Management and Configuration Guide K/KA/KB.15.15
The switch does not allow any routed access from a specific host, group of hosts, or subnet...372
The switch is not performing routing functions on a VLAN.................................................372
Routing through a gateway on the switch fails.................................................................372
Remote gateway case.............................................................................................373
Local gateway case................................................................................................373
IGMP-related problems.....................................................................................................374
IP multicast (IGMP) traffic that is directed by IGMP does not reach IGMP hosts or a multicast
router connected to a port............................................................................................374
IP multicast traffic floods out all ports; IGMP does not appear to filter traffic........................374
LACP-related problems......................................................................................................374
Unable to enable LACP on a port with the interface port-number lacp command. In this
case, the switch displays the following message..............................................................374
Mesh-related problems.....................................................................................................374
Traffic on a dynamic VLAN does not get through the switch mesh......................................374
Port-based access control (802.1X)-related problems.............................................................374
The switch does not receive a response to RADIUS authentication requests..........................374
The switch does not authenticate a client even though the RADIUS server is properly configured
and providing a response to the authentication request....................................................375
During RADIUS-authenticated client sessions, access to a VLAN on the port used for the client
sessions is lost.............................................................................................................375
The switch appears to be properly configured as a supplicant, but cannot gain access to the
intended authenticator port on the switch to which it is connected......................................375
The supplicant statistics listing shows multiple ports with the same authenticator MAC
address.....................................................................................................................375
The show port-access authenticator <port-list> command shows one or more ports
remain open after they have been configured with control unauthorized.............................375
RADIUS server fails to respond to a request for service, even though the server's IP address is
correctly configured in the switch...................................................................................376
The authorized MAC address on a port that is configured for both 802.1X and port security
either changes or is re-acquired after execution of aaa port-access authenticator <port-list>
initialize.....................................................................................................................376
A trunked port configured for 802.1X is blocked..............................................................376
QoS-related problems......................................................................................................376
Loss of communication when using VLAN-tagged traffic....................................................376
Radius-related problems....................................................................................................376
The switch does not receive a response to RADIUS authentication requests..........................376
RADIUS server fails to respond to a request for service, even though the server's IP address is
correctly configured in the switch...................................................................................377
MSTP and fast-uplink problems..........................................................................................377
Broadcast storms appearing in the network.....................................................................377
STP blocks a link in a VLAN even though there are no redundant links in that VLAN............377
Fast-uplink troubleshooting............................................................................................378
SSH-related problems.......................................................................................................378
Switch access refused to a client....................................................................................378
Executing IP SSH does not enable SSH on the switch.......................................................378
Switch does not detect a client's public key that does appear in the switch's public key file
(show ip client-public-key).............................................................................................378
An attempt to copy a client public-key file into the switch has failed and the switch lists one of
the following messages................................................................................................378
Client ceases to respond ("hangs") during connection phase.............................................379
TACACS-related problems............................................................................................379
Event Log..............................................................................................................379
All users are locked out of access to the switch...........................................................379
No communication between the switch and the TACACS+ server application.................379
Access is denied even though the username/password pair is correct............................380
16 Contents