Right where to start, I can not for love nor money get 26 2530s switches to allow ssh or https access. The switches will accept the config and an example of one is provided.
; J9854A Configuration Editor; Created on release #YA.15.16.0006
; Ver #06:04.9c.63.ff.37.27:12
hostname "castle-comms"
timesync sntp
sntp unicast
sntp server priority 1 x.x.x.x
no telnet-server
no web-management
web-management ssl
ip route 0.0.0.0 0.0.0.0 x.x.x.x
interface 21
name "link-to-castle-comms-2nd-switch"
exit
interface 23
name "link-to-castle-prefab"
exit
interface 24
name "ground-castle-nurse"
exit
vlan 1
name "DEFAULT_VLAN"
no untagged 1-24
untagged 25-26
no ip address
exit
vlan 2
name "wired"
untagged 1-12,24
tagged 21,23
no ip address
exit
vlan 3
name "private-wifi"
untagged 13-20,22
tagged 21,23-24
no ip address
exit
vlan 4
name "public-wifi"
tagged 21,23-24
no ip address
exit
vlan 5
name "community"
tagged 21,23-24
no ip address
exit
vlan 6
name "servers"
tagged 21,23-24
ip address x.x.x.x x.x.x.x
exit
no tftp server
no dhcp config-file-update
no dhcp image-file-update
no dhcp tr69-acs-url
password manager
password operator
I can see the certs after I create them but I cant not access the switches via ssh or https. To add confusion to the matter, I can not ping the switches either once they are on the network.
The core switch is a netgear (i know, but this is being replaced with a 5500 once I resolve these issues), yet the core is working without issue.
And lastly, I can not at this time upgrade the firmware as the tftp steps is providing an error. Cant recall at this time what it is.
The rest of the network is made up of 1920s switches which are working fine, ssh, https all good.
Steps taken, rebuild the switches, deleted crypto keys for ssh and pki. Reconfig those but still no joy. Also rebuild the switches offline and provided myself with a static IP and still no joy.
Apart from launch these switches into the sea, I am questioning either fireware or hardware failure.
Has anyone seen this before or any tips on next steps.
Thanks....
#ping#ssh#2530#https