, 9 packets/sec
      5 minute output rate 1000 bits/sec, 2 packets/sec
         580967147 packets input, 223364659550 bytes, 0 no buffer
         Received 34328638 broadcasts (11351768 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 11351768 multicast, 0 pause input
         0 input packets with dribble condition detected
         1462773366 packets output, 1119917769112 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
     --More--              0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/10 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a40a (bia 9c4e.2079.a40a)
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 1000Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output 00:00:01, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 3000 bits/sec, 4 packets/sec
         1146842 packets input, 334960275 bytes, 0 no buffer
         Received 111973 broadcasts (96873 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 96873 multicast, 0 pause input
         0 input packets with dribble condition detected
     --More--              588857520 packets output, 57670146986 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/11 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a40b (bia 9c4e.2079.a40b)
      MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 10Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output 00:00:01, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 473673809
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 3000 bits/sec, 4 packets/sec
         154687 packets input, 26534215 bytes, 0 no buffer
     --More--              Received 13926 broadcasts (7048 multicasts)
         0 runts, 310 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 7048 multicast, 0 pause input
         0 input packets with dribble condition detected
         56153580 packets output, 6454098381 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/12 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a40c (bia 9c4e.2079.a40c)
      MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 10Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input 1d00h, output 00:00:01, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 12618310
     --More--           Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 3000 bits/sec, 4 packets/sec
         138022 packets input, 30722516 bytes, 0 no buffer
         Received 3276 broadcasts (2054 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 2054 multicast, 0 pause input
         0 input packets with dribble condition detected
         1631236 packets output, 596028911 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         39 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/13 is down, line protocol is down (notconnect)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a40d (bia 9c4e.2079.a40d)
      MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Auto-duplex, Auto-speed, media type is 10/100/1000BaseTX
     --More--           input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output never, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 0 bits/sec, 0 packets/sec
         0 packets input, 0 bytes, 0 no buffer
         Received 0 broadcasts (0 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 0 multicast, 0 pause input
         0 input packets with dribble condition detected
         0 packets output, 0 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/14 is down, line protocol is down (notconnect)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a40e (bia 9c4e.2079.a40e)
     --More--           MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Auto-duplex, Auto-speed, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output 12w5d, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 0 bits/sec, 0 packets/sec
         0 packets input, 0 bytes, 0 no buffer
         Received 0 broadcasts (0 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 0 multicast, 0 pause input
         0 input packets with dribble condition detected
         0 packets output, 0 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
     --More--              0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/15 is down, line protocol is down (notconnect)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a40f (bia 9c4e.2079.a40f)
      MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Auto-duplex, Auto-speed, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output never, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 0 bits/sec, 0 packets/sec
         0 packets input, 0 bytes, 0 no buffer
         Received 0 broadcasts (0 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
     --More--              0 watchdog, 0 multicast, 0 pause input
         0 input packets with dribble condition detected
         0 packets output, 0 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/16 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a410 (bia 9c4e.2079.a410)
      MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 10Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input 1d01h, output 00:00:00, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 461050069
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
     --More--           5 minute output rate 3000 bits/sec, 4 packets/sec
         23092970 packets input, 4420663750 bytes, 0 no buffer
         Received 388081 broadcasts (201319 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 201319 multicast, 0 pause input
         0 input packets with dribble condition detected
         159033301 packets output, 43739981904 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         5749 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/17 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a411 (bia 9c4e.2079.a411)
      MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 10Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output 00:00:00, output hang never
     --More--           Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 171627627
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 3000 bits/sec, 4 packets/sec
         373890 packets input, 45429169 bytes, 0 no buffer
         Received 52755 broadcasts (16491 multicasts)
         0 runts, 37 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 16491 multicast, 0 pause input
         0 input packets with dribble condition detected
         393116715 packets output, 40366968009 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/18 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a412 (bia 9c4e.2079.a412)
      MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
     --More--           Keepalive set (10 sec)
      Full-duplex, 10Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input 1d00h, output 00:00:01, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 473670483
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 3000 bits/sec, 4 packets/sec
         19203446 packets input, 4207556884 bytes, 0 no buffer
         Received 260062 broadcasts (161218 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 161218 multicast, 0 pause input
         0 input packets with dribble condition detected
         141315285 packets output, 43323279114 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         5558 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
     --More--         GigabitEthernet0/19 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a413 (bia 9c4e.2079.a413)
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 1000Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input 00:12:00, output 00:00:01, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 461053334
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 1000 bits/sec, 1 packets/sec
      5 minute output rate 3000 bits/sec, 4 packets/sec
         17613103 packets input, 3572891766 bytes, 0 no buffer
         Received 305456 broadcasts (209086 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 209086 multicast, 0 pause input
         0 input packets with dribble condition detected
         156985202 packets output, 45332750338 bytes, 0 underruns
     --More--              0 output errors, 0 collisions, 1 interface resets
         5187 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/20 is down, line protocol is down (notconnect)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a414 (bia 9c4e.2079.a414)
      MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Auto-duplex, Auto-speed, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output never, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 0 bits/sec, 0 packets/sec
         0 packets input, 0 bytes, 0 no buffer
         Received 0 broadcasts (0 multicasts)
     --More--              0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 0 multicast, 0 pause input
         0 input packets with dribble condition detected
         0 packets output, 0 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/21 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a415 (bia 9c4e.2079.a415)
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 1000Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output 00:00:01, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
      Queueing strategy: fifo
     --More--           Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 3000 bits/sec, 4 packets/sec
         725673 packets input, 215970153 bytes, 0 no buffer
         Received 79357 broadcasts (6443 multicasts)
         0 runts, 24 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 6443 multicast, 0 pause input
         0 input packets with dribble condition detected
         591785931 packets output, 58543323987 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/22 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a416 (bia 9c4e.2079.a416)
      MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 10Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
     --More--           ARP type: ARPA, ARP Timeout 04:00:00
      Last input 1d01h, output 00:00:00, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 3000 bits/sec, 4 packets/sec
         20718626 packets input, 5507599082 bytes, 0 no buffer
         Received 275198 broadcasts (161349 multicasts)
         0 runts, 0 giants, 0 throttles
         1 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 161349 multicast, 0 pause input
         0 input packets with dribble condition detected
         622554859 packets output, 95897294555 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         4453 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/23 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a417 (bia 9c4e.2079.a417)
      MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
     --More--              reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 10Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input 1d01h, output 00:00:00, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 517476232
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 3000 bits/sec, 4 packets/sec
         22189532 packets input, 4586572439 bytes, 0 no buffer
         Received 264060 broadcasts (158359 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 158359 multicast, 0 pause input
         0 input packets with dribble condition detected
         109124410 packets output, 46848520912 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         5264 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
     --More--              0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/24 is down, line protocol is down (notconnect)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a418 (bia 9c4e.2079.a418)
      MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Auto-duplex, Auto-speed, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output never, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 0 bits/sec, 0 packets/sec
         0 packets input, 0 bytes, 0 no buffer
         Received 0 broadcasts (0 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 0 multicast, 0 pause input
     --More--              0 input packets with dribble condition detected
         0 packets output, 0 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/25 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a419 (bia 9c4e.2079.a419)
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 1000Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input 00:00:13, output 00:00:00, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 58
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 3000 bits/sec, 4 packets/sec
     --More--              57432634 packets input, 14954285992 bytes, 0 no buffer
         Received 11748628 broadcasts (879172 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 879172 multicast, 0 pause input
         0 input packets with dribble condition detected
         647070109 packets output, 129613138919 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/26 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a41a (bia 9c4e.2079.a41a)
      MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 10Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input 1d01h, output 00:00:00, output hang never
      Last clearing of "show interface" counters never
     --More--           Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 473670867
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 3000 bits/sec, 4 packets/sec
         19111084 packets input, 5025524554 bytes, 0 no buffer
         Received 273377 broadcasts (160720 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 160720 multicast, 0 pause input
         0 input packets with dribble condition detected
         143335170 packets output, 42895623726 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         5167 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/27 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a41b (bia 9c4e.2079.a41b)
      MTU 1500 bytes, BW 100000 Kbit/sec, DLY 100 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
     --More--           Full-duplex, 100Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output 00:00:00, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 432239207
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 3000 bits/sec, 4 packets/sec
         16693354 packets input, 3009955348 bytes, 0 no buffer
         Received 840247 broadcasts (386005 multicasts)
         0 runts, 12194 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 386005 multicast, 0 pause input
         0 input packets with dribble condition detected
         185166924 packets output, 24402556596 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/28 is up, line protocol is up (connected)
     --More--           Hardware is Gigabit Ethernet, address is 9c4e.2079.a41c (bia 9c4e.2079.a41c)
      MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 10Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input 1d01h, output 00:00:00, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 461051451
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 3000 bits/sec, 4 packets/sec
         27534848 packets input, 6496327941 bytes, 0 no buffer
         Received 246160 broadcasts (149564 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 149564 multicast, 0 pause input
         0 input packets with dribble condition detected
         145000867 packets output, 42574397628 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
     --More--              4804 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/29 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a41d (bia 9c4e.2079.a41d)
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 1000Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input 00:00:01, output 00:00:00, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 3000 bits/sec, 5 packets/sec
      5 minute output rate 0 bits/sec, 0 packets/sec
         576693181 packets input, 52101613389 bytes, 0 no buffer
         Received 574952767 broadcasts (27087326 multicasts)
         0 runts, 0 giants, 0 throttles
     --More--              0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 27087326 multicast, 0 pause input
         0 input packets with dribble condition detected
         1575555 packets output, 110286810 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/30 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a41e (bia 9c4e.2079.a41e)
      MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 10Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input 1d00h, output 00:00:00, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 517474383
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
     --More--           5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 4000 bits/sec, 5 packets/sec
         19228428 packets input, 4865443572 bytes, 0 no buffer
         Received 276114 broadcasts (165615 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 165615 multicast, 0 pause input
         0 input packets with dribble condition detected
         104283953 packets output, 45130757718 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         4804 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/31 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a41f (bia 9c4e.2079.a41f)
      MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 10Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
     --More--           Last input 1d00h, output 00:00:00, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 473727596
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 4000 bits/sec, 5 packets/sec
         31267217 packets input, 7052755477 bytes, 0 no buffer
         Received 272504 broadcasts (163959 multicasts)
         0 runts, 0 giants, 0 throttles
         1 input errors, 1 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 163959 multicast, 0 pause input
         0 input packets with dribble condition detected
         154826300 packets output, 49738760949 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         4767 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/32 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a420 (bia 9c4e.2079.a420)
      MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
         reliability 255/255, txload 1/255, rxload 1/255
     --More--           Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 10Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input 1d01h, output 00:00:00, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 517474379
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 4000 bits/sec, 5 packets/sec
         14356404 packets input, 4337020886 bytes, 0 no buffer
         Received 212358 broadcasts (142190 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 142190 multicast, 0 pause input
         0 input packets with dribble condition detected
         93831970 packets output, 34285040157 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         3003 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
     --More--              0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/33 is down, line protocol is down (notconnect)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a421 (bia 9c4e.2079.a421)
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Auto-duplex, Auto-speed, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input 2d22h, output 2d22h, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 66926907
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 0 bits/sec, 0 packets/sec
         10714562 packets input, 2766311812 bytes, 0 no buffer
         Received 262114 broadcasts (157423 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 157423 multicast, 0 pause input
         0 input packets with dribble condition detected
     --More--              524968603 packets output, 65335886064 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         5381 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/34 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a422 (bia 9c4e.2079.a422)
      MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 10Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input 1d01h, output 00:00:00, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 473671767
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 4000 bits/sec, 5 packets/sec
         15724688 packets input, 2958048077 bytes, 0 no buffer
     --More--              Received 188287 broadcasts (106117 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 106117 multicast, 0 pause input
         0 input packets with dribble condition detected
         129533573 packets output, 37350243136 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         3146 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/35 is down, line protocol is down (notconnect)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a423 (bia 9c4e.2079.a423)
      MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Auto-duplex, Auto-speed, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output never, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
     --More--           Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 0 bits/sec, 0 packets/sec
         0 packets input, 0 bytes, 0 no buffer
         Received 0 broadcasts (0 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 0 multicast, 0 pause input
         0 input packets with dribble condition detected
         0 packets output, 0 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/36 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a424 (bia 9c4e.2079.a424)
      MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 10Mb/s, media type is 10/100/1000BaseTX
     --More--           input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input 1d02h, output 00:00:01, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 437931615
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 4000 bits/sec, 5 packets/sec
         15881872 packets input, 4659145987 bytes, 0 no buffer
         Received 237210 broadcasts (141640 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 141640 multicast, 0 pause input
         0 input packets with dribble condition detected
         104937042 packets output, 39268463420 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         4419 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/37 is down, line protocol is down (notconnect)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a425 (bia 9c4e.2079.a425)
     --More--           MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Auto-duplex, Auto-speed, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output never, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 0 bits/sec, 0 packets/sec
         0 packets input, 0 bytes, 0 no buffer
         Received 0 broadcasts (0 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 0 multicast, 0 pause input
         0 input packets with dribble condition detected
         0 packets output, 0 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
     --More--              0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/38 is down, line protocol is down (notconnect)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a426 (bia 9c4e.2079.a426)
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 1000Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input 1d00h, output 1d00h, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 0 bits/sec, 0 packets/sec
         17901430 packets input, 3720596429 bytes, 0 no buffer
         Received 246774 broadcasts (156390 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
     --More--              0 watchdog, 156390 multicast, 0 pause input
         0 input packets with dribble condition detected
         51849121 packets output, 33219040843 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         4422 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/39 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a427 (bia 9c4e.2079.a427)
      MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Half-duplex, 10Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output 00:00:01, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 3391972
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
     --More--           5 minute output rate 4000 bits/sec, 5 packets/sec
         944392 packets input, 158317315 bytes, 0 no buffer
         Received 155498 broadcasts (31994 multicasts)
         0 runts, 4 giants, 0 throttles
         4 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 31994 multicast, 0 pause input
         0 input packets with dribble condition detected
         554546291 packets output, 54306612576 bytes, 0 underruns
         0 output errors, 5 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/40 is down, line protocol is down (notconnect)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a428 (bia 9c4e.2079.a428)
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 1000Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output never, output hang never
     --More--           Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 0 bits/sec, 0 packets/sec
         0 packets input, 0 bytes, 0 no buffer
         Received 0 broadcasts (0 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 0 multicast, 0 pause input
         0 input packets with dribble condition detected
         0 packets output, 0 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/41 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a429 (bia 9c4e.2079.a429)
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
     --More--           Keepalive set (10 sec)
      Full-duplex, 1000Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output 00:00:00, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 30
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 3000 bits/sec, 5 packets/sec
         230994533 packets input, 192636431502 bytes, 0 no buffer
         Received 8891807 broadcasts (297303 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 297303 multicast, 1132494 pause input
         0 input packets with dribble condition detected
         740602648 packets output, 131684564472 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
     --More--         GigabitEthernet0/42 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a42a (bia 9c4e.2079.a42a)
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 1000Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output 00:00:00, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 37000 bits/sec, 12 packets/sec
         6092644 packets input, 525929680 bytes, 0 no buffer
         Received 2569900 broadcasts (2252517 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 2252517 multicast, 0 pause input
         0 input packets with dribble condition detected
         660282517 packets output, 100034044649 bytes, 0 underruns
     --More--              0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/43 is down, line protocol is down (notconnect)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a42b (bia 9c4e.2079.a42b)
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 1000Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input 22:33:09, output 22:33:10, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 0 bits/sec, 0 packets/sec
         483061 packets input, 113885787 bytes, 0 no buffer
         Received 4046 broadcasts (2262 multicasts)
     --More--              0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 2262 multicast, 0 pause input
         0 input packets with dribble condition detected
         14099631 packets output, 3300092187 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         56 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/44 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a42c (bia 9c4e.2079.a42c)
      Description: source port
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 1000Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input 1w3d, output 00:00:00, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
     --More--           Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 4000 bits/sec, 5 packets/sec
         354857 packets input, 150703612 bytes, 0 no buffer
         Received 20098 broadcasts (16026 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 16026 multicast, 0 pause input
         0 input packets with dribble condition detected
         591939712 packets output, 59022325067 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         4 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/45 is down, line protocol is down (notconnect)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a42d (bia 9c4e.2079.a42d)
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 1000Mb/s, media type is 10/100/1000BaseTX
     --More--           input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input 2d00h, output 2d00h, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 0 bits/sec, 0 packets/sec
         2409 packets input, 1063632 bytes, 0 no buffer
         Received 544 broadcasts (412 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 412 multicast, 0 pause input
         0 input packets with dribble condition detected
         10034 packets output, 1447358 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/46 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a42e (bia 9c4e.2079.a42e)
     --More--           MTU 1500 bytes, BW 100000 Kbit/sec, DLY 100 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 100Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output 00:00:01, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 60394724
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 4000 bits/sec, 5 packets/sec
         1122829 packets input, 85061451 bytes, 0 no buffer
         Received 5639 broadcasts (0 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 0 multicast, 0 pause input
         0 input packets with dribble condition detected
         81070101 packets output, 8217274238 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
     --More--              0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/47 is down, line protocol is down (monitoring)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a42f (bia 9c4e.2079.a42f)
      Description: SessnMntrPort48
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 1000Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output 23:57:21, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 16
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 0 bits/sec, 0 packets/sec
         0 packets input, 0 bytes, 0 no buffer
         Received 0 broadcasts (0 multicasts)
         0 runts, 0 giants, 0 throttles
     --More--              0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 0 multicast, 0 pause input
         0 input packets with dribble condition detected
         2324312525 packets output, 1516998364797 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/48 is up, line protocol is up (connected)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a430 (bia 9c4e.2079.a430)
      Description: source port
      MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive set (10 sec)
      Full-duplex, 1000Mb/s, media type is 10/100/1000BaseTX
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input 00:00:00, output 00:00:00, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 1831
      Queueing strategy: fifo
     --More--           Output queue: 0/40 (size/max)
      5 minute input rate 7000 bits/sec, 8 packets/sec
      5 minute output rate 54000 bits/sec, 12 packets/sec
         1202884884 packets input, 1355245344444 bytes, 0 no buffer
         Received 20094781 broadcasts (18999222 multicasts)
         0 runts, 0 giants, 0 throttles
         1 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 18999222 multicast, 0 pause input
         0 input packets with dribble condition detected
         1258804725 packets output, 261182658626 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/49 is down, line protocol is down (notconnect)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a431 (bia 9c4e.2079.a431)
      MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
         reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive not set
      Auto-duplex, Auto-speed, link type is auto, media type is Not Present
      input flow-control is off, output flow-control is unsupported
     --More--           ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output never, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 0 bits/sec, 0 packets/sec
         0 packets input, 0 bytes, 0 no buffer
         Received 0 broadcasts (0 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 0 multicast, 0 pause input
         0 input packets with dribble condition detected
         0 packets output, 0 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
         0 lost carrier, 0 no carrier, 0 pause output
         0 output buffer failures, 0 output buffers swapped out
    GigabitEthernet0/50 is down, line protocol is down (notconnect)
      Hardware is Gigabit Ethernet, address is 9c4e.2079.a432 (bia 9c4e.2079.a432)
      MTU 1500 bytes, BW 10000 Kbit/sec, DLY 1000 usec,
     --More--              reliability 255/255, txload 1/255, rxload 1/255
      Encapsulation ARPA, loopback not set
      Keepalive not set
      Auto-duplex, Auto-speed, link type is auto, media type is Not Present
      input flow-control is off, output flow-control is unsupported
      ARP type: ARPA, ARP Timeout 04:00:00
      Last input never, output never, output hang never
      Last clearing of "show interface" counters never
      Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
      Queueing strategy: fifo
      Output queue: 0/40 (size/max)
      5 minute input rate 0 bits/sec, 0 packets/sec
      5 minute output rate 0 bits/sec, 0 packets/sec
         0 packets input, 0 bytes, 0 no buffer
         Received 0 broadcasts (0 multicasts)
         0 runts, 0 giants, 0 throttles
         0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
         0 watchdog, 0 multicast, 0 pause input
         0 input packets with dribble condition detected
         0 packets output, 0 bytes, 0 underruns
         0 output errors, 0 collisions, 1 interface resets
         0 unknown protocol drops
         0 babbles, 0 late collision, 0 deferred
     --More--              0 lost carrier, 0 no carrier, 0 pause output

    ************************************************************************************************************

  • Based on your diagram it looks like you're using some sort of private Ethernet service or MPLS connection between to different locations... Is that correct? I was under the impression all of these devices were located in the same rack and not the opposite ends of an internet connection.

  • Same here. The diagram tells a different story. 

    Are you saying that if you take the UTM (on the right hand side of your diagram) out of the equation, the 2960 connects directly to your ISP and internet and traffic flows between sites?

    Where the UTM is on the right hand side, I would normally expect to see a layer 3 device eg ASA, router or layer3 switch. Has the UTM replaced anything there?

  • Gentlemen,

    Louise:

    -Correct, the moment UTM is introduced nothing works.

    -There exist Cisco 2960 switch which is trunk to Cisco 2911, nothing is replaced.

    As a note I am also sharing the message from my ISP:

    ***************************************************************************************8

    Hi AdMan, received your message regarding you are unable to get your firewall working at your Bur campus. 
     
    VLAN 801 is your TLS circuit and we are just layer 2 and we do not have to make any changes on our side to accommodate your firewall
     
    The port in Burlington facing you is set up as 1000  Full the encapsulation is dot1q and all the vlans are tagged 92,422,425,801
     
    Please feel free to give me a call – contact info in my signature
     
    Thank you
    David
    Datacom IP
    Cogeco
    ****************************************************************************************************************************
     
  • Louis I got a different message on my email where you mention not to use the bridge on UTM? and start NAT function on the UTM? if that is correct I can remove the bridge and use WAN and LAN as separate ports with NAT enabled?

    ************************************************************************************************************************************************************************

    The setup on the left hand side is fine as the Cisco is doing the natting/routing etc and the UTM is inline.
    On the right hand side, it's not the same. You need the UTM to mimic the Cisco router on the left hand side.
    So it needs to do Nat etc. I'd wipe your config and start from scratch for the UTM on the right hand side. Is a straight forward setup.
    ************************************************************************************************************************************************************************
  • If you're using a TLS circuit there may be no need for a second UTM as you essential have a really long private ethernet cable running between your two locations. A UTM at both locations would be an ideal solution if you didn't have a TLS connection. I deal with TLS and microwave circuits running from Canada into Vermont... We have don't use UTMs at the satellite locations as they don't have a real internet connection, just the TLS line back to the home office where our internet service is.

    You really need to have a conversation with Cogeco and your Sophos reseller on the right way to line up all of this equipment. The second UTM may very well be unnecessary unless you're trying to provide a way to switch to a backup internet connection should the TLS circuit go down.

  • Dlabun,

    Now that will be too much work for ISP to change their existing layout and charge us more money.

    There are many reasons for which this internet line was used between two locations. 

    1) to keep one routing device.

    2) To keep 2 physical locations in AD as separate sites.  For ease of manageability for users/hardware etc

    3)Not to load each other subnet with loads of traffic

    3)Though our locations are different but similar in many many ways.

    In fact this type of connection exist between our locations for more than 20 years. I will contact my re-seller and find out what can be done to get the internet via UTM.

    Thanks guys I really appreciate your time in this.

  • Hi Adman,

    Dlabun is right. Now we know more about your setup, it is indeed a private circuit and the UTM may not be necessary. That said, it sounds as though you want to change the topology of the network and break it further down into different subnets?

    If that is the case, I would place a UTM or router on the right hand side and then use a different subnet to break up the network/collision domain. This would then mean that all traffic after the UTM or router would be on an entirely different subnet and would need configuring as such.

    The appropriate routing would also have to entered on the Cisco on the left hand side also?

    Is this what you want? Both sides can still belong to the same domain in AD but they would be in totally different subnets?

    Please ignore my previous post about natting etc (unless you want the above) as I wasn't sure of your setup and it's becoming more clearer as we speak.

  • Hi Dlabun,

    Both of our physical sites have already different subnets, no issue there. 

    ******************

    If that is the case, I would place a UTM or router on the right hand side and then use a different subnet to break up the network/collision domain. This would then mean that all traffic after the UTM or router would be on an entirely different subnet and would need configuring as such.

    *********************************

    that's I am trying to do putting in the UTM on the right hand side.  I guess here the UTM has to act as my switch 2960 (how to convert UTM into a switch like cisco 2960 I do not know?), its already an entirely different subnet so UTM should not have any trouble. 

    **************************

    Is this what you want? Both sides can still belong to the same domain in AD but they would be in totally different subnets?

    *********************************************************************************8

    Both sides are in the same domain and have totally different subnets.  Right side is 10.10.11.0/24  and left 10.10.10.0/24, routing is done by Cisco 2911 for both subnets.

    Gentlemen,

    This might help you.  Back in 2011/2012 I was testing Astaro 220 appliance on the same site with subnet 10.10.11.0/24 (right hand side) and I could vaguely remember using the port monitoring on my switch cisco 2960 and things worked great at that time.  Since that was a test unit I had to send Astaro back as it was loaned to me for testing.  I cannot even find the backup file otherwise I could restore the same backup.

    If the above setup does not work, can SG 310 be simply setup to see the traffic via port monitoring/mirroring through switch?

Reply
  • Hi Dlabun,

    Both of our physical sites have already different subnets, no issue there. 

    ******************

    If that is the case, I would place a UTM or router on the right hand side and then use a different subnet to break up the network/collision domain. This would then mean that all traffic after the UTM or router would be on an entirely different subnet and would need configuring as such.

    *********************************

    that's I am trying to do putting in the UTM on the right hand side.  I guess here the UTM has to act as my switch 2960 (how to convert UTM into a switch like cisco 2960 I do not know?), its already an entirely different subnet so UTM should not have any trouble. 

    **************************

    Is this what you want? Both sides can still belong to the same domain in AD but they would be in totally different subnets?

    *********************************************************************************8

    Both sides are in the same domain and have totally different subnets.  Right side is 10.10.11.0/24  and left 10.10.10.0/24, routing is done by Cisco 2911 for both subnets.

    Gentlemen,

    This might help you.  Back in 2011/2012 I was testing Astaro 220 appliance on the same site with subnet 10.10.11.0/24 (right hand side) and I could vaguely remember using the port monitoring on my switch cisco 2960 and things worked great at that time.  Since that was a test unit I had to send Astaro back as it was loaned to me for testing.  I cannot even find the backup file otherwise I could restore the same backup.

    If the above setup does not work, can SG 310 be simply setup to see the traffic via port monitoring/mirroring through switch?

Children
  • I'm still not sure whether is would work out as being a bridge.

    I think in the above case, I would put the UTM in with a WAN address of 10.10.11.1/24 and then an entirely different subnet behind that eg 10.1.1.0/24 or 172.16.x.x/24 etc

    The above would work as the UTM would have a WAN address of say 10.10.11.1/24 and the Cisco 2911 would know how to get to that. Obviously, if you put another subnet on the LAN of the UTM, say 172.16.1.0/24, you would have to put the static route into the 2911 ie route 172.16.1.0 255.255.255.0 10.10.11.1

    That will work as but you have to have WAN connectivity first and that's if you want to go this way

  • Thanks Louis,

    Tomorrow I am scheduled with the Sophos escalations team on UTM.  I will keep you posted on the results.

    Thanks

  • As long and complex as this thread had become, I hesitated to do anything other than scan it.  A quick glance showed that VLAN 1 is in use.  VLAN 1 is reserved for Wireless Protection in the UTM.  Does changing that VLAN setting make any difference?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • Bob,

    Our UTM has no licenses for Wireless.  If that still in effect I will try disabling on the UTM.  Escalations team found one interesting thing.  They say my layer 2 switch 2960 is not responding to ARP request.  So I checked my router 2911 and there was the ARP entry.  Do not know why they want a layer 2 switch to respond on an ARP request.  So I took another switch and it did the same thing 'no reply to ARP'  What does this prove? 

    Under the whole above scenario the WAN works fine and I am able to ping 8.8.8.8 and my DG i.e my cisco router 2911.

    The other frustrating thing about this UTM is if I remove  DG from the bridge and put the DG on say VLAN801, the UTM freezes and loses connectivity to the switch.  May be escalations kept on checking while the switch had no connectivity to the UTM.  In such a case the UTM has to be factory default and restored into a new backup.  I will check it tomorrow.

    Also I am destined to check this set up using a layer 3 switch and see if that makes the UTM happy. 

    Thanks

  • Adman, I don't doubt that you're a very knowledgeable guy, but the UTM is a bit of a different beast.  WebAdmin is used to maintain databases of settings and objects.  The config daemon consults these and then writes the 1000s of lines of code that actually perform the functions.  As a result, a single change in WebAdmin might result in 100s of new/changed lines of code.

    Does disabling Wireless Protection allow the use of VLAN 1?  Maybe. Probably mostly.  You still should change to a different VLAN just as a way of eliminating the possibility that this is at the root of your unusual problem.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • I think you have to start from scratch here. The 2960 obviously has an ip address on vlan ? If you plug that into the UTM, can it be pinged?

    I've got 6 2960's plugged into 2 UTM's and they work. The ports on the switches are set to trunk mode.

  • Bob,

    Thanks

    Not sure how to disable the wireless protection when I do not have to license for it.  Do I need to go into the shell and do it? what is the command for that?

    Well this whole site works under vlan 801, if I switch Vlans then the switch 2960 loses connection to my cisco router 2911.

    Any other suggestion? is welcome.

  • Louis-M,

    This is funny believe me I have started many times from the scratch. 

    2960 has the IP on vlan 801 which is 10.10.11.252.  The switch only pings the UTM if the bridge br0 has any IP, so I assign an IP on the bridge 10.10.11.4 to make the switch 2960 ping this UTM at 10.10.11.4.  Then I assign on the UTM the IP to the Vlan 801 as 10.10.11.5.  Then I put the wan into the UTM and the LAN to my switch............No internet. 

    If I remove the IP from the bridge and make it 0.0.0.0./0. then there is no more pinging from the switch to the UTM.  Though it should ping the VLan 801 ip 10.10.11.5, but no luck.

    Well here is my config from port 48 which is in trunk on the switch:

    Bur_Camp_Cisco2960#show interfaces trunk

    Port        Mode             Encapsulation  Status        Native vlan
    Gi0/48      auto             802.1q         trunking      1

    Port        Vlans allowed on trunk
    Gi0/48      1-4094

    Port        Vlans allowed and active in management domain
    Gi0/48      1,92,420,425,801

    Port        Vlans in spanning tree forwarding state and not pruned
    Gi0/48      1,92,420,425,801

    I will try one more time, but I am sure I have already tested this connection as well.

    I have checked with a BRAND NEW CISCO switch catalyst 2940 and UTM did the same thing 'NO internet' .  Either some routing path need to be set on UTM or UTM itself has some hardware/protocol adjustment.  Not sure.

    I am going to try now with a layer 3 switch.  Just in the process of getting one as these switches cost a fortune.  We have already spend a fortune buying this UTM at around $10K and now to make it happy need to topple the whole network infrastructure by buying more devices......Funny.

  • How precious are you about the lan subnet on the right hand side?

    Just as a test, set the UTM up without bridging so the 801 vlan becomes the WAN of the UTM. Have a totally different LAN subnet and use natting etc ie bog standard setup for the UTM. Test a ping from the UTM WAN to the Cisco from there to see if that works. The test from the LAN to see if you can reach the Cisco 2911.

    I have:

    LAN >>> 2x 3750 >>> 2x UTM SG310 >>> 2x 2960s >>> Internet so they do work. I can only think it's something to do with the bridging on the UTM as I've never set this up.

    But where 802.1q vlan's are involved on the UTM, the interfaces must be configure with ethernet vlan type (not just ethernet) and the Cisco's must have trunk set on the interfaces that connect to the UTM.

    If you are just using ethernet on the UTM, then it is sufficient to have switchport mode access on the Cisco's.

  • Ok here is I can try:

    - On my UTM I will assign Ethernet Vlan 801 to eth1 WAN port, assign it IP 10.10.11.4 (not sure to assign Proxy ARP or enable spanning tree protocol?) connect it to internet cable coming from my router cisco 2911.

    -On my UTM I will assign Ethernet Vlan 801 to eth 0 LAN port, assign it IP 192.168.0.5 (not sure to assign Proxy ARP or enable spanning tree protocol?), connect it to port 48 on my Cisco 2960 which is in trunk and allowing all Vlans.  Here I have to also allow 192.168.0.0/24 to my DHCP scope.  I am sure I have to change the IP of vlan 801 on my cisco 2960?.  This is you want me to check?

    Thanks