|
|
Although AppleTalk is a proprietary network, Apple has published AppleTalk specifications in an attempt to encourage third-party development. Today, many companies---including Novell, Inc., and Microsoft Corporation---are successfully marketing AppleTalk-based products.
The original implementation of AppleTalk, which was designed for local workgroups, is now commonly referred to as AppleTalk Phase 1. With the installation of more than 1.5 million Macintosh computers in the first five years of the product's life, however, Apple found that some large corporations were exceeding the built-in limits of AppleTalk Phase 1, so they enhanced the protocol. The enhanced protocol, known as AppleTalk Phase 2, improved the routing capabilities of AppleTalk and allowed AppleTalk to run successfully in larger networks.
In Figure 9-1, AppleTalk protocols are shown adjacent to the OSI reference model layers to which they map.
Apple designed AppleTalk to be link-layer independent. In other words, it can theoretically run on top of any link-layer implementation. Apple supports a variety of link-layer implementations, including Ethernet, Token Ring, Fiber Distributed Data Interface (FDDI), and LocalTalk. Apple refers to AppleTalk over Ethernet as EtherTalk, to AppleTalk over Token Ring as TokenTalk, and to AppleTalk over FDDI as FDDITalk. The link-layer protocols that support AppleTalk over these media are EtherTalk Link Access Protocol (ELAP), LocalTalk Link Access Protocol (LLAP), TokenTalk Link Access Protocol (TLAP), and FDDITalk Link Access Protocol (FLAP). LocalTalk is Apple's proprietary media-access system. It is based on contention access, bus topology, and baseband signaling, and runs on shielded twisted-pair media at 230.4 kbps. The physical interface is EIA/TIA-422 (formerly RS-422), a balanced electrical interface supported by EIA/TIA-449 (formerly RS-449). LocalTalk segments can span up to 300 meters and support a maximum of 32 nodes.
To ensure minimal network administrator overhead, AppleTalk node addresses are assigned dynamically. When a Macintosh running AppleTalk starts up, it chooses a protocol (network-layer) address and checks whether that address is currently in use. If it is not, the new node has successfully assigned itself an address. If the address is currently in use, the node with the conflicting address sends a message indicating a problem, and the new node chooses another address and repeats the process. Figure 9-2 shows the AppleTalk address selection process.
AppleTalk identifies several network entities. The most elemental is a node, which is simply any device connected to an AppleTalk network. The most common nodes are Macintosh computers and laser printers, but many other types of computers are also capable of AppleTalk communication, including IBM PCs, Digital Equipment Corporation VAX computers, and a variety of workstations. The next entity defined by AppleTalk is the network. An AppleTalk network is simply a single logical cable. Although the logical cable is frequently a single physical cable, some sites use bridges to interconnect several physical cables. Finally, an AppleTalk zone is a logical group of (possibly noncontiguous) networks. These AppleTalk entities are shown in Figure 9-4.
AppleTalk's primary network-layer protocol is the Datagram Delivery Protocol (DDP). DDP provides connectionless service between network sockets. Sockets can be assigned either statically or dynamically.
AppleTalk Phase 2 distinguishes between nonextended and extended networks. In a nonextended network such as LocalTalk, each AppleTalk node number is unique. Nonextended networks were the sole network type defined in AppleTalk Phase 1. In an extended network such as EtherTalk and TokenTalk, each network number/node number combination is unique.
AppleTalk's transport layer is implemented by several protocols: Routing Table Maintenance Protocol (RTMP), AppleTalk Update Routing Protocol (AURP), AppleTalk Echo Protocol (AEP), AppleTalk Transaction Protocol (ATP), and Name Binding Protocol (NBP).
The protocol that establishes and maintains AppleTalk routing tables is RTMP. RTMP routing tables contain an entry for each network that a datagram can reach. Each entry includes the router port that leads to the destination network, the node ID of the next router to receive the packet, the distance in hops to the destination network, and the current state of the entry (good, suspect, or bad). Periodic exchange of routing tables allows the routers in an internetwork to ensure that they supply current and consistent information. Figure 9-4 shows a sample RTMP table and the corresponding network architecture.
Zones allow name lookup in a group of logically related nodes. To look up names within a zone, an NBP lookup request is sent to a local router, which sends a broadcast request to all networks that have nodes belonging to the target zone. The Zone Information Protocol (ZIP) coordinates this effort.
ZIP maintains network number-to-zone name mappings in zone information tables (ZITs). ZITs are stored in routers, which are the primary users of ZIP, but end nodes use ZIP during the startup process to choose their zone and to acquire internetwork zone information. ZIP uses RTMP routing tables to keep up with network topology changes. When ZIP finds a routing table entry that is not in the ZIT, it creates a new ZIT entry. Figure 9-5 shows a sample ZIT.
AURP allows a network administrator to connect two or more AppleTalk internetworks through a foreign network (such as Transmission Control Protocol/Internet Protocol [TCP/IP]) to form an AppleTalk wide-area network (WAN). The connection is called a tunnel, which functions as a single, virtual data link between the AppleTalk internetworks, as shown in Figure 9-6.
A router that connects an AppleTalk internetwork to a tunnel (that is, a router that runs AURP) is called an exterior router. The exterior router sends AppleTalk data packets and routing information through the foreign network by encapsulating the packets with the header information required by the foreign network system. The receiving exterior router removes the foreign header information and sends the packets out the appropriate interface. Packets are encapsulated in User Datagram Protocol (UDP) headers in the initial implementation of AURP.
When only two exterior routers are connected to a tunnel, that tunnel is called a point-to-point tunnel. When more than two exterior routers are connected to the tunnel, that tunnel is called a multi-point tunnel. If all exterior routers connected to a multipoint tunnel can send packets to each other, the tunnel is said to be fully connected. If one or more exterior routers are not aware of other exterior routers, the tunnel is said to be partially connected. Each exterior router functions both as an AppleTalk router within its local internetwork and as an end node in the foreign network that connects the AppleTalk internetworks.
The main function of AURP is to maintain accurate routing tables for the entire AppleTalk WAN by the exchange of routing information between exterior routers. In addition, AURP encapsulates AppleTalk data packets with the headers required by the foreign network.
When an exterior router becomes aware of another exterior router on the tunnel, the two exterior routers exchange their lists of network numbers and associated zone information. Thereafter, an exterior router sends routing information only when the following events occur:
When an exterior router receives AppleTalk data packets or routing information that needs to be forwarded over the tunnel, the AURP module converts that information to AURP packets. The AURP packets are encapsulated in the header information required by the foreign network and sent over the tunnel to the destination exterior router, as shown in Figure 9-7.
At the destination exterior router, the AURP module removes the headers required by the foreign system from the AURP packets and sends AppleTalk data packets to their final destination. The exterior router uses the AURP packets that contain routing information to update its routing information tables but does not propagate that information to any other exterior router.
ATP is suitable for transaction-based applications such as those found in banks or retail stores. ATP transactions consist of requests (from clients) and replies (from servers). Each request/reply pair has a particular transaction ID. Transactions occur between two socket clients. ATP uses exactly once (XO) and at-least-once (ALO) transactions. XO transactions are used in situations where performing the transaction more than once would be unacceptable. Banking transactions are examples of transactions that, if performed more than once, result in invalid data.
ATP is capable of most important transport-layer functions, including data acknowledgment and retransmission, packet sequencing, and fragmentation and reassembly. ATP limits message segmentation to eight packets, and ATP packets cannot contain more than 578 data bytes.
AppleTalk supports several upper-layer protocols:
This section presents protocol-related troubleshooting information for AppleTalk connectivity and performance problems. In addition to general AppleTalk problems, this chapter also covers AppleTalk Enhanced IGRP, AppleTalk Remote Access (ARA), AURP, and FDDITalk problems.
The section "AppleTalk Configuration and Troubleshooting Tips" discusses preventive measures and tips to help you configure and troubleshoot your AppleTalk internetwork. The remaining sections describe specific AppleTalk symptoms, the problems that are likely to cause each symptom, and the solutions to those problems.
The following sections cover the most common network issues in AppleTalk environments:
It consists of information on preventing AppleTalk problems, preventing internetwork reconfiguration problems, changing zone names, using AppleTalk Discovery Mode, and forcing an interface up to allow a router to start functioning if the network is misconfigured.
Table 9-1 lists suggestions to help you avoid problems when configuring a router for AppleTalk.
| Preventive Action | Description |
|---|---|
Every router connected to a | Every router on an AppleTalk network (that is, on a single cable segment) must agree on the configuration of the network. Therefore, network numbers, cable ranges, timer values, zone names, and other parameters should be the same for every router on the segment. |
Every network number in an internetwork must | Network numbers must be unique throughout the entire AppleTalk network. Duplicate network numbers can cause connectivity- and performance-related problems. |
To minimize interoperability problems, upgrade all router Ethernet interfaces to Phase 2. Phase 1/Phase 2 networks can be problematic, as can nonextended AppleTalk networks. | |
When you change a router or interface configuration, enable the debug apple error privileged exec command to log errors | The debug apple error privileged exec command tracks the progress and status of changes in the internetwork and alerts you to any errors. You can also run this command periodically when you suspect network problems. In a stable network, this command returns no output. You can establish a syslog server at your site and add the configuration command appletalk event-logging to the router. This keeps a running log, with timestamps, of significant events on your network. Disable this command with the no debug apple error command when you have completed diagnostic activities. |
Design your network | Careful zone mapping can minimize unnecessary NBP1 traffic. Planning is particularly important in WANs where traffic traversing WAN links (such as X.25) can be quite expensive. In System 6, if a user opens the Chooser, the Macintosh continually sends NBP BrReq packets. In System 7, a logarithmic backoff minimizes the amount of traffic generated. Give all the backbone/WAN connections the same zone name rather than put them in a zone with a LAN. In most internetworks, it is not desirable to have the zone names for all backbone or WAN connections appear in the Chooser list. If you make the zone name of all the WAN links the same (for example, ZZSerial), only that entry appears in the Chooser menu. |
Set AppleTalk timers to | A stable network almost never has nondefault timer values configured. Timers should be consistently set to the same value throughout the internetwork, or at a minimum, throughout the backbone of the internetwork. Check with a qualified technical support representative before changing AppleTalk default timer values. |
| 1NBP = Name Binding Protocol |
When running the test appletalk facility, use the confirm option to check that a name of a specified type is registered on a device. For example, nbp confirm 24279.173 my-mac:AFPServer@engineering confirms that the name my-mac is registered on the device 24279.173 in the engineering zone. The object type is AFPServer. The syntax for the nbp confirm command is as follows:
nbp confirm appletalk-address [:skt] object:type@zoneThe syntax description is as follows:
:skt---(Optional) Name of socket.
In software releases prior to Cisco IOS Release 11.0, the ping appletalk exec command serves a similar function. Use this command to verify that a node is reachable from the router (for example, ping appletalk 2.24 pings AppleTalk node 2.24).
The following display shows input to and output from the user ping command:
Router> ping appletalk 2.24Type escape sequence to abort.Sending 5, 100-byte AppleTalk Echoes to 2.24, timeout is 2 seconds:!!!!!Success rate is 100 percent, round-trip min/avg/max = 4/4/8 ms
The ping privileged exec command also supports several AppleTalk parameters that provide -additional troubleshooting capabilities. In particular, use the NBP option when AppleTalk zones are listed in the Chooser but services are not available. If a configuration contains the appletalk name-lookup-interval global configuration command, the NBP option of the AppleTalk ping function displays nodes by their NBP registration names.
Many devices can act as routers (for example, Novell servers, Pathworks servers, or UNIX workstations running CAP to do print and file sharing). In general, if you are changing zone names or cable range numbers in your internetwork, shut down all routers so that a Cisco router does not see a conflict and prevent AppleTalk from initializing on the interface.
Before changing the configuration, use the show appletalk neighbors exec command to determine on which routers you should disable AppleTalk routing.You should disable AppleTalk on all routers that are on the same network segment and that have sent RTMP updates in the past 10 seconds. Disable AppleTalk routing on all of the appropriate interfaces, wait approximately 10 minutes, and then bring up the seed router.
When changing a zone name on an existing network, perform the following actions:
Step 1 Disable AppleTalk on all router interfaces on the cable for approximately 10 minutes. This allows all routers in the internetwork to age out the network number from their routing tables.
Step 2 Configure the new zone list.
Step 3 Re-enable AppleTalk on all interfaces.
These actions are required because AppleTalk makes no provisions for informing neighbors in the internetwork about a changed zone list. Routers make ZIP queries only when a new (or previously aged-out) network appears on the internetwork.
Adding a new zone to an extended cable configuration prevents the router from bringing up an AppleTalk interface after the interface has been reset. This is because its configuration no longer matches that of its neighbors (that is, it detects a configuration mismatch error).
When bringing up an interface on an existing cable where a long zone list is defined, using AppleTalk discovery mode helps you save effort and avoid mistakes.
The following steps outline bringing up an interface in discovery mode:
Step 1 Bring up the interface in discovery mode (using the appletalk cable-range 0-0 interface configuration command). When a router is in discovery mode, the router changes its configuration to match the advertised cable range if the advertised cable range is different from that configured on the router. The debug apple events privileged exec command lets you know when the discovery process is complete by displaying an "operational" message.
Step 2 After discovery is complete, and while in interface configuration mode, enter the no appletalk discovery interface configuration command for the specific AppleTalk interface being initialized. This saves the acquired information and forces the configuration to be validated at port startup.
Step 3 Use the copy running-config startup-config privileged exec command to save the acquired information to nonvolatile RAM (NVRAM).
Step 4 Verify the configuration with the show running-config privileged exec command.
In certain situations, you might need to force an interface to come up even though its zone list conflicts with that of another router on the network. You can do this by using the appletalk ignore--verify-errors global configuration command. Usually the other router is one over which you have no administrative control but which you know has an incorrect zone list.
The appletalk ignore-verify-errors command allows you to bypass the default behavior of an AppleTalk interface. By default, the AppleTalk interface does not come up if its zone list conflicts with that of its neighbors. However, you should use this command with extreme caution; bringing up an interface with a zone list that conflicts with that of other routers can cause serious network problems. In addition, the other router must be reconfigured at some point so that all the routers in the internetwork agree on the zone list.
After all the AppleTalk routers on the network segment have conforming zone lists, disable the appletalk ignore-verify-errors command using the no form of the command. For complete information on the appletalk ignore-verify-errors global configuration command, see the Cisco IOS Network Protocols Command Reference, Part 1.
Symptom: Users cannot access zones or services that appear in the Chooser. Users might or might not be able to access services on their own network.
Table 9-2 outlines the problems that might cause this symptom and describes solutions to those problems.
| Possible Problems | Solution |
|---|---|
Configuration mismatch | Step 1 Use the show appletalk interface exec command. Check the output for a "port configuration mismatch" message. If the command output contains a "mismatch" message, the router configuration disagrees with that of the listed neighbor. If the command output does not include the "mismatch" message, use the clear apple interface privileged exec command on the interface in question. If the interface becomes operational after clearing, a configuration mismatch does not exist. Step 2 Enter the show appletalk interface exec command again. If its output still contains a "port configuration mismatch" message, check whether all router configurations agree on the network number or cable range and the zone or zone list. Step 3 If router configurations disagree on these parameters, alter router configurations to bring all routers into alignment. Step 4 If problems persist, put the problem router in discovery mode by specifying the interface configuration command appletalk address 0.0 on a nonextended network or the appletalk cable-range 0-0 command on an extended network. This causes the router to get its configuration information from the network. For more information about configuration mismatches, see the section "AppleTalk Configuration Mismatches" later in this chapter. |
In AppleTalk, network numbers must be unique within an internetwork. If duplicate network numbers exist, packets might not be routed to their intended destinations. If AppleTalk services do not appear in the Chooser for particular networks, those networks probably have duplicate network numbers. Step 1 Change the network number or cable-range of the suspect network to a unique value using the appletalk cable-range interface configuration command. Step 2 Use the show appletalk route privileged exec command to view the routing table. If the network number or cable-range continues to appear in routing tables, you have found the duplicate (because the other network using that number will continue to send routing updates). If the network number or cable-range disappears from the internetwork after 40 seconds, you have not found the duplicate. Change the network number or cable-range specification back to its previous value and try again to isolate the duplicate network number. Step 3 If you changed the network number or cable-range on the interface, remember to reenter the zone name and any other interface configurations for AppleTalk on that interface. | |
Phase 1 and Phase 2 | Step 1 Use the show appletalk globals exec command to determine whether the internetwork is in compatibility mode. Step 2 Enable the appletalk name-lookup-interval global configuration command and use the show appletalk neighbors exec command to determine which specific neighbor (by NBP1 name) is in compatibility mode. Step 3 To resolve the problem, you can perform one of the following actions:
For more information on Phase 1 and Phase 2 rule violations, see the section "Phase 1 and Phase 2 Rule Violations" later in this chapter. |
Misconfigured access | Step 1 Use the show appletalk access-list exec command on routers in the path from source to destination. Step 2 Disable any access lists (or just those on a particularly suspect router) using the no appletalk access-group interface configuration command. If there are distribution lists or other filters configured, disable them. Step 3 After disabling access lists, check whether remote zones and services become accessible. Step 4 If zones and services are now available, a misconfigured access list is the likely problem. To isolate the problem access list, enable lists one at a time until connectivity fails. Step 5 Check the access lists and associated configuration commands for errors. Configure explicit permit statements for traffic that you want to pass through the router normally. Step 6 If problems persist, there might be more than one misconfigured access list. Continue enabling access lists one at a time and fixing misconfigured access lists until the problem is solved. |
| 1NBP = Name Binding Protocol |
A configuration mismatch occurs if all the AppleTalk routers on a given cable do not agree on the configuration of that cable. This means that all routers must have matching network numbers, a matching default zone, and a matching zone list.
To protect against configuration errors that violate this rule, Cisco AppleTalk routers block activation of any port on which a violation of this rule exists. At interface initialization, if other routers on the network do not agree with the way a router is configured, the router does not allow AppleTalk to become operational on that interface. Cisco routers attempt to restart such an interface every two minutes to avoid outages that result from transient conditions.
However, if the router is already operational and another router whose configuration does not match becomes active, the router continues to operate on that interface until the interface is reset. At that point, the interface fails to become active. When the show appletalk interface exec command is issued, the router indicates a port configuration mismatch.
The following is sample output from the show appletalk interface command when a configuration mismatch exists:
Ethernet 0 is up, line protocol is up AppleTalk routing disabled, Port configuration mismatch AppleTalk cable range is 4-5 AppleTalk address is 4.252, Valid AppleTalk zone is "Maison Vauquer" AppleTalk port configuration conflicts with 4.156 AppleTalk discarded 8 packets due to input errors AppleTalk discarded 2 packets due to output errors AppleTalk route cache is disabled, port initializing
Line 2 of the command output shows that routing has been disabled due to a port configuration mismatch. Line 6 indicates the AppleTalk address of the conflicting router.
You can also display the NBP registered name of the conflicting router, which can simplify -resolution of a port mismatch problem. To see registered NBP names, enable the appletalk name-lookup-interval global configuration command. This causes the show appletalk interface exec command output to display nodes by NBP registration name.
If these rules are not followed, connectivity between the nonextended and extended portions of an internetwork becomes degraded and might be lost. In particular, services located on nonextended networks using Phase 1 routers will not be visible on the other side of the Phase 1 router.
Another Phase 1 and Phase 2 issue is the handling of NBP packets. Phase 1 AppleTalk has three types of NBP packets, and Phase 2 AppleTalk has four types of NBP packets. This difference can lead to communication problems between Phase 1 and Phase 2 routers. Table 9-3 lists the NBP packet types for AppleTalk Phase 1 and Phase 2.
| Phase 1 NBP Packet | Phase 2 NBP Packet |
|---|---|
BrRq (Broadcast Request) | BrRq (Broadcast Request) |
--- | FwdReq (Forward Request) |
LkUp (Lookup) | LkUp (Lookup) |
LkUp-Reply (Lookup Reply) | LkUp-Reply (Lookup Reply) |
As shown in Table 9-3 , Forward Request packets do not exist in Phase 1. Only Phase 2 routers know what to do with them. Phase 1 routers that receive Forward Request packets simply drop them.
Table 9-4 outlines the problems that might cause this symptom and describes solutions to those problems.
| Possible Problems | Solution |
|---|---|
Configuration mismatch | Step 1 Use the show appletalk interface exec command. Check the output for a "port configuration mismatch" message. If the command output contains a "mismatch" message, the router configuration disagrees with that of the listed neighbor. If the command output does not include the "mismatch" message, use the clear apple interface privileged exec command on the interface in question. If the interface becomes operational after clearing, a configuration mismatch does not exist. Step 2 Enter the show appletalk interface exec command again. If its output still contains a "port configuration mismatch" message, check whether all router configurations agree on the network number or cable range and the zone or zone list. Step 3 If router configurations disagree on these parameters, alter router configurations to bring all routers into alignment. Step 4 If problems persist, put the problem router in discovery mode by specifying the interface configuration command appletalk address 0.0 on a nonextended network or the appletalk cable-range 0-0 command on an extended network. This causes the router to get its configuration information from the network. For more information about configuration mismatches, see the section "AppleTalk Configuration Mismatches" earlier in this chapter. |
Step 1 Use the show appletalk access-list exec command on routers in the path from source to destination. Step 2 Disable any access lists (or just those on a particularly suspect router) using the no appletalk access-group interface configuration command. If there are distribution lists or other filters configured, disable them. Step 3 After disabling access lists, check whether remote zones and services become accessible. Step 4 If zones and services are now available, a misconfigured access list is the likely problem. To isolate the problem access list, enable lists one at a time until connectivity fails. Step 5 Check the access lists and associated configuration commands for errors. Configure explicit permit statements for traffic that you want to pass through the router normally. Step 6 If problems persist, there might be more than one misconfigured access list. Continue enabling access lists one at a time and fixing misconfigured access lists until the problem is solved. | |
Route flapping | Excessive traffic load on internetworks with many routers can prevent some routers from sending RTMP1 updates every 10 seconds as they should. Because routers begin to age out routes after missing two consecutive RTMP updates, the inconsistent arrival of RTMP updates can result in constant route changes. Step 1 Use the show interfaces exec command to check the traffic load. Check the load for each interface. The following example is output from the show interfaces command: Ethernet0 is up, line protocol is up Hardware is Lance, address is 0000.0c32.49b1 (bia 0000.0c32.49b1) Internet address is 192.168.52.26/24 MTU 1500 bytes, BW 10000 Kbit, DLY 1000 usec, rely 255/255, load 1/255 [...] |
Route flapping | The load field displayed in the show interfaces command is the load on the interface as a fraction of 255 (255/255 is completely saturated), calculated as an exponential average over five minutes. Step 2 If the load is less than 50%, reconfiguring timer values might solve the problem by allowing RTMP updates more time to propagate through the network. If the load is more than 50%, you might need to segment the network to reduce the number of routers (and therefore the amount of traffic) on each network segment. Step 3 Use the debug apple events privileged exec command to determine whether routes are being aged incorrectly. The output should resemble the following: Router#debug apple events AppleTalk Events debugging is on Router# %AT-6-PATHNOTIFY: Ethernet0: AppleTalk RTMP path to 250-250 down; reported bad by 200.41 Caution: Because debugging output is assigned high priority in the CPU process, it can render the system unusable. For this reason, use debug commands only to troubleshoot specific problems or during troubleshooting sessions with Cisco technical support staff. Moreover, it is best to use debug commands during periods of lower network traffic and fewer users. Debugging during these periods decreases the likelihood that increased debug command processing overhead will affect system use. Step 4 If routes are being aged incorrectly, use the appletalk timers global configuration command to correct the problem. Suggested timer values are 10, 30, and 90 to start, but do not exceed 10, 40, and 120. The first number must always be 10, and the third value should be three times the second. You can return the timers to their defaults (10, 20, 60) by using the no appletalk timers global configuration command. Timers should be consistently set to the same value throughout the internetwork, or at a minimum, throughout the backbone of the internetwork. |
ZIP storm | A ZIP storm occurs when a router propagates a route for which it currently has no corresponding zone name; the route is then propagated by downstream routers. Note: Cisco routers provide a firewall against ZIP storms in the internetwork. If a Cisco router receives a routing update from a neighbor, it does not propagate that new route until it receives the accompanying zone name. Step 1 Use the show appletalk traffic command and check the field showing the number of ZIP requests. The following example is output from the show appletalk traffic command: Router#sh apple traffic [...] ZIP: 44 received, 35 sent, 6 netinfo [...] Router# Compare this output with the output shown by the command 30 seconds later. Step 2 If the traffic counters for ZIP requests are incrementing very rapidly (by more than 10 every 30 seconds), a ZIP storm is probably occurring. Use the debug apple zip privileged exec command to identify the network for which the zone is being requested by neighboring routers. You can also use the show apple private exec command to check the number of pending ZIP requests. Step 3 Identify the router that injected the network number into the internetwork (and that is causing the excessive ZIP traffic). The show appletalk traffic and show appletalk route exec commands provide information that can help you find the suspect router. |
ZIP storm | For example, you can use the show appletalk route exec command to view the AppleTalk routing table. Check whether a network shows up in the routing table, even though the display indicates that no zone is set. If you find a network for which no zone is set, a node on that network is probably not responding to ZIP requests, resulting in the ZIP storm. Step 4 Determine why the node is not responding to ZIP requests. Access lists or other filters might be the cause. ZIP storms can also result from a defect in the software running on the node. Contact the vendor to determine whether there is a known problem. |
Too many zones in | The Chooser in System 6 can display only a limited number of zones, which presents problems in large internetworks that have many zones. If the Macintosh is running a version of System 6, upgrade it to System 7 or System 7.5. |
| 1RTMP = Routing Table Maintenance Protocol |
Table 9-5 outlines the problem that might cause this symptom and describes solutions to that -problem.
| Possible Problems | Solution |
|---|---|
Misconfigured access lists | Step 1 Use the show appletalk access-list exec command on routers in the path from source to destination. Step 2 Disable any access lists (or just those on a particularly suspect router) using the no appletalk access-group interface configuration command. Step 3 After disabling access lists, check whether devices appear in the Chooser. Step 4 If devices now appear in the Chooser, a misconfigured access list is probably filtering NBP traffic. To isolate the problem access list, enable lists one at a time until devices no longer appear. Step 5 Check the access lists and associated configuration commands for errors. Configure explicit permit statements for traffic that you want to pass through the router normally. Step 6 If problems persist, there might be more than one misconfigured access list. Continue enabling access lists one at a time and fixing misconfigured access lists until the problem is solved. For detailed information about filtering NBP traffic using access lists, refer to the Cisco IOS Network Protocols Configuration Guide, Part 1. |
Symptom: Network services are intermittently unavailable. Services come and go without warning.
Table 9-6 outlines the problems that might cause this symptom and describes solutions to those problems.
| Possible Problems | Solution |
|---|---|
Duplicate network numbers or overlapping cable-range | In AppleTalk, network numbers must be unique within an internetwork. If duplicate network numbers exist, packets might not be routed to their intended destinations. If AppleTalk services do not appear in the Chooser for particular networks, those networks probably have duplicate network numbers. Step 1 Change the network number or cable-range of the suspect network to a unique value using the appletalk cable-range interface configuration command. Step 2 Use the show appletalk route privileged exec command to view the routing table. If the network number or cable-range continues to appear in routing tables, you have found the duplicate (because the other network using that number will continue to send routing updates). If the network number or cable-range disappears from the internetwork after 40 seconds, you have not found the duplicate. Change the network number or cable-range specification back to its previous value and try again to isolate the duplicate network number. Step 3 If you changed the network number or cable-range on the interface, remember to reenter the zone name and any other interface configurations for AppleTalk on that interface. |
Route flapping | Excessive traffic load on internetworks with many routers can prevent some routers from sending RTMP updates every 10 seconds as they should. Because routers begin to age out routes after missing two consecutive RTMP updates, the inconsistent arrival of RTMP updates can result in constant route changes. Step 1 Use the show interfaces exec command to check the traffic load. Check the load for each interface. The following example is output from the show interfaces command: Ethernet0 is up, line protocol is up Hardware is Lance, address is 0000.0c32.49b1 (bia 0000.0c32.49b1) Internet address is 192.168.52.26/24 MTU 1500 bytes, BW 10000 Kbit, DLY 1000 usec, rely 255/255, load 1/255 [...] The load field displayed in the show interfaces command is the load on the interface as a fraction of 255 (255/255 is completely saturated), calculated as an exponential average over five minutes. Step 2 If the load is less than 50%, reconfiguring timer values might solve the problem by allowing RTMP updates more time to propagate through the network. If the load is more than 50%, you might need to segment the network to reduce the number of routers (and therefore the amount of traffic) on each network segment. Step 3 Use the debug apple events privileged exec command to determine whether routes are being aged incorrectly. The output should resemble the following: Router#debug apple events AppleTalk Events debugging is on Router# %AT-6-PATHNOTIFY: Ethernet0: AppleTalk RTMP path to 250-250 down; reported bad by 200.41 The debug apple events command is useful for solving AppleTalk network problems because it provides an overall picture of the stability of the network. In a stable network, the debug apple events command does not return any information. If, however, the command generates numerous messages, the messages can indicate where the problems might lie. |
Route flapping | Turning on debug apple events will not cause apple event-logging to be maintained in nonvolatile memory. Only turning on apple event-logging explicitly will store it in nonvolatile memory. Furthermore, if apple event-logging is already enabled, turning on or off debug apple events will not affect apple event-logging. Caution: Because debugging output is assigned high priority in the CPU process, it can render the system unusable. For this reason, use debug commands only to troubleshoot specific problems or during troubleshooting sessions with Cisco technical support staff. Moreover, it is best to use debug commands during periods of lower network traffic and fewer users. Debugging during these periods decreases the likelihood that increased debug command processing overhead will affect system use. Step 4 If routes are being aged incorrectly, use the appletalk timers global configuration command to correct the problem. Suggested timer values are 10, 30, and 90 to start, but do not exceed 10, 40, and 120. The first number must always be 10, and the third value should be three times the second. You can return the timers to their defaults (10, 20, 60) by using the no appletalk timers global configuration command. Timers should be consistently set to the same value throughout the internetwork, or at a minimum, throughout the backbone of the internetwork. |
A ZIP storm occurs when a router propagates a route for which it currently has no corresponding zone name; the route is then propagated by downstream routers. Note: Cisco routers provide a firewall against ZIP storms in the internetwork. If a Cisco router receives a routing update from a neighbor, it does not propagate that new route until it receives the accompanying zone name. | |
ZIP storm | Step 1 Use the show appletalk traffic command to check the field showing the number of ZIP requests: Router#sh apple traffic [...] ZIP: 44 received, 35 sent, 6 netinfo [...] Router# Compare this output with the output shown by the command 30 seconds later. Step 2 If the traffic counters for ZIP requests are incrementing very rapidly (by more than 10 every 30 seconds) a ZIP storm is probably occurring. Use the debug apple zip privileged exec command to identify the network for which the zone is being requested by neighboring routers. You can also use the show apple private exec command to check the number of pending ZIP requests. Step 3 Identify the router that injected the network number into the internetwork (and that is causing the excessive ZIP traffic). The show appletalk traffic and show appletalk route exec commands provide information that can help you find the suspect router. For example, you can use the show appletalk route exec command to view the AppleTalk routing table. Check whether a network shows up in the routing table, even though the display indicates that no zone is set. If you find a network for which no zone is set, a node on that network is probably not responding to ZIP requests, resulting in the ZIP storm. Step 4 Determine why the node is not responding to ZIP requests. Access lists or other filters might be the cause. ZIP storms can also result from a defect in the software running on the node. Contact the vendor to determine whether there is a known problem. |
Table 9-7 outlines the problems that might cause this symptom and describes solutions to those problems.
| Possible Problems | Solution |
|---|---|
Configuration mismatch | Step 1 Use the show appletalk interface exec command. Check the output for a "port configuration mismatch" message. If the command output contains a "mismatch" message, the router configuration disagrees with that of the listed neighbor. If the command output does not include the "mismatch" message, use the clear apple interface privileged exec command on the interface in question. If the interface becomes operational after clearing, a configuration mismatch does not exist. Step 2 Enter the show appletalk interface exec command again. If its output still contains a "port configuration mismatch" message, check whether all router configurations agree on network number or cable range and the zone or zone list. Step 3 If router configurations disagree on these parameters, alter router configurations to bring all routers into alignment. Step 4 If problems persist, put the problem router in discovery mode by specifying the interface configuration command appletalk address 0.0 on a nonextended network or the appletalk cable-range 0-0 command on an extended network. This causes the router to get its configuration information from the network. For more information about configuration mismatches, see the section "AppleTalk Configuration Mismatches" earlier in this chapter. |
Invalid zone names in routing table | AppleTalk does not provide a way to update ZIP tables when changing the mapping of zone names to networks or cable ranges. For example, if the zone name for network number 200 is Twilight Zone, but you decide to change the zone to No Parking Zone, the zone name on the interface can be changed, and the new zone name takes effect locally. However, unless you keep network 200 off the internetwork long enough for it to be completely aged out of the routing tables, some routers will continue to use the old zone name (this is called a phantom zone). Alternatively, if you cannot keep the network off the internetwork that long, change the underlying network number when you change the zone name of a cable. Step 1 Use the show running-config privileged exec command to view the router configuration. Check the network numbers configured for each AppleTalk interface. Step 2 Make sure that there are no network numbers configured that were previously assigned to a zone that has been deleted. Change the cable-range using the appletalk cable-range interface configuration command or disable the network until it is aged out of routing tables. Step 3 Use the show appletalk zones command to verify that the zone no longer appears in the zone list. |
Symptom: Users complain that their AppleTalk sessions suddenly drop for no apparent reason.
Table 9-8 outlines the problem that might cause this symptom and describes solutions to that -problem.
| Possible Problems | Solution |
|---|---|
Route flapping | Excessive traffic load on internetworks with many routers can prevent some routers from sending RTMP updates every 10 seconds as they should. Because routers begin to age out routes after missing two consecutive RTMP updates, the inconsistent arrival of RTMP updates can result in constant route changes. Step 1 Use the show interfaces exec command to check the traffic load. Check the load for each interface. The following example is output from the show interfaces command: Ethernet0 is up, line protocol is up Hardware is Lance, address is 0000.0c32.49b1 (bia 0000.0c32.49b1) Internet address is 192.168.52.26/24 MTU 1500 bytes, BW 10000 Kbit, DLY 1000 usec, rely 255/255, load 1/255 [...] The load field displayed in the show interfaces command is the load on the interface as a fraction of 255 (255/255 is completely saturated), calculated as an exponential average over five minutes. Step 2 If the load is less than 50%, reconfiguring timer values might solve the problem by allowing RTMP updates more time to propagate through the network. If the load is more than 50%, you might need to segment the network to reduce the number of routers (and therefore the amount of traffic) on each network segment. Step 3 Use the debug apple events privileged exec command to determine whether routes are being aged incorrectly. The output should resemble the following: Router#debug apple events AppleTalk Events debugging is on Router# %AT-6-PATHNOTIFY: Ethernet0: AppleTalk RTMP path to 250-250 down; reported bad by 200.41 |
Caution: Because debugging output is assigned high priority in the CPU process, it can render the system unusable. For this reason, use debug commands only to troubleshoot specific problems or during troubleshooting sessions with Cisco technical support staff. Moreover, it is best to use debug commands during periods of lower network traffic and fewer users. Debugging during these periods decreases the likelihood that increased debug command processing overhead will affect system use. Step 4 If routes are being aged incorrectly, use the appletalk timers global configuration command to correct the problem. Suggested timer values are 10, 30, and 90 to start, but do not exceed 10, 40, and 120. The first number must always be 10, and the third value should be three times the second. You can return the timers to their defaults (10, 20, 60) by using the no appletalk timers global configuration command. Timers should be consistently set to the same value throughout the internetwork, or at a minimum, throughout the backbone of the internetwork. |
Symptom: Router interface connected to a network will not initialize AppleTalk.
Table 9-9 outlines the problems that might cause this symptom and describes solutions to those problems.
| Possible Problems | Solution |
|---|---|
Configuration mismatch | Step 1 Use the show appletalk interface exec command. Check the output for a "port configuration mismatch" message. If the command output contains a "mismatch message," the router configuration disagrees with that of the listed neighbor. If the command output does not include the "mismatch" message, use the clear apple interface privileged exec command on the interface in question. If the interface becomes operational after clearing, a configuration mismatch does not exist. Step 2 Enter the show appletalk interface exec command again. If its output still contains a "port configuration mismatch" message, check to see whether all router configurations agree on network number or cable range and the zone or zone list. Step 3 If router configurations disagree on these parameters, alter router configurations to bring all routers into alignment. Step 4 If problems persist, put the problem router in discovery mode by specifying the interface con- figuration command appletalk address 0.0 on a nonextended network or the appletalk cable-range 0-0 command on an extended network. This causes the router to get its configuration information from the network. For more information about configuration mismatches, see the section "AppleTalk Configuration Mismatches" earlier in this chapter. |
Phase 1 and Phase 2 rule violations | Step 1 Use the show appletalk globals exec command to determine whether the internetwork is in compatibility mode. Step 2 Enable the appletalk name-lookup-interval global configuration command and use the show appletalk neighbors exec command to determine which specific neighbor (by NBP name) is in compatibility mode. Step 3 To resolve the problem, you can perform one of the following actions:
For more information on Phase 1 and Phase 2 rule violations, see the section "Phase 1 and Phase 2 Rule Violations" earlier in this chapter. |
Table 9-10 outlines the problems that might cause this symptom and describes solutions to those problems.
| Possible Problems | Solution |
|---|---|
Router is in discovery mode, | Step 1 Put the router in nondiscovery mode by assigning a network number or cable range to the problem interface using the appletalk address or appletalk cable-range interface configuration command. Step 2 If the problem persists, consult your technical support representative for more assistance. |
Crossed serial circuits with | Step 1 Check the physical attachment of serial lines to ensure that they are correctly wired. Step 2 If necessary, rewire the lines and check the output of the show interfaces and show appletalk interface commands to confirm that the interface and line protocol are up. Step 3 If the router still cannot find routes, consult your technical support representative for more assistance. |
Software problem | If the router issues a message that says "restart port pending," upgrade to the latest system software maintenance release or contact your technical support representative. |
Symptom: Macintosh clients cannot connect to servers in an AppleTalk Enhanced IGRP network environment.
Table 9-11 outlines the problems that might cause this symptom and describes solutions to those problems.
| Possible Problem | Solution |
|---|---|
Routers not establishing | For information on troubleshooting this problem, see the section "AppleTalk Enhanced IGRP: Routers Not Establishing Neighbors" later in this chapter. |
Routes missing from | For information on troubleshooting this problem, see the section "AppleTalk Enhanced IGRP: Routes Missing from Routing Table" later in this chapter. |
Appletalk Enhanced IGRP | Macintosh computers do not understand AppleTalk Enhanced IGRP. RTMP must be enabled on interfaces with Macintosh computers on the connected LAN segment. By default, AppleTalk RTMP routes are automatically redistributed into enhanced IGRP, and AppleTalk enhanced IGRP routes are automatically redistributed into RTMP. Step 1 Use the show running-config privileged exec command on routers to make sure that RTMP is enabled on interfaces connected to LAN segments with connected Macintosh computers. Step 2 If RTMP is not enabled, enable it using the appletalk protocol rtmp interface configuration command. Step 3 If desired, disable AppleTalk Enhanced IGRP on the interface using the no appletalk protocol eigrp interface configuration command. |
Table 9-12 outlines the problems that might cause this symptom and describes solutions to those problems.
| Possible Problem | Solution |
|---|---|
AppleTalk Enhanced | Step 1 Use the show running-config privileged exec command to check the configuration of routers that should be running Enhanced IGRP. Look for appletalk routing eigrp global configuration command entries. This command enables AppleTalk Enhanced IGRP routing on the router. Step 2 If AppleTalk Enhanced IGRP routing is not enabled on the router, use the appletalk routing eigrp router-id global configuration command to enable it. Make sure that the router ID is unique throughout the network. Step 3 Perform the same actions on other routers that should be running AppleTalk Enhanced IGRP. The router ID must be different for each router. |
AppleTalk Enhanced | Use the show running-config privileged exec command on routers that are running Enhanced IGRP. Check the interface configurations for appletalk protocol eigrp interface configuration command entries. This command must be present in order for an interface to generate AppleTalk Enhanced IGRP hello messages and routing updates. |
Timer values are mismatched | Step 1 Use the show appletalk eigrp neighbors exec command. Make sure that all directly connected AppleTalk Enhanced IGRP routers appear in the output. Step 2 Examine the uptime field in the show appletalk eigrp neighbors output. A continuously resetting uptime counter indicates that hello packets from the neighboring router are arriving sporadically. This might be caused by a timer value mismatch or by hardware problems. Step 3 Use the show interface exec command to determine whether the interface and line protocol are up. Look for high numbers in the queue fields and excessive drop counts. The queue fields displays the maximum size of the queue and the number of packets dropped due to a full queue. If there are many drops, if the queue count is high, or if the interface or line protocol is down, there is probably something wrong with the interface or other hardware. For more information on troubleshooting hardware, see Chapter 3,"Troubleshooting Hardware and Booting Problems," and Chapter 15, "Troubleshooting Serial Line Problems." Step 4 Use the show running-config privileged exec command on all AppleTalk Enhanced IGRP routers in the network. Look for appletalk eigrp-timers interface configuration command entries. The values configured by this command must be the same for all AppleTalk Enhanced IGRP routers on the network. Step 5 If any routers have conflicting timer values, reconfigure them to conform with the rest of the routers on the network. These values can be returned to their defaults with the no appletalk eigrp-timers interface configuration command. |
Older version of the | If problems persist, upgrade to the latest release of the Cisco IOS software. |
Table 9-13 outlines the problems that might cause this symptom and describes solutions to those problems.
| Possible Problem | Solution |
|---|---|
Routers not establishing | For information on troubleshooting this problem, see the section "AppleTalk Enhanced IGRP: Routers Not Establishing Neighbors" earlier in this chapter. |
AppleTalk Enhanced | Use the show running-config privileged exec command on routers that are running Enhanced IGRP. Check the interface configurations for appletalk protocol eigrp interface configuration command entries. This command must be present in order for an interface to generate AppleTalk Enhanced IGRP hello messages and routing updates. |
Older version of the | If problems persist, upgrade to the latest release of the Cisco IOS software. |
Table 9-14 outlines the problems that might cause this symptom and describes solutions to those problems.
| Possible Problem | Solution |
AppleTalk Enhanced IGRP and | Use the show running-config privileged exec command on network routers. Check the interface configurations to determine whether AppleTalk Enhanced IGRP and RTMP are both enabled on the same interface. Running both AppleTalk Enhanced IGRP and RTMP on the same interface increases bandwidth and processor overhead. Determine whether both routing protocols need to be running on the interface and disable one or the other if necessary or desired. |
Older version of the | If problems persist, upgrade to the latest release of the Cisco IOS software. |
Symptom: An AppleTalk Enhanced IGRP router is stuck in Active mode. The router repeatedly sends error messages similar to the following to the console:
%DUAL-3-SIA: Route 2.24 Stuck-in-Active
For a more detailed explanation of Enhanced IGRP Active mode, see the section "Enhanced IGRP Active/Passive Modes" later in this chapter.
Table 9-15 outlines the problems that might cause this symptom and describes solutions to those problems.
| Possible Problems | Solution |
|---|---|
Active timer value is | The active timer determines the maximum period of time that an Enhanced IGRP router will wait for replies to its queries. If the active timer value is set too low, there might not be enough time for all the neighboring routers to send their replies to the Active router. Step 1 Check the configuration of each Enhanced IGRP router using the show running-config privileged exec command. Look for the timers active-time router configuration command entry associated with the appletalk routing eigrp global configuration command entry. Step 2 The value set by the timers active-time command should be consistent among routers in the same autonomous system. A value of 3 (3 minutes, the default value) is strongly recommended to allow all Enhanced IGRP neighbors to reply to queries. |
Interface or other | Step 1 If queries and replies are not sent and received properly, the active timer times out and causes the router to issue an error message. Use the show appletalk eigrp neighbors exec command and examine the uptime and Q Cnt (queue count) fields in the output. The following example is output from the show appletalk eigrp neighbor command: Router#show appletalk eigrp neighbor AT/EIGRP Neighbors for process 1, router id 1 H Address Interface Hold Uptime SRTT RTO Q Seq (sec) (ms) Cnt Num 0 200.41 Et0 10 0:00:37 0 3000 0 2 If the uptime counter is continually resetting or if the queue count is consistently high, there might be a hardware problem. The uptime counter is the elapsed time, in hours, minutes, and seconds, since the local router first heard from this neighbor. Step 2 Determine where the problem is by looking at the output of the "Stuck-in-Active" error message, which indicates the AppleTalk address of the problematic node. Step 3 Make sure the suspect router is still functional. Check the interfaces on the suspect router. Make sure the interface and line protocol are up and determine whether the interface is dropping packets. For more information on troubleshooting hardware, see Chapter 3, "Troubleshooting Hardware and Booting Problems." |
Flapping route | If there is a flapping serial route (caused by heavy traffic load), queries and replies might not be forwarded reliably. Route flapping caused by heavy traffic on a serial link can cause queries and replies to be lost, resulting in the active timer timing out. Take steps to reduce traffic on the link, or increase the bandwidth of the link. |
Older version of the | If problems persist, upgrade to the latest release of the Cisco IOS software. |
If the Enhanced IGRP router loses the connection to a network, it becomes active for that network. The router sends out queries to all its neighbors in order to find a new route to the network. The router remains in Active mode until it has either received replies from all its neighbors or until the active timer, which determines the maximum period of time a router will stay active, has expired.
If the router receives a reply from each of its neighbors, it computes the new next hop to the network and becomes passive for that network. However, if the active timer expires, the router removes from its neighbor table any neighbors that did not reply, again enters Active mode, and issues a "Stuck-in-Active" message to the console.
Symptom: AppleTalk routes are not propagated through an AURP tunnel. Routes that are known to exist on one side of the tunnel do not appear in the routing tables of the exterior router on the other side of the tunnel. Changes on the remote network (such as a route going down) are not learned by the exterior router on the other side of the tunnel.
Table 9-16 outlines the problems that might cause this symptom and describes solutions to those problems.
| Possible Problems | Solution |
|---|---|
Misconfigured | Step 1 Use the show appletalk interfaces exec command to make sure the tunnel interface is up. Step 2 Use the show running-config privileged exec command to view the router configuration. Check the tunnel source and tunnel destination interface configuration command entries. Step 3 Exterior routers must have their tunnel interface configured with a tunnel source and a tunnel destination command. Make sure that the tunnel destination command on each router points to the IP address of the remote exterior router's tunnel interface. |
Missing appletalk | Step 1 If changes on the remote network are not learned through the tunnel, use the show running-config privileged exec command to view the router configuration. Check for an appletalk route-redistribution global configuration command entry. Step 2 If the command is not present, add it to the configuration. |
Problem with underlying | If there are routing problems in the transit network (the IP network through which the AURP tunnel passes), then AppleTalk traffic might have difficulty traversing the tunnel. To troubleshoot your TCP/IP network, follow the procedures outlined in Chapter 7, "Troubleshooting TCP/IP." |
Table 9-17 outlines the problem that might cause this symptom and describes solutions to that problem.
| Possible Problems | Solution |
|---|---|
FDDITalk version | If any routers in the internetwork are using software releases prior to Cisco IOS Release 10.0, there is a possibility of a FDDITalk version mismatch. Make sure that all routers on the ring are using either pre-FDDITalk or FDDITalk and not be a combination of the two. Following are the FDDITalk implementations for each software release:
|
Symptom: An ARA client (such as a Macintosh) attempts to connect to an ARA server (such as a Cisco access server) and cannot initiate a remote session. The user might be able to connect briefly, but the connection is immediately terminated.
Table 9-18 outlines the problems that might cause this symptom and describes solutions to those problems.
| Possible Problems | Solution |
|---|---|
Missing arap network | Step 1 Use the show running-config privileged exec command to view the router configuration. If you are running Cisco IOS Release 10.2 or later, look for an arap network global configuration command entry. Step 2 Configure the arap network global configuration command to enable ARA on the router or access server. The syntax for the arap network command is as follows: arap network [network-number] [zone-name] Syntax Description:
|
AppleTalk routing is | Step 1 Use the show apple interfaces exec command to determine whether interfaces are operational and whether AppleTalk routing is enabled on the correct interfaces. Step 2 If AppleTalk routing is not enabled on the proper interfaces, enable it where appropriate. Refer to the Cisco IOS Network Protocols Configuration Guide, Part 1 for detailed information on configuring an interface for AppleTalk routing. |
Modem, serial line, | For serial line troubleshooting information, see Chapter 15, "Troubleshooting Serial Line Problems." For modem troubleshooting information, see Chapter 16, "Troubleshooting Dialin Connections." For hardware troubleshooting information, see Chapter 3, "Troubleshooting Hardware and Booting Problems." |
| 1ARAP = AppleTalk Remote Access Protocol |
Symptom: An ARA client (for example, a Macintosh) tries to connect to an ARA server (such as a Cisco access server) over client and server modems. The client receives a connect message such as "Communicating at 14.4 Kbps" but then hangs for 10-30 seconds and finally shows a "connection failed" message.
Table 9-19 outlines the problem that might cause this symptom and describes solutions to that problem.
| Possible Problems | Solution |
|---|---|
MNP4 Link Request packets | Step 1 Check the version numbers of the ARA software on the client and the Cisco IOS software on the access server. If you are using ARA version 1.0 or Cisco IOS software prior to Release 10.2, it is advisable to upgrade to ARA 2.0 and Cisco IOS Release 10.2 or later. ARA 2.0 modifies the framing of MNP4 Link Request packets, allowing them to be passed to the access server rather than responded to by the serving modem. Step 2 If you cannot upgrade your software, try modifying the behavior of the modem to use a LAPM-to-No Error Correction fallback instead of a LAPM-to-MNP4-to-No Error Correction fallback. The modem no longer listens for and respond to MNP4 messages, allowing MNP4 packets to reach the access server. Note: Many modems cannot be configured in this manner. Step 3 If your modem does not use LAPM error correction, it might be possible to modify all ARA client scripts to extend the 500 ms pause before exiting. Configure an additional delay that takes into account the behavior of the serving modem. |
Symptom: ARA connections are established, but users cannot send or receive ARA data over the link.
Table 9-20 outlines the problems that might cause this symptom and describes solutions to those problems.
| Possible Causes | Suggested Actions |
|---|---|
Missing arap network | Step 1 Use the show running-config privileged exec command to view the router configuration. If you are running Cisco IOS Release 10.2 or later, look for an arap network global configuration command entry. Step 2 Configure the arap network global configuration command to enable ARA on the router or access server. The syntax for the arap network command is as follows: arap network [network-number] [zone-name] Syntax Description:
|
Missing autoselect command | Step 1 Use the show running-config privileged exec command to view the router configuration. Check to see whether the autoselect arap line configuration command is configured on the router. Step 2 If the command is not present, add it to the configuration. |
MNP5 enabled on answering modem | Step 1 Check to see whether the answering modem has MNP5 error correction enabled. Step 2 If MNP5 is enabled on the answering modem, disable it. For information on checking or changing the modem configuration, refer to the modem documentation. |
Zone list is empty | Step 1 Use the show appletalk route and show appletalk zones privileged exec commands to determine whether the router can see its ARA routes and zones. Step 2 Use the show appletalk interface ethernet exec command and make sure that the output matches your Apple network parameters. Step 3 Change the interface configuration as required. |
TACACS1 problem | For information on troubleshooting TACACS problems, refer to Chapter 24, "Troubleshooting Security Implementations." |
| 1TACACS = Terminal Access Controller Access Control System |
Symptom: Performance on remote dialin ARA sessions is slow.
Table 9-21 outlines the problem that might cause this symptom and describes solutions to that problem.
| Possible Problems | Solution |
|---|---|
Flow control is not enabled, is enabled only on one device (either DTE or DCE), or is misconfigured | Step 1 Configure hardware flow control on the line using the flowcontrol hardware line configuration command. Hardware flow control is recommended for access server-to-modem connections. For example, to configure hardware flow control on line 2 of an access server, enter the following commands: C2500(config)#line 2 C2500(config-line)#flowcontrol hardware Note: If you cannot use flow control, limit the line speed to 9600 bps. Faster speeds can result in lost data. Step 2 After enabling hardware flow control on the access server or router line, initiate a reverse Telnet session to the modem via that line. For instructions on initiating a reverse Telnet session, see the section "Establishing a Reverse Telnet Session to a Modem" in Chapter 16, "Troubleshooting Dialin Connections." Step 3 Use a modem command string that includes the RTS/CTS flow command for your modem. This command ensures that the modem is using the same method of flow control (that is, hardware flow control) as the Cisco access server or router. See your modem documentation for exact configuration command syntax. For more information about troubleshooting access server- to-modem connections, see Chapter 16, "Troubleshooting Dialin Connections." For information on troubleshooting hardware problems, see Chapter 3, "Troubleshooting Hardware and Booting Problems." |
Posted: Tue May 16 15:05:37 PDT 2000
Copyright 1989 - 2000©Cisco Systems Inc.