Friday, March 2, 2018

Upgrading a Cisco ASR 1001-X Router and show hw-module interface Command

I was issued a new Dell Latitude 7480 laptop and had to figure out the Break sequence when doing a password recovery on a Cisco device. You need to hit Fn+Shift+B in order to do the Break sequence since there's no Break or Pause button on newer Dell Latitude laptops.

The Cisco ASR 1001-X router has two 10 GE SFP-only ports (Te0/0/0 - Te0/0/1) one, six GE SFP-only ports (GE0/0/0 - 0/0/5), one dedicated management port (GE0) and one Network Interface Module (NIM) slot.

Router#show ip interface brief
Interface              IP-Address      OK? Method Status                Protocol
Te0/0/0                unassigned      YES NVRAM  administratively down down     
Te0/0/1                unassigned      YES NVRAM  administratively down down    
GigabitEthernet0/0/0   unassigned      YES NVRAM  administratively down down   
GigabitEthernet0/0/1   unassigned      YES NVRAM  administratively down down   
GigabitEthernet0/0/2   unassigned      YES NVRAM  administratively down down 
GigabitEthernet0/0/3   unassigned      YES NVRAM  administratively down down   
GigabitEthernet0/0/4   unassigned      YES NVRAM  administratively down down   
GigabitEthernet0/0/5   unassigned      YES NVRAM  administratively down down   
GigabitEthernet0       unassigned      YES NVRAM  administratively down down      // MGMT PORT


It has two power supplies found at the back and has an on/off toggle switch.


The serial number sticker is found on the right-hand side (when facing the router ports).


Router#dir
Directory of bootflash:/

   11  drwx            16384  Jan 15 2018 20:17:12 +00:00  lost+found
267169  drwx             4096   Feb 5 2018 21:29:38 +00:00  .prst_sync
   12  -rw-        592670232  Jan 15 2018 20:18:04 +00:00  asr1001x-universalk9.16.03.05.SPA.bin
161921  drwx             4096  Jan 15 2018 20:20:26 +00:00  .installer
48577  drwx             8192   Feb 5 2018 21:30:03 +00:00  tracelogs
129537  drwx             4096  Jan 15 2018 20:27:39 +00:00  core
396705  drwx             4096  Jan 15 2018 20:26:06 +00:00  .rollback_timer
56673  drwx             4096  Jan 15 2018 20:26:20 +00:00  virtual-instance
170017  drwx             4096   Feb 5 2018 21:29:38 +00:00  crypto
   13  -rw-               30   Feb 5 2018 21:29:41 +00:00  throughput_monitor_params
   14  -rw-               35  Jan 15 2018 20:27:46 +00:00  pnp-tech-time
   15  -rw-            39008  Jan 15 2018 20:27:52 +00:00  pnp-tech-discovery-summary

6646632448 bytes total (5709942784 bytes free)

Router#
*Feb  5 21:31:35.281: %IOSD_INFRA-6-IFS_DEVICE_OIR: Device usb0 added

Router#dir usb0:        // USB SLOT 0 IS FOUND ON TOP, USB SLOT 1 IS AT THE BOTTOM
Directory of usb0:/

<OUTPUT TRUNCATED>

   25  -rwx        104970520   Feb 5 2018 15:53:40 +00:00  c3900-universalk9-mz.SPA.154-3.M6a.bin
   26  -rwx        490064992   Feb 5 2018 15:53:10 +00:00  asr1001x-universalk9.03.13.05.S.154-3.S5-ext.SPA.bin

2013200384 bytes total (7176192 bytes free)

Router#copy usb0:/asr1001x-universalk9.03.13.05.S.154-3.S5-ext.SPA.bin bootflash:
Destination filename [asr1001x-universalk9.03.13.05.S.154-3.S5-ext.SPA.bin]?
Copy in progress...CCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCC
CCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCC

<OUTPUT TRUNCATED>

Router#dir
Directory of bootflash:/

   11  drwx            16384  Jan 15 2018 20:17:12 +00:00  lost+found
267169  drwx             4096   Feb 5 2018 21:29:38 +00:00  .prst_sync
   12  -rw-        592670232  Jan 15 2018 20:18:04 +00:00  asr1001x-universalk9.16.03.05.SPA.bin
161921  drwx             4096  Jan 15 2018 20:20:26 +00:00  .installer
48577  drwx             8192   Feb 5 2018 21:35:05 +00:00  tracelogs
129537  drwx             4096  Jan 15 2018 20:27:39 +00:00  core
396705  drwx             4096  Jan 15 2018 20:26:06 +00:00  .rollback_timer
56673  drwx             4096  Jan 15 2018 20:26:20 +00:00  virtual-instance
170017  drwx             4096   Feb 5 2018 21:29:38 +00:00  crypto
   13  -rw-               30   Feb 5 2018 21:29:41 +00:00  throughput_monitor_params
   14  -rw-               35  Jan 15 2018 20:27:46 +00:00  pnp-tech-time
   15  -rw-            39008  Jan 15 2018 20:27:52 +00:00  pnp-tech-discovery-summary
   16  -rw-        490064992   Feb 5 2018 21:38:32 +00:00  asr1001x-universalk9.03.13.05.S.154-3.S5-ext.SPA.bin

Router#show run | i boot
boot-start-marker
boot-end-marker
diagnostic bootup level minimal

Router#configure terminal
Enter configuration commands, one per line.  End with CNTL/Z.
Router(config)#boot system bootflash:asr1001x-universalk9.03.13.05.S.154-3.S5-ext.SPA.bin   // PRIMARY IOS-XE BOOT
Router(config)#boot system bootflash:asr1001x-universalk9.16.03.05.SPA.bin     // SECONDARY IOX-XE BOOT

Router(config)#do show run | inc boot
boot-start-marker
boot system bootflash:asr1001x-universalk9.03.13.05.S.154-3.S5-ext.SPA.bin
boot system bootflash:asr1001x-universalk9.16.03.05.SPA.bin
boot-end-marker
diagnostic bootup level minimal
Router(config)#end
Router#write memory

*Feb  5 21:39:50.440: %SYS-5-CONFIG_I: Configured from console by console
Building configuration...
[OK]
Router#reload
Proceed with reload? [confirm]

*Feb  5 21:40:03.075: %SYS-5-RELOAD: Reload requested by console. Reload Reason: Reload Command.Feb  5 21:40:22.099 R0/0: %PMAN-5-EXITACTION: Process manager is exiting: process exit with reload chassis code


Initializing Hardware ...

System integrity status: 00000610

System Bootstrap, Version 16.3(2r), RELEASE SOFTWARE
Copyright (c) 1994-2016  by cisco Systems, Inc.

Current image running: Boot ROM1

Last reset cause: CPU-ResetRequest

ASR1001-X platform with 8388608 Kbytes of main memory

File size is 0x1d35cc60

Located asr1001x-universalk9.03.13.05.S.154-3.S5-ext.SPA.bin

Image size 490064992 inode num 16, bks cnt 119645 blk size 8*512

##################################################################################
##################################################################################

Boot image size = 490064992 (0x1d35cc60) bytes

ROM:RSA Self Test Passed

ROM:Sha512 Self Test Passed

Package header rev 1 structure detected

Calculating SHA-1 hash...done

validate_package_cs: SHA-1 hash:

    calculated 7f3d05b8:1ed209a6:4465d7ea:f1843d1e:b5a930a5

    expected   7f3d05b8:1ed209a6:4465d7ea:f1843d1e:b5a930a5

Validating main package signatures

RSA Signed RELEASE Image Signature Verification Successful.

Image validated

%IOSXEBOOT-4-FILESYS_ERRORS_CORRECTED: (rp/0): bootflash 6 contained errors which were auto-corrected.
%IOSXEBOOT-4-FILESYS_ERRORS_CORRECTED: (rp/0): bootflash 7 contained errors which were auto-corrected.
%IOSXEBOOT-4-FILESYS_ERRORS_CORRECTED: (rp/0): bootflash 8 contained errors which were auto-corrected.
%IOSXEBOOT-4-FILESYS_ERRORS_CORRECTED: (rp/0): bootflash 9 contained errors which were auto-corrected.
%IOSXEBOOT-4-FILESYS_ERRORS_CORRECTED: (rp/0): bootflash 10 contained errors which were auto-corrected.
%IOSXEBOOT-4-FILESYS_ERRORS_CORRECTED: (rp/0): bootflash 11 contained errors which were auto-corrected.

              Restricted Rights Legend

Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.

           cisco Systems, Inc.
           170 West Tasman Drive
           San Jose, California 95134-1706

Cisco IOS Software, ASR1000 Software (X86_64_LINUX_IOSD-UNIVERSALK9-M), Version 15.4(3)S5, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2016 by Cisco Systems, Inc.
Compiled Sun 31-Jan-16 02:16 by mcpre

Cisco IOS-XE software, Copyright (c) 2005-2016 by cisco Systems, Inc.
All rights reserved.  Certain components of Cisco IOS-XE software are
licensed under the GNU General Public License ("GPL") Version 2.0.  The
software code licensed under GPL Version 2.0 is free software that comes
with ABSOLUTELY NO WARRANTY.  You can redistribute and/or modify such
GPL code under the terms of GPL Version 2.0.  For more details, see the
documentation or "License Notice" file accompanying the IOS-XE software,
or the applicable URL provided on the flyer accompanying the IOS-XE
software.

This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.

A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

If you require further assistance please contact us by sending email to
export@cisco.com.

cisco ASR1001-X (1NG) processor (revision 1NG) with 3751430K/6147K bytes of memory.
Processor board ID FXS2148QABC
6 Gigabit Ethernet interfaces
2 Ten Gigabit Ethernet interfaces
32768K bytes of non-volatile configuration memory.
8388608K bytes of physical memory.
6594559K bytes of eUSB flash at bootflash:.

Press RETURN to get started!

*Feb  5 21:42:23.941: %SMART_LIC-6-AGENT_READY: Smart Agent for Licensing is initialized
*Feb  5 21:42:24.955: %LICENSE-6-EULA_ACCEPT_ALL: The Right to Use End User License Agreement is accepted
*Feb  5 21:42:24.979: %IOS_LICENSE_IMAGE_APPLICATION-6-LICENSE_LEVEL: Module name = asr1001x Next reboot level = adventerprise and License = adventerprise
*Feb  5 21:42:26.500: %IOSXE_THROUGHPUT-6-LEVEL: Throughput level has been set to 20000000 kbps
*Feb  5 21:42:29.100: %LICENSE-6-EULA_ACCEPTED: EULA for feature throughput_20g 1.0 has been accepted. UDI=ASR1001-X:JAE2201
Router>
Router>09J6; StoreIndex=11:Built-In License Storage
*Feb  5 21:42:33.696: pak_debug_init: Successfully initialized pak debug trace buffer
*Feb  5 21:42:37.880: %SPANTREE-5-EXTENDED_SYSID: Extended SysId enabled for type vlan
*Feb  5 21:42:41.200: %VOICE_HA-7-STATUS: CUBE HA-supported platform detected.
*Feb  5 21:42:42.165: %LINK-3-UPDOWN: Interface Lsmpi0, changed state to up
*Feb  5 21:42:42.165: %LINK-3-UPDOWN: Interface EOBC0, changed state to up
*Feb  5 21:42:42.165: %LINEPROTO-5-UPDOWN: Line protocol on Interface VoIP-Null0, changed state to up
*Feb  5 21:42:42.165: %LINEPROTO-5-UPDOWN: Line protocol on Interface LI-Null0, changed state to up
*Feb  5 21:42:42.165: %LINK-3-UPDOWN: Interface GigabitEthernet0, changed state to down
*Feb  5 21:42:42.168: %LINK-3-UPDOWN: Interface LIIN0, changed state to up
*Feb  5 21:42:44.200: %IOSXE_MGMTVRF-6-CREATE_SUCCESS_INFO: Management vrf Mgmt-intf created with ID 1, ipv4 table-id 0x1, ipv6 table-id 0x1E000001
*Feb  5 21:42:44.314: %LINEPROTO-5-UPDOWN: Line protocol on Interface Lsmpi0, changed state to up
*Feb  5 21:42:44.314: %LINEPROTO-5-UPDOWN: Line protocol on Interface EOBC0, changed state to up
*Feb  5 21:42:44.314: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0, changed state to down
*Feb  5 21:42:44.314: %LINEPROTO-5-UPDOWN: Line protocol on Interface LIIN0, changed state to up
*Feb  5 21:42:29.459: %CMLIB-6-THROUGHPUT_VALUE: F0: cmand:  Throughput license found, throughput set to 20000000 kbps
*Feb  5 21:42:31.980: %CPPHA-7-START: F0: cpp_ha:  CPP 0 preparing ucode
*Feb  5 21:42:32.156: %CPPHA-7-START: F0: cpp_ha:  CPP 0 startup init
*Feb  5 21:42:35.772: %IOSXE-4-PLATFORM: R0/0: kernel: OCTEON[0]: Received active indication from core
*Feb  5 21:42:35.772: %IOSXE-4-PLATFORM: R0/0: kernel: octeon_core_drv_init: ctx_chunks = 14000
*Feb  5 21:42:35.772: %IOSXE-4-PLATFORM: R0/0: kernel: octeon_core_drv_init: boot_log_ptr=12d580
*Feb  5 21:42:46.270: %SYS-4-CONFIG_NEWER: Configuration from version 16.3 may not be correctly understood
*Feb  5 21:42:47.647: %SYS-5-CONFIG_I: Configured from memory by console
*Feb  5 21:42:47.650: %IOSXE_OIR-6-REMSPA: SPA removed from subslot 0/0, interfaces disabled
*Feb  5 21:42:47.653: %SPA_OIR-6-OFFLINECARD: SPA (BUILT-IN-2T+6X1GE) offline in subslot 0/0
*Feb  5 21:42:47.655: %IOSXE_OIR-6-INSCARD: Card (fp) inserted in slot F0
*Feb  5 21:42:47.655: %IOSXE_OIR-6-ONLINECARD: Card (fp) online in slot F0
*Feb  5 21:42:47.676: %IOSXE_OIR-6-INSCARD: Card (cc) inserted in slot 0
*Feb  5 21:42:47.676: %IOSXE_OIR-6-ONLINECARD: Card (cc) online in slot 0
*Feb  5 21:42:47.686: %IOSXE_OIR-6-INSSPA: SPA inserted in subslot 0/0
*Feb  5 21:42:47.745: %SYS-5-RESTART: System restarted --
Cisco IOS Software, ASR1000 Software (X86_64_LINUX_IOSD-UNIVERSALK9-M), Version 15.4(3)S5, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2016 by Cisco Systems, Inc.
Compiled Sun 31-Jan-16 02:16 by mcpre
*Feb  5 21:42:47.781: %SSH-5-ENABLED: SSH 1.99 has been enabled
*Feb  5 21:42:50.687: %LINK-5-CHANGED: Interface GigabitEthernet0, changed state to administratively down
*Feb  5 21:42:50.691: %CRYPTO-6-ISAKMP_ON_OFF: ISAKMP is OFF
*Feb  5 21:42:50.691: %CRYPTO-6-GDOI_ON_OFF: GDOI is OFF
*Feb  5 21:42:53.348: %SYS-6-BOOTTIME: Time taken to reboot after reload =  172 seconds
*Feb  5 21:42:55.275: %SPA_OIR-6-ONLINECARD: SPA (BUILT-IN-2T+6X1GE) online in subslot 0/0
Router>enable
Router#show version
Cisco IOS XE Software, Version 03.13.05.S - Extended Support Release
Cisco IOS Software, ASR1000 Software (X86_64_LINUX_IOSD-UNIVERSALK9-M), Version 15.4(3)S5, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2016 by Cisco Systems, Inc.
Compiled Sun 31-Jan-16 02:16 by mcpre

Cisco IOS-XE software, Copyright (c) 2005-2016 by cisco Systems, Inc.
All rights reserved.  Certain components of Cisco IOS-XE software are
licensed under the GNU General Public License ("GPL") Version 2.0.  The
software code licensed under GPL Version 2.0 is free software that comes
with ABSOLUTELY NO WARRANTY.  You can redistribute and/or modify such
GPL code under the terms of GPL Version 2.0.  For more details, see the
documentation or "License Notice" file accompanying the IOS-XE software,
or the applicable URL provided on the flyer accompanying the IOS-XE
software.

ROM: IOS-XE ROMMON

Router uptime is 1 minute
Uptime for this control processor is 2 minutes
System returned to ROM by reload
System image file is "bootflash:asr1001x-universalk9.03.13.05.S.154-3.S5-ext.SPA.bin"
Last reload reason: Reload Command

This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.

A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

If you require further assistance please contact us by sending email to
export@cisco.com.

License Level: adventerprise
License Type: Permanent
Next reload license Level: adventerprise

cisco ASR1001-X (1NG) processor (revision 1NG) with 3751430K/6147K bytes of memory.
Processor board ID FXS2148QABC
6 Gigabit Ethernet interfaces
2 Ten Gigabit Ethernet interfaces
32768K bytes of non-volatile configuration memory.
8388608K bytes of physical memory.
6594559K bytes of eUSB flash at bootflash:.

Configuration register is 0x2102


SIN5-PE01#show inventory
NAME: "Chassis", DESCR: "Cisco ASR1001-X Chassis"
PID: ASR1001-X         , VID: V03, SN: FXS2148QABC

NAME: "Power Supply Module 0", DESCR: "Cisco ASR1001-X AC Power Supply"
PID: ASR1001-X-PWR-AC  , VID: V01, SN: LIT21393DEF

NAME: "Power Supply Module 1", DESCR: "Cisco ASR1001-X AC Power Supply"
PID: ASR1001-X-PWR-AC  , VID: V01, SN: LIT21393GHI

NAME: "Fan Tray", DESCR: "Cisco ASR1001-X Fan Tray"
PID: ASR1001-X-FANTRAY , VID:    , SN:           

NAME: "module 0", DESCR: "Cisco ASR1001-X SPA Interface Processor"
PID: ASR1001-X         , VID:    , SN:           

NAME: "SPA subslot 0/0", DESCR: "8-port Built-in GE SPA"
PID: BUILT-IN-2T+6X1GE , VID:    , SN:           

NAME: "subslot 0/0 transceiver 2", DESCR: "GE T"       // THESE ARE THE GLC-TE SFP
PID: SP7041-TE         , VID: A1  , SN: MTC21440123    

NAME: "subslot 0/0 transceiver 3", DESCR: "GE T"
PID: SP7041-TE         , VID: A1  , SN: MTC21440456   
         
NAME: "subslot 0/0 transceiver 4", DESCR: "GE T"
PID: SP7041-TE         , VID: A1  , SN: MTC21440789    

NAME: "subslot 0/0 transceiver 5", DESCR: "GE T"
PID: SP7041-TE         , VID: A1  , SN: MTC21440ABC    

NAME: "subslot 0/0 transceiver 7", DESCR: "GE T"
PID: SBCU-5740ARZ-CS1  , VID: G3.1, SN: AVC21432DEF  
  

NAME: "module R0", DESCR: "Cisco ASR1001-X Route Processor"
PID: ASR1001-X         , VID: V03, SN: JAE22010XYZ

NAME: "module F0", DESCR: "Cisco ASR1001-X Embedded Services Processor"
PID: ASR1001-X         , VID:    , SN:


The SFP transceivers are hot-swappable or supports Online Insertion and Removal (OIR). The vendor gave a mix of GLC-TE made from USA and China.


The China brand (left) has a bright yellow bale clasp which is made of plastic. The USA brand (right) has the metal bale clasp and has a hologram sticker.


You can observe via the console if the SFP is detected or issue a show hw-module interface g0/0/x transceiver status idprom to check the status.

Router#
*Feb  5 21:44:06.277: %TRANSCEIVER-6-INSERTED: SIP0/0: transceiver module inserted in GigabitEthernet0/0/0

Router#show h?
h323  history    hosts            html
http  hw-module  hw-programmable 

Router#show hw-module ?
  all        Select all supported modules in the system
  interface  Interface information
  subslot    Select subslot level module(s)

Router#show hw-module interface  g0/0/0 ?
  transceiver  show transceiver idprom and status

Router#show hw-module interface g0/0/0 transceiver ?
  idprom  transceiver idprom
  status  transceiver initialization status

Router#show hw-module interface g0/0/0 transceiver status
The Transceiver in slot 0 subslot 0 port 2 is enabled.
  Sensor Data is not supported by this transceiver

Router#show hw-module interface g0/0/0 transceiver status idprom
IDPROM for transceiver GigabitEthernet0/0/0:
  Description                               = SFP or SFP+ optics (type 3)
  Transceiver Type:                         = GE T (26)
  Product Identifier (PID)                  = SP7041-TE      
  Vendor Revision                           = A1 
  Serial Number (SN)                        = MTC21440ABC   
  Vendor Name                               = CISCO          
  Vendor OUI (IEEE company ID)              = 00.17.05 (5893)
  CLEI code                                 = CMUIAGBDEF
  Cisco part number                         = 30-1475-01
  Device State                              = Disabled.
  Date code (yy/mm/dd)                      = 17/11/07
  Connector type                            = Unknown.
  Encoding                                  = 8B10B
                                              NRZ
  Nominal bitrate                           = GE (1300 Mbits/s)
  Minimum bit rate as % of nominal bit rate = not specified
  Maximum bit rate as % of nominal bit rate = not specified

Friday, February 9, 2018

Upgrading a Cisco 3850 Denali Switch via request platform software package install Command

Prior to Denali 16, the Cisco 3850 (and 3650) switch upgrade uses the software install command but now Cisco has changed it (again). You'll need a compatible USB drive for copying files and recovering the switch in case it goes into switch: prompt (like ROMmon in a router). I need to perform a downgrade from Denali 16.3 to IOS-XE 3.6.4 in order to standardize our switch environment. The same request platform software package install command can be used for the upgrade process. There's only one USB slot which is found in front of the switch. It's beside the mini console port and status LED lights.


In case the switch goes to switch: prompt, you'll need to issue the following commands:

switch:boot usbflash0:/cat3k_caa-universalk9.SPA.03.06.04.E.152-2.E4.bin

Once it successfully recovered, you'll need to copy the IOS .bin file into flash:


copy usbflash0:/cat3k_caa-universalk9.SPA.03.06.04.E.152-2.E4.bin flash:

You use the software expand file command to copy and INSTALL the package files into flash. You also need to point the boot system to packages.conf afterwards. Don't forget to save!

software expand file flash:cat3k_caa-universalk9.SPA.03.06.04.E.152-2.E4.bin

boot system flash:packages.conf

write memory


Below is the downgrade process that I've performed.


Booting...
Interface GE 0 link down***ERROR: PHY link is down

Getting rest of image
Reading full image into memory...Check base package header ...: done = 16384
Getting rest of image
Reading full image into memory....done
Reading full base package into memory...: done = 22301472
Bundle Image
--------------------------------------
Kernel Address    : 0x5342f384
Kernel Size       : 0x34e9e1/3467745
Initramfs Address : 0x5377dd65
Initramfs Size    : 0x119d5bb/18470331
Compression Format: mzip

Bootable image at @ ram:0x5342f384
Bootable image segment 0 address range [0x81100000, 0x81b8adc0] is in range [0x80180000, 0x90000000].
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@boot_system: 377
Loading Linux kernel with entry point 0x816902d0 ...
Bootloader: Done loading app on core_mask: 0xf

### Launching Linux Kernel (flags = 0x5)

Both links down, not waiting for other switches
Switch number is 1

              Restricted Rights Legend

Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.

           cisco Systems, Inc.
           170 West Tasman Drive
           San Jose, California 95134-1706

Cisco IOS Software [Denali], Catalyst L3 Switch Software (CAT3K_CAA-UNIVERSALK9-M), Version 16.3.5b, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2017 by Cisco Systems, Inc.
Compiled Thu 02-Nov-17 11:07 by mcpre

Cisco IOS-XE software, Copyright (c) 2005-2017 by cisco Systems, Inc.
All rights reserved.  Certain components of Cisco IOS-XE software are
licensed under the GNU General Public License ("GPL") Version 2.0.  The
software code licensed under GPL Version 2.0 is free software that comes
with ABSOLUTELY NO WARRANTY.  You can redistribute and/or modify such
GPL code under the terms of GPL Version 2.0.  For more details, see the
documentation or "License Notice" file accompanying the IOS-XE software,
or the applicable URL provided on the flyer accompanying the IOS-XE
software.

% failed to initialize nvram
% attempting to recover from backup
% failed to initialize backup nvram

FIPS: Flash Key Check : Begin
FIPS: Flash Key Check : End, Not Found, FIPS Mode Not Enabled

This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.

A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

If you require further assistance please contact us by sending email to
export@cisco.com.

cisco WS-C3850-48T (MIPS) processor (revision AB0) with 865070K/6147K bytes of memory.
Processor board ID FCW2201FABC
2048K bytes of non-volatile configuration memory.
4194304K bytes of physical memory.
252000K bytes of Crash Files at crashinfo:.
1611414K bytes of Flash at flash:.
0K bytes of  at webui:.

Base Ethernet MAC Address          : 00:3c:10:9f:41:23
Motherboard Assembly Number        : 73-16296-08
Motherboard Serial Number          : FOC22011XYZ
Model Revision Number              : AB0
Motherboard Revision Number        : B0
Model Number                       : WS-C3850-48T
System Serial Number               : FCW2201FABC

%INIT: waited 0 seconds for NVRAM to be available

         --- System Configuration Dialog ---

Would you like to enter the initial configuration dialog? [yes/no]:n
*Feb  7 02:04:39.365: %SMART_LIC-6-AGENT_READY: Smart Agent for Licensing is initialized
*Feb  7 02:04:39.943: %IOSXE_RP_NV-3-NV_ACCESS_FAIL: Initial read of NVRAM contents failed
*Feb  7 02:04:40.053: %IOSXE_RP_NV-3-BACKUP_NV_ACCESS_FAIL: Initial read of backup NVRAM contents failed
*Feb  7 02:04:46.350: dev_pluggable_optics_selftest attribute table internally inconsistent @ 0x125
*Feb  7 02:04:47.257: %SMI-5-CLIENT:  Smart Install Client feature is enabled. It is recommended to disable the Smart Install feature when it is not actively used. To disable feature execute 'no vstack' in configuration mode
*Feb  7 02:04:47.451: %NBAR-6-CACHE_SYNC_INFO: Cache synchronization. Initialized.
*Feb  7 02:04:52.919: %SPANTREE-5-EXTENDED_SYSID: Extended SysId enabled for type vlan
*Feb  7 02:04:55.267: %LINK-3-UPDOWN: Interface Lsmpi18/0/3, changed state to up
*Feb  7 02:04:55.269: %LINK-3-UPDOWN: Interface EOBC18/0/1, changed state to up
*Feb  7 02:04:55.270: %LINK-3-UPDOWN: Interface GigabitEthernet0/0, changed state to down
*Feb  7 02:04:55.270: %LINK-3-UPDOWN: Interface LIIN18/0/2, changed state to up
*Feb  7 02:04:55.983: %HMANRP-6-HMAN_IOS_CHANNEL_INFO: HMAN-IOS channel event for switch 1: EMP_RELAY: Channel UP!
*Feb  7 02:04:56.346: %HMANRP-6-EMP_NO_ELECTION_INFO: Could not elect active EMP switch, setting emp active switch to 0: EMP_RELAY: Could not elect switch with mgmt port UP
*Feb  7 02:04:27.729: %STACKMGR-1-STACK_LINK_CHANGE:Switch 1 R0/0: stack_mgr:  Stack port 1 on switch 1 is nocable
*Feb  7 02:04:27.729: %STACKMGR-1-STACK_LINK_CHANGE:Switch 1 R0/0: stack_mgr:  Stack port 2 on switch 1 is down
*Feb  7 02:04:27.729: %STACKMGR-1-STACK_LINK_CHANGE:Switch 1 R0/0: stack_mgr:  Stack port 2 on switch 1 is nocable
*Feb  7 02:04:27.729: %STACKMGR-6-SWITCH_ADDED:Switch 1 R0/0: stack_mgr:  Switch 1 has been added to the stack.
*Feb  7 02:04:27.729: %STACKMGR-6-SWITCH_ADDED:Switch 1 R0/0: stack_mgr:  Switch 1 has been added to the stack.
*Feb  7 02:04:27.729: %STACKMGR-6-SWITCH_ADDED:Switch 1 R0/0: stack_mgr:  Switch 1 has been added to the stack.
*Feb  7 02:04:27.729: %STACKMGR-6-ACTIVE_ELECTED:Switch 1 R0/0: stack_mgr:  Switch 1 has been elected ACTIVE.
*Feb  7 02:04:56.438: %HMANRP-6-EMP_NO_ELECTION_INFO: Could not elect active EMP switch, setting emp active switch to 0: EMP_RELAY: Could not elect switch with mgmt port UP
*Feb  7 02:04:56.485: %LINEPROTO-5-UPDOWN: Line protocol on Interface Lsmpi18/0/3, changed state to up
*Feb  7 02:04:56.486: %LINEPROTO-5-UPDOWN: Line protocol on Interface EOBC18/0/1, changed state to up
*Feb  7 02:04:56.487: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/0, changed state to down
*Feb  7 02:04:56.487: %LINEPROTO-5-UPDOWN: Line protocol on Interface LIIN18/0/2, changed state to up
*Feb  7 02:04:59.197: %IOSXE_MGMTVRF-6-CREATE_SUCCESS_INFO: Management vrf Mgmt-vrf created with ID 1, ipv4 table-id 0x1, ipv6 table-id 0x1E000001
*Feb  7 02:05:02.253: %LINEPROTO-5-UPDOWN: Line protocol on Interface Vlan1, changed state to down
*Feb  7 02:05:09.253: %HMANRP-6-EMP_NO_ELECTION_INFO: Could not elect active EMP switch, setting emp active switch to 0: EMP_RELAY: Could not elect switch with mgmt port UP
*Feb  7 02:05:30.482: %LINK-3-UPDOWN: Interface GigabitEthernet1/1/1, changed state to down
*Feb  7 02:05:30.483: %LINK-3-UPDOWN: Interface GigabitEthernet1/1/2, changed state to down
*Feb  7 02:05:30.483: %LINK-3-UPDOWN: Interface GigabitEthernet1/1/3, changed state to down
*Feb  7 02:05:30.485: %LINK-3-UPDOWN: Interface GigabitEthernet1/1/4, changed state to down
*Feb  7 02:05:30.487: %LINK-3-UPDOWN: Interface TenGigabitEthernet1/1/1, changed state to down
*Feb  7 02:05:30.487: %LINK-3-UPDOWN: Interface TenGigabitEthernet1/1/2, changed state to down
*Feb  7 02:05:30.488: %LINK-3-UPDOWN: Interface TenGigabitEthernet1/1/3, changed state to down
*Feb  7 02:05:30.492: %LINK-3-UPDOWN: Interface TenGigabitEthernet1/1/4, changed state to down
*Feb  7 02:05:31.483: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet1/1/1, changed state to down
*Feb  7 02:05:31.495: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet1/1/2, changed state to down
*Feb  7 02:05:31.495: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet1/1/3, changed state to down
*Feb  7 02:05:31.496: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet1/1/4, changed state to down
*Feb  7 02:05:31.496: %LINEPROTO-5-UPDOWN: Line protocol on Interface TenGigabitEthernet1/1/1, changed state to down
*Feb  7 02:05:31.496: %LINEPROTO-5-UPDOWN: Line protocol on Interface TenGigabitEthernet1/1/2, changed state to down
*Feb  7 02:05:31.497: %LINEPROTO-5-UPDOWN: Line protocol on Interface TenGigabitEthernet1/1/3, changed state to down
*Feb  7 02:05:31.497: %LINEPROTO-5-UPDOWN: Line protocol on Interface TenGigabitEthernet1/1/4, changed state to down
*Feb  7 02:05:31.618: %LINK-3-UPDOWN: Interface Vlan1, changed state to up
*Feb  7 02:05:35.869: %SYS-5-RESTART: System restarted --
Cisco IOS Software [Denali], Catalyst L3 Switch Software (CAT3K_CAA-UNIVERSALK9-M), Version 16.3.5b, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2017 by Cisco Systems, Inc.
Compiled Thu 02-Nov-17 11:07 by mcpre
% Please answer 'yes' or 'no'.
Would you like to enter the initial configuration dialog? [yes/no]: n

Would you like to terminate autoinstall? [yes]:     // JUST PRESS ENTER

Press RETURN to get started!

*Feb  7 02:05:58.451: %SSH-5-ENABLED: SSH 1.99 has been enabled
*Feb  7 02:05:58.551: %LINK-5-CHANGED: Interface Vlan1, changed state to administratively down
*Feb  7 02:05:58.735: %PKI-4-NOCONFIGAUTOSAVE: Configuration was modified.  Issue "write memory" to save new IOS PKI configuration
*Feb  7 02:06:02.018: SMI Director is not configured, disabling SMI
*Feb  7 02:06:02.019: disable_smartinstall_operation:Disabling SMI
*Feb  7 02:06:08.651: %PNP-6-PNP_DISCOVERY_STOPPED: PnP Discovery stopped (Config Wizard)
Switch>sd 1:0:0:0: [sdb] Asking for cache data failed
*Feb  7 02:06:22.511: %IOSD_INFRA-6-IFS_DEVICE_OIR: Device usbflash0 added      //  MY USB DRIVE WAS DETECTED AND FILES CAN BE ACCESSED VIA usbflash0:
Switch>
*Feb  7 02:06:27.148: %AN-6-AN_ABORTED_BY_CONSOLE_INPUT: Autonomic disabled due to User intervention on console. configure 'autonomic' to enable it.
Switch>enable
Switch#dir
Directory of flash:/

38802  -rw-          2097152   Feb 7 2018 02:05:41 +00:00  nvram_config
38803  -rw-         15954556  Jan 12 2018 22:46:21 +00:00  cat3k_caa-guestshell.16.03.05b.SPA.pkg
38804  -rw-         22301472  Jan 12 2018 22:46:19 +00:00  cat3k_caa-rpbase.16.03.05b.SPA.pkg
38805  -rw-        266035828  Jan 12 2018 22:46:21 +00:00  cat3k_caa-rpcore.16.03.05b.SPA.pkg
38806  -rw-          9089660  Jan 12 2018 22:46:20 +00:00  cat3k_caa-srdriver.16.03.05b.SPA.pkg
38807  -rw-        212812400  Jan 12 2018 22:46:20 +00:00  cat3k_caa-wcm.16.03.05b.SPA.pkg
38808  -rw-         13423224  Jan 12 2018 22:46:20 +00:00  cat3k_caa-webui.16.03.05b.SPA.pkg
38809  -rw-             4748  Jan 12 2018 22:46:45 +00:00  packages.conf
38810  -rw-              148   Feb 7 2018 02:01:40 +00:00  bootloader_evt_handle.log
69841  drwx             4096  Jan 12 2018 22:59:09 +00:00  core
77601  drwx             4096  Jan 12 2018 22:49:22 +00:00  .prst_sync
   11  drwx             4096  Jan 12 2018 22:49:23 +00:00  .rollback_timer
 7762  drwx             4096   Feb 7 2018 02:01:54 +00:00  dc_profile_dir
 7764  drwx             4096  Jan 12 2018 22:49:32 +00:00  gs_script
 --More--         38811  -rw-            65301   Feb 7 2018 02:02:12 +00:00  memleak.tcl
15521  drwx             4096  Jan 12 2018 22:50:01 +00:00  .installer
38812  -rw-          2097152   Feb 7 2018 02:05:41 +00:00  nvram_config_bkup
38813  -rw-               34   Feb 7 2018 02:06:04 +00:00  pnp-tech-time
38814  -rw-            43698   Feb 7 2018 02:06:07 +00:00  pnp-tech-discovery-summary

1624104960 bytes total (994193408 bytes free)
 
Switch#copy usbflash0:/cat3k_caa-universalk9.SPA.03.06.04.E.152-2.E4.bin flash:
Destination filename [cat3k_caa-universalk9.SPA.03.06.04.E.152-2.E4.bin]?
Copy in progress...CCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCC
CCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCC

<OUTPUT TRUNCATED>

302988468 bytes copied in 65.744 secs (4608610 bytes/sec)
 
Switch#dir
Directory of flash:/

38802  -rw-          2097152   Feb 7 2018 02:05:41 +00:00  nvram_config
38803  -rw-         15954556  Jan 12 2018 22:46:21 +00:00  cat3k_caa-guestshell.16.03.05b.SPA.pkg
38804  -rw-         22301472  Jan 12 2018 22:46:19 +00:00  cat3k_caa-rpbase.16.03.05b.SPA.pkg
38805  -rw-        266035828  Jan 12 2018 22:46:21 +00:00  cat3k_caa-rpcore.16.03.05b.SPA.pkg
38806  -rw-          9089660  Jan 12 2018 22:46:20 +00:00  cat3k_caa-srdriver.16.03.05b.SPA.pkg
38807  -rw-        212812400  Jan 12 2018 22:46:20 +00:00  cat3k_caa-wcm.16.03.05b.SPA.pkg
38808  -rw-         13423224  Jan 12 2018 22:46:20 +00:00  cat3k_caa-webui.16.03.05b.SPA.pkg
38809  -rw-             4748  Jan 12 2018 22:46:45 +00:00  packages.conf
38810  -rw-              148   Feb 7 2018 02:01:40 +00:00  bootloader_evt_handle.log
69841  drwx             4096  Jan 12 2018 22:59:09 +00:00  core
77601  drwx             4096  Jan 12 2018 22:49:22 +00:00  .prst_sync
   11  drwx             4096  Jan 12 2018 22:49:23 +00:00  .rollback_timer
 7762  drwx             4096   Feb 7 2018 02:01:54 +00:00  dc_profile_dir
 7764  drwx             4096  Jan 12 2018 22:49:32 +00:00  gs_script
 38811  -rw-            65301   Feb 7 2018 02:02:12 +00:00  memleak.tcl
15521  drwx             4096  Jan 12 2018 22:50:01 +00:00  .installer
38812  -rw-          2097152   Feb 7 2018 02:05:41 +00:00  nvram_config_bkup
38813  -rw-               34   Feb 7 2018 02:06:04 +00:00  pnp-tech-time
38814  -rw-            43698   Feb 7 2018 02:06:07 +00:00  pnp-tech-discovery-summary
38815  -rw-        302988468   Feb 7 2018 02:10:44 +00:00  cat3k_caa-universalk9.SPA.03.06.04.E.152-2.E4.bin

1624104960 bytes total (690900992 bytes free)
Switch#
Switch#request platform software package install switch 1 file flash:cat3k_caa-universalk9.SPA.03.06.04.E.152-2.E4.bin new
--- Starting install local lock acquisition on switch 1 ---
Finished install local lock acquisition on switch 1

Expanding image file: flash:cat3k_caa-universalk9.SPA.03.06.04.E.152-2.E4.bin
[1]: Expanding file
[1]: Finished expanding all-in-one software package in switch 1
SUCCESS: Finished expanding all-in-one software package.
[1]: Performing install
  SUCCESS: install Finished
[1]: install package(s) on switch 1
--- Starting list of software package changes ---
Old files list:
  Removed cat3k_caa-guestshell.16.03.05b.SPA.pkg
  Removed cat3k_caa-rpbase.16.03.05b.SPA.pkg
  Removed cat3k_caa-rpcore.16.03.05b.SPA.pkg
  Removed cat3k_caa-srdriver.16.03.05b.SPA.pkg
  Removed cat3k_caa-wcm.16.03.05b.SPA.pkg
  Removed cat3k_caa-webui.16.03.05b.SPA.pkg
New files list:
  Added cat3k_caa-base.SPA.03.06.04.E.pkg
  Added cat3k_caa-drivers.SPA.03.06.04.E.pkg
  Added cat3k_caa-infra.SPA.03.06.04.E.pkg
  Added cat3k_caa-iosd-universalk9.SPA.152-2.E4.pkg
  Added cat3k_caa-platform.SPA.03.06.04.E.pkg
  Added cat3k_caa-wcm.SPA.10.2.140.0.pkg
Finished list of software package changes
SUCCESS: Software provisioned.  New software will load on reboot.
[1]: Finished install successful on switch 1
Checking status of install on [1]
[1]: Finished install in switch 1
SUCCESS: Finished install: Success on [1]

Switch#dir
Directory of flash:/

38802  -rw-          2097152   Feb 7 2018 02:05:41 +00:00  nvram_config
38803  -rw-         15954556  Jan 12 2018 22:46:21 +00:00  cat3k_caa-guestshell.16.03.05b.SPA.pkg
38804  -rw-         22301472  Jan 12 2018 22:46:19 +00:00  cat3k_caa-rpbase.16.03.05b.SPA.pkg
38805  -rw-        266035828  Jan 12 2018 22:46:21 +00:00  cat3k_caa-rpcore.16.03.05b.SPA.pkg
38806  -rw-          9089660  Jan 12 2018 22:46:20 +00:00  cat3k_caa-srdriver.16.03.05b.SPA.pkg
38807  -rw-        212812400  Jan 12 2018 22:46:20 +00:00  cat3k_caa-wcm.16.03.05b.SPA.pkg
38808  -rw-         13423224  Jan 12 2018 22:46:20 +00:00  cat3k_caa-webui.16.03.05b.SPA.pkg
38817  -rw-             1244   Feb 7 2018 02:13:06 +00:00  packages.conf
38810  -rw-              148   Feb 7 2018 02:01:40 +00:00  bootloader_evt_handle.log
69841  drwx             4096  Jan 12 2018 22:59:09 +00:00  core
77601  drwx             4096  Jan 12 2018 22:49:22 +00:00  .prst_sync
   11  drwx             4096  Jan 12 2018 22:49:23 +00:00  .rollback_timer
 7762  drwx             4096   Feb 7 2018 02:01:54 +00:00  dc_profile_dir
 7764  drwx             4096  Jan 12 2018 22:49:32 +00:00  gs_script
38811  -rw-            65301   Feb 7 2018 02:02:12 +00:00  memleak.tcl
15521  drwx             4096  Jan 12 2018 22:50:01 +00:00  .installer
38812  -rw-          2097152   Feb 7 2018 02:05:41 +00:00  nvram_config_bkup
38813  -rw-               34   Feb 7 2018 02:06:04 +00:00  pnp-tech-time
38814  -rw-            43698   Feb 7 2018 02:06:07 +00:00  pnp-tech-discovery-summary
38809  -rw-                0   Feb 7 2018 02:13:26 +00:00  .onreboot
85364  -rw-        111180608   Feb 7 2018 02:12:11 +00:00  cat3k_caa-wcm.SPA.10.2.140.0.pkg
85370  -rw-         82665136   Feb 7 2018 02:12:15 +00:00  cat3k_caa-base.SPA.03.06.04.E.pkg
85363  -rw-          4913852   Feb 7 2018 02:12:11 +00:00  cat3k_caa-drivers.SPA.03.06.04.E.pkg
85367  -rw-         33784816   Feb 7 2018 02:12:12 +00:00  cat3k_caa-infra.SPA.03.06.04.E.pkg
85365  -rw-         43021636   Feb 7 2018 02:12:12 +00:00  cat3k_caa-iosd-universalk9.SPA.152-2.E4.pkg
85366  -rw-         27417488   Feb 7 2018 02:12:12 +00:00  cat3k_caa-platform.SPA.03.06.04.E.pkg
85369  -rw-             1244   Feb 7 2018 02:12:40 +00:00  cat3k_caa-universalk9.SPA.03.06.04.E.152-2.E4.conf
38816  -rw-             4748   Feb 7 2018 02:13:06 +00:00  packages.conf.00-

1624104960 bytes total (690855936 bytes free)

Switch#show run | inc boot      
license boot level ipbasek9
diagnostic bootup level minimal

Switch#configure terminal
Enter configuration commands, one per line.  End with CNTL/Z.
Switch(config)#boot system flash:packages.conf        // CONFIGURE THIS, OTHERWISE IT WILL GO INTO switch: PROMPT
Switch(config)#end
*Feb  7 02:14:58.743: %SYS-5-CONFIG_I: Configured from console by consolete
Switch#write memory       // SAVE CONFIG IN NVRAM
Building configuration...
[OK]

Switch#reload      // REBOOT FOR NEW IOS TO TAKE EFFECT
Reload command is being issued on Active unit, this will reload the whole stack
Proceed with reload? [confirm]
*Feb  7 02:15:20.051: %SYS-5-RELOAD: Reload requested by console. Reload Reason: Reload Command.
Chassis 1 reloading, reason - Reload command
Feb  7 02:15:32.039 R0/0: %PMAN-5-EXITACTION: Process manager is exiting: reload fp action requested
Feb  7 02:15:41.101 R0/0: %PMAN-5-EXITACTION: Process manager is exiting: process exit with reload stack code octeon_wdt: WDT device closed unexpectedly.  WDT will not stop!
reboot: Restarting system


Booting...

Interface GE 0 link down***ERROR: PHY link is down

Getting rest of image

Reading full image into memory...Check base package header ...: done = 16384

Getting rest of image

Reading full image into memory....done

Reading full base package into memory...: done = 82665136

Bundle Image

--------------------------------------

Kernel Address    : 0x5342f350

Kernel Size       : 0x418a9b/4295323

Initramfs Address : 0x53847dec

Initramfs Size    : 0xe780c3/15171779

Compression Format: .mzip


Bootable image at @ ram:0x5342f350

Bootable image segment 0 address range [0x81100000, 0x82140000] is in range [0x80180000, 0x90000000].

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@boot_system: 377

Loading Linux kernel with entry point 0x8166a600 ...

Bootloader: Done loading app on core_mask: 0xf

### Launching Linux Kernel (flags = 0x5)

All packages are Digitally Signed
Starting System Services

FIPS(NGWC): Flash Key Check : Begin
FIPS(NGWC): Flash Key Check : End, Not Found, FIPS Mode Not Enabled


Front-end Microcode IMG MGR: found 4 microcode images for 1 device.
Image for front-end 0: /tmp/microcode_update/front_end/fe_type_6_0
Image for front-end 0: /tmp/microcode_update/front_end/fe_type_6_1
Image for front-end 0: /tmp/microcode_update/front_end/fe_type_6_2
Image for front-end 0: /tmp/microcode_update/front_end/fe_type_6_3

Front-end Microcode IMG MGR: Preparing to program device microcode...
Front-end Microcode IMG MGR: Preparing to program device[0]...594412 bytes.
Front-end Microcode IMG MGR: Programming device 0...rwRrrrrrrwssssssssssssssssssspssssssssssssssssssspssssssssssssssssssspssssssssssssssssssspssssssssss
Front-end Microcode IMG MGR: Preparing to program device[0]...379478 bytes.
Front-end Microcode IMG MGR: Programming device 0...rrrrrrwssssssssssssssssssspssssssssssssssssssspssssssssssssssssssspssssssssssssssssssspsssssssssssssss
Front-end Microcode IMG MGR: Preparing to program device[0]...25166 bytes.
Front-end Microcode IMG MGR: Programming device 0...rrrrrrwssssssssssssssssssspssssssssssssssssssspssssssssssssssssssspssssssssssssssssssspsssssssssssssss

Front-end Mÿþ

Booting...

Interface GE 0 link down***ERROR: PHY link is down

Getting rest of image

Reading full image into memory...Check base package header ...: done = 16384

Getting rest of image

Reading full image into memory....done

Reading full base package into memory...: done = 82665136

Bundle Image

--------------------------------------

Kernel Address    : 0x5342f350

Kernel Size       : 0x418a9b/4295323

Initramfs Address : 0x53847dec

Initramfs Size    : 0xe780c3/15171779

Compression Format: .mzip

Bootable image at @ ram:0x5342f350

Bootable image segment 0 address range [0x81100000, 0x82140000] is in range [0x80180000, 0x90000000].

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@boot_system: 377

Loading Linux kernel with entry point 0x8166a600 ...

Bootloader: Done loading app on core_mask: 0xf

### Launching Linux Kernel (flags = 0x5)

All packages are Digitally Signed
Starting System Services

FIPS(NGWC): Flash Key Check : Begin
FIPS(NGWC): Flash Key Check : End, Not Found, FIPS Mode Not Enabled

              Restricted Rights Legend

Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.

           cisco Systems, Inc.
           170 West Tasman Drive
           San Jose, California 95134-1706

Cisco IOS Software, IOS-XE Software, Catalyst L3 Switch Software (CAT3K_CAA-UNIVERSALK9-M), Version 03.06.04.E RELEASE SOFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2016 by Cisco Systems, Inc.
Compiled Sat 13-Feb-16 03:45 by prod_rel_team

Cisco IOS-XE software, Copyright (c) 2005-2015 by cisco Systems, Inc.
All rights reserved.  Certain components of Cisco IOS-XE software are
licensed under the GNU General Public License ("GPL") Version 2.0.  The
software code licensed under GPL Version 2.0 is free software that comes
with ABSOLUTELY NO WARRANTY.  You can redistribute and/or modify such
GPL code under the terms of GPL Version 2.0.
(http://www.gnu.org/licenses/gpl-2.0.html) For more details, see the
documentation or "License Notice" file accompanying the IOS-XE software,
or the applicable URL provided on the flyer accompanying the IOS-XE
software.

FIPS: Flash Key Check : Begin
FIPS: Flash Key Check : End, Not Found, FIPS Mode Not Enabled

This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.

A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

If you require further assistance please contact us by sending email to
export@cisco.com.

cisco WS-C3850-48T (MIPS) processor with 4194304K bytes of physical memory.
Processor board ID FCW2201FABC
2048K bytes of non-volatile configuration memory.
4194304K bytes of physical memory.
252000K bytes of Crash Files at crashinfo:.
1611414K bytes of Flash at flash:.
1974239K bytes of USB Flash at usbflash0:.
0K bytes of  at webui:.

Base Ethernet MAC Address          : 00:3c:10:9f:41:23
Motherboard Assembly Number        : 73-16296-08
Motherboard Serial Number          : FOC220111XYZ
Model Revision Number              : AB0
Motherboard Revision Number        : B0
Model Number                       : WS-C3850-48T
System Serial Number               : FCW2201FABC


no platform punt-keepalive disable-kernel-core
     ^
% Invalid input detected at '^' marker.

license boot level ipbasek9
^
% Invalid input detected at '^' marker.

control-plane
^
% Invalid input detected at '^' marker.

 service-policy input system-cpp-policy
 ^
% Invalid input detected at '^' marker.

ap dot11 airtime-fairness policy-name Default 0
^
% Invalid input detected at '^' marker.

ap hyperlocation ble-beacon 0
^
% Invalid input detected at '^' marker.

ap hyperlocation ble-beacon 1
^
% Invalid input detected at '^' marker.

ap hyperlocation ble-beacon 2
^
% Invalid input detected at '^' marker.

ap hyperlocation ble-beacon 3
^
% Invalid input detected at '^' marker.

ap hyperlocation ble-beacon 4
^
% Invalid input detected at '^' marker.


Press RETURN to get started!

*Feb  7 02:32:25.131: %IOSD_INFRA-5-IFS_DEVICE_OIR: Device usbflash0 added
*Feb  7 02:32:09.728: *%INIT-7-SWITCH_BOOTING: 1 wcm:  Switch booting... 
*Feb  7 02:32:46.419: %LINK-3-UPDOWN: Interface GigabitEthernet0/0, changed state to down
*Feb  7 02:32:46.419: %LINK-3-UPDOWN: Interface LIIN0, changed state to up
*Feb  7 02:32:46.421: %NGWC_PLATFORM_FEP-6-FRU_PS_OIR: Switch 1: FRU power supply A inserted
*Feb  7 02:32:46.468: %SPANTREE-5-EXTENDED_SYSID: Extended SysId enabled for type vlan
*Feb  7 02:32:48.775: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/0, changed state to down
*Feb  7 02:32:48.776: %LINEPROTO-5-UPDOWN: Line protocol on Interface LIIN0, changed state to up
*Feb  7 02:32:51.296: %LINEPROTO-5-UPDOWN: Line protocol on Interface Vlan1, changed state to down
*Feb  7 02:32:57.872: %SYS-4-CONFIG_NEWER: Configuration from version 16.3 may not be correctly understood
*Feb  7 02:33:08.717: %SYS-5-CONFIG_I: Configured from memory by console
*Feb  7 02:33:08.837: %STACKMGR-6-ACTIVE_READY: 1 stack-mgr:  Active switch 1 is ready. System has been configured

*Feb  7 02:33:09.048: %SYS-5-RESTART: System restarted --
Cisco IOS Software, IOS-XE Software, Catalyst L3 Switch Software (CAT3K_CAA-UNIVERSALK9-M), Version 03.06.04.E RELEASE SOFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2016 by Cisco Systems, Inc.
Compiled Sat 13-Feb-16 03:45 by prod_rel_team
*Feb  7 02:33:09.058: %AUTHMGR_SPI-6-START: Auth Manager SPI server started
*Feb  7 02:33:09.136: %SSH-5-ENABLED: SSH 1.99 has been enabled
*Feb  7 02:33:10.100: %LINK-5-CHANGED: Interface Vlan1, changed state to administratively down
*Feb  7 02:33:10.480: %SYS-6-BOOTTIME: Time taken to reboot after reload = 1074 seconds
*Feb  7 02:33:13.131: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet1/1/1, changed state to down
*Feb  7 02:33:13.131: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet1/1/2, changed state to down
*Feb  7 02:33:13.131: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet1/1/3, changed state to down
*Feb  7 02:33:13.132: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet1/1/4, changed state to down
*Feb  7 02:33:13.132: %LINEPROTO-5-UPDOWN: Line protocol on Interface TenGigabitEthernet1/1/1, changed state to down
*Feb  7 02:33:13.132: %LINEPROTO-5-UPDOWN: Line protocol on Interface TenGigabitEthernet1/1/2, changed state to down
*Feb  7 02:33:13.132: %LINEPROTO-5-UPDOWN: Line protocol on Interface TenGigabitEthernet1/1/3, changed state to down
*Feb  7 02:33:13.132: %LINEPROTO-5-UPDOWN: Line protocol on Interface TenGigabitEthernet1/1/4, changed state to down
Switch>enable
Switch#show version
Cisco IOS Software, IOS-XE Software, Catalyst L3 Switch Software (CAT3K_CAA-UNIVERSALK9-M), Version 03.06.04.E RELEASE SOFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2016 by Cisco Systems, Inc.
Compiled Sat 13-Feb-16 03:45 by prod_rel_team

Cisco IOS-XE software, Copyright (c) 2005-2015 by cisco Systems, Inc.
All rights reserved.  Certain components of Cisco IOS-XE software are
licensed under the GNU General Public License ("GPL") Version 2.0.  The
software code licensed under GPL Version 2.0 is free software that comes
with ABSOLUTELY NO WARRANTY.  You can redistribute and/or modify such
GPL code under the terms of GPL Version 2.0.
(http://www.gnu.org/licenses/gpl-2.0.html) For more details, see the
documentation or "License Notice" file accompanying the IOS-XE software,
or the applicable URL provided on the flyer accompanying the IOS-XE
software.

ROM: IOS-XE ROMMON
BOOTLDR: CAT3K_CAA Boot Loader (CAT3K_CAA-HBOOT-M) Version 3.58, RELEASE SOFTWARE (P)    
Switch uptime is 2 minutes
Uptime for this control processor is 5 minutes
System returned to ROM by reload
System image file is "flash:packages.conf"
Last reload reason: Reload Command

This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.

A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

If you require further assistance please contact us by sending email to
export@cisco.com.  
License Level: Ipbase
License Type: Permanent
Next reload license Level: Ipbase

cisco WS-C3850-48T (MIPS) processor with 4194304K bytes of physical memory.
Processor board ID FCW2201FABC
1 Virtual Ethernet interface
52 Gigabit Ethernet interfaces
4 Ten Gigabit Ethernet interfaces
2048K bytes of non-volatile configuration memory.
4194304K bytes of physical memory.
252000K bytes of Crash Files at crashinfo:.
1611414K bytes of Flash at flash:.
1974239K bytes of USB Flash at usbflash0:.
0K bytes of  at webui:.

Base Ethernet MAC Address          : 00:3c:10:9f:41:23
Motherboard Assembly Number        : 73-16296-08
Motherboard Serial Number          : FOC22011XYZ
Model Revision Number              : AB0
Motherboard Revision Number        : B0
Model Number                       : WS-C3850-48T
System Serial Number               : FCW2201FABC

Switch Ports Model              SW Version        SW Image              Mode  
------ ----- -----              ----------        ----------            ----  
*    1 56    WS-C3850-48T       03.06.04.E        cat3k_caa-universalk9 INSTALL

Configuration register is 0x102

Switch#dir         // THERE'S A LOT OF UNNECESSARY FILES THAT CONSUMES FLASH MEMORY
Directory of flash:/

38802  -rw-     2097152   Feb 7 2018 02:33:14 +00:00  nvram_config
38803  -rw-    15954556  Jan 12 2018 22:46:21 +00:00  cat3k_caa-guestshell.16.03.05b.SPA.pkg
38804  -rw-    22301472  Jan 12 2018 22:46:19 +00:00  cat3k_caa-rpbase.16.03.05b.SPA.pkg
38805  -rw-   266035828  Jan 12 2018 22:46:21 +00:00  cat3k_caa-rpcore.16.03.05b.SPA.pkg
38806  -rw-     9089660  Jan 12 2018 22:46:20 +00:00  cat3k_caa-srdriver.16.03.05b.SPA.pkg
38807  -rw-   212812400  Jan 12 2018 22:46:20 +00:00  cat3k_caa-wcm.16.03.05b.SPA.pkg
38808  -rw-    13423224  Jan 12 2018 22:46:20 +00:00  cat3k_caa-webui.16.03.05b.SPA.pkg
38817  -rw-        1244   Feb 7 2018 02:13:06 +00:00  packages.conf
38810  -rw-         148   Feb 7 2018 02:01:40 +00:00  bootloader_evt_handle.log
69841  drwx        4096  Jan 12 2018 22:59:09 +00:00  core
77601  drwx        4096  Jan 12 2018 22:49:22 +00:00  .prst_sync
   11  drwx        4096  Jan 12 2018 22:49:23 +00:00  .rollback_timer
 7762  drwx        4096   Feb 7 2018 02:32:32 +00:00  dc_profile_dir
 7764  drwx        4096  Jan 12 2018 22:49:32 +00:00  gs_script
38811  -rw-       65301   Feb 7 2018 02:02:12 +00:00  memleak.tcl
15521  drwx        4096  Jan 12 2018 22:50:01 +00:00  .installer
38812  -rw-     2097152   Feb 7 2018 02:15:20 +00:00  nvram_config_bkup
38813  -rw-          34   Feb 7 2018 02:06:04 +00:00  pnp-tech-time
38814  -rw-       43698   Feb 7 2018 02:06:07 +00:00  pnp-tech-discovery-summary
38809  -rw-           0   Feb 7 2018 02:13:26 +00:00  .onreboot
85364  -rw-   111180608   Feb 7 2018 02:12:11 +00:00  cat3k_caa-wcm.SPA.10.2.140.0.pkg
85370  -rw-    82665136   Feb 7 2018 02:12:15 +00:00  cat3k_caa-base.SPA.03.06.04.E.pkg
85363  -rw-     4913852   Feb 7 2018 02:12:11 +00:00  cat3k_caa-drivers.SPA.03.06.04.E.pkg
85367  -rw-    33784816   Feb 7 2018 02:12:12 +00:00  cat3k_caa-infra.SPA.03.06.04.E.pkg
85365  -rw-    43021636   Feb 7 2018 02:12:12 +00:00  cat3k_caa-iosd-universalk9.SPA.152-2.E4.pkg
85366  -rw-    27417488   Feb 7 2018 02:12:12 +00:00  cat3k_caa-platform.SPA.03.06.04.E.pkg
85369  -rw-        1244   Feb 7 2018 02:12:40 +00:00  cat3k_caa-universalk9.SPA.03.06.04.E.152-2.E4.conf
38816  -rw-        4748   Feb 7 2018 02:13:06 +00:00  packages.conf.00-

1624104960 bytes total (773160960 bytes free)

Switch#software clean         // REMOVE UNWANTED FILES
Preparing clean operation ...
[1]: Cleaning up unnecessary package files
[1]: No path specified, will use booted path flash:packages.conf
[1]: Cleaning flash:
[1]: Preparing packages list to delete ...
     In use files, will not delete:
       cat3k_caa-base.SPA.03.06.04.E.pkg
       cat3k_caa-infra.SPA.03.06.04.E.pkg
       cat3k_caa-iosd-universalk9.SPA.152-2.E4.pkg
       cat3k_caa-platform.SPA.03.06.04.E.pkg
       cat3k_caa-wcm.SPA.10.2.140.0.pkg
       packages.conf
     Committed files, will not delete:
       cat3k_caa-drivers.SPA.03.06.04.E.pkg
[1]: Files that will be deleted:
    cat3k_caa-guestshell.16.03.05b.SPA.pkg
    cat3k_caa-rpbase.16.03.05b.SPA.pkg
    cat3k_caa-rpcore.16.03.05b.SPA.pkg
    cat3k_caa-srdriver.16.03.05b.SPA.pkg
    cat3k_caa-universalk9.SPA.03.06.04.E.152-2.E4.conf
    cat3k_caa-wcm.16.03.05b.SPA.pkg
    cat3k_caa-webui.16.03.05b.SPA.pkg
    packages.conf.00-

[1]: Do you want to proceed with the deletion? [yes/no]: yes
[1]: Clean up completed


Switch#write memory      // SAVE IN NVRAM
Warning: Attempting to overwrite an NVRAM configuration previously written
by a different version of the system image.
Overwrite the previous NVRAM configuration?[confirm]
Building configuration...
Compressed configuration from 7660 bytes to 3416 bytes[OK]

Switch#reload       // REBOOT TO CONFIRM BOOTUP WOULD BE SUCCESSFUL
Reload command is being issued on Active unit, this will reload the whole stack
Proceed with reload? [confirm]

*Feb  7 02:36:58.222: %SYS-5-RELOAD: Reload requested by console. Reload Reason: Reload command.
*Feb  7 02:36:58.793: %STACKMGR-1-RELOAD_REQUEST: 1 stack-mgr:  Received reload request for all switches, reason Reload command
*Feb  7 02:36:58.794: %STACKMGR-1-RELOAD: 1 stack-mgr:  Reloading due to reason Reload command
*Feb  7 02:36:59.295: %IOSXE-3-PLATFORM: 1 process sysmgr: Reset/Reload requested by [stack-manager].
<Wed Feb  7 02:36:59 2018> Message from sysmgr: Reason Code:[3] Reset Reason:Reset/Reload requested by [stack-manager]. [Reload command]
umount: /proc/fs/nfsd: not mounted
Unmounting ng3k filesystems...
Unmounted /dev/sda3...
Warning! - some ng3k filesystems may not have unmounted cleanly...
Please stand by while rebooting the system...
Restarting system.

<OUTPUT TRUNCATED>

Switch#show version
Cisco IOS Software, IOS-XE Software, Catalyst L3 Switch Software (CAT3K_CAA-UNIVERSALK9-M), Version 03.06.04.E RELEASE SOFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2016 by Cisco Systems, Inc.
Compiled Sat 13-Feb-16 03:45 by prod_rel_team

Cisco IOS-XE software, Copyright (c) 2005-2015 by cisco Systems, Inc.
All rights reserved.  Certain components of Cisco IOS-XE software are
licensed under the GNU General Public License ("GPL") Version 2.0.  The
software code licensed under GPL Version 2.0 is free software that comes
with ABSOLUTELY NO WARRANTY.  You can redistribute and/or modify such
GPL code under the terms of GPL Version 2.0.
(http://www.gnu.org/licenses/gpl-2.0.html) For more details, see the
documentation or "License Notice" file accompanying the IOS-XE software,
or the applicable URL provided on the flyer accompanying the IOS-XE
software.

ROM: IOS-XE ROMMON
BOOTLDR: CAT3K_CAA Boot Loader (CAT3K_CAA-HBOOT-M) Version 3.58, RELEASE SOFTWARE (P)    
Switch uptime is 1 minute
Uptime for this control processor is 4 minutes
System returned to ROM by reload
System image file is "flash:packages.conf"
Last reload reason: Reload command

This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.

A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

If you require further assistance please contact us by sending email to
export@cisco.com.
  
License Level: Ipbase
License Type: Permanent
Next reload license Level: Ipbase

cisco WS-C3850-48T (MIPS) processor with 4194304K bytes of physical memory.
Processor board ID FCW2201FABC
1 Virtual Ethernet interface
52 Gigabit Ethernet interfaces
4 Ten Gigabit Ethernet interfaces
2048K bytes of non-volatile configuration memory.
4194304K bytes of physical memory.
252000K bytes of Crash Files at crashinfo:.
1611414K bytes of Flash at flash:.
1974239K bytes of USB Flash at usbflash0:.
0K bytes of  at webui:.

Base Ethernet MAC Address          : 00:3c:10:9f:41:23
Motherboard Assembly Number        : 73-16296-08
Motherboard Serial Number          : FOC22011XYZ
Model Revision Number              : AB0
Motherboard Revision Number        : B0
Model Number                       : WS-C3850-48T
System Serial Number               : FCW2201FABC


Switch Ports Model              SW Version        SW Image              Mode  
------ ----- -----              ----------        ----------            ----  
*    1 56    WS-C3850-48T       03.06.04.E        cat3k_caa-universalk9 INSTALL

Configuration register is 0x102


There's also some config lines that were auto generated. You may want to consider a cleanup by either doing a write erase then issue a reload or type no on each command line.

class-map match-any system-cpp-police-topology-control
  description Topology control
class-map match-any system-cpp-police-sw-forward
  description Sw forwarding, SGT Cache Full, LOGGING
class-map match-any system-cpp-default
  description DHCP snooping, show forward and rest of traffic
class-map match-any system-cpp-police-sys-data
  description Learning cache ovfl, Crypto Control, Exception, EGR Exception, NFL SAMPLED DATA, Gold Pkt, RPF Failed
class-map match-any system-cpp-police-punt-webauth
  description Punt Webauth
class-map match-any system-cpp-police-forus
  description Forus Address resolution and Forus traffic
class-map match-any system-cpp-police-multicast-end-station
  description MCAST END STATION
class-map match-any system-cpp-police-multicast
  description Transit Traffic and MCAST Data
class-map match-any system-cpp-police-l2-control
  description L2 control
class-map match-any system-cpp-police-dot1x-auth
  description DOT1X Auth
class-map match-any system-cpp-police-data
  description ICMP_GEN and BROADCAST
class-map match-any system-cpp-police-control-low-priority
  description ICMP redirect and general punt
class-map match-any system-cpp-police-wireless-priority1
  description Wireless priority 1
class-map match-any system-cpp-police-wireless-priority2
  description Wireless priority 2
class-map match-any system-cpp-police-wireless-priority3-4-5
  description Wireless priority 3,4 and 5
class-map match-any non-client-nrt-class     
     // CAN'T BE REMOVED
class-map match-any system-cpp-police-routing-control
  description Routing control
class-map match-any system-cpp-police-protocol-snooping
  description Protocol snooping
!
policy-map port_child_policy
 class non-client-nrt-class

bandwidth remaining ratio 10
policy-map system-cpp-policy
 class system-cpp-police-data
  police rate 200 pps
 class system-cpp-police-sys-data
  police rate 100 pps
 class system-cpp-police-sw-forward
  police rate 1000 pps
 class system-cpp-police-multicast
  police rate 500 pps
 class system-cpp-police-multicast-end-station
  police rate 2000 pps
 class system-cpp-police-punt-webauth
 class system-cpp-police-l2-control
 class system-cpp-police-routing-control
  police rate 1800 pps
 class system-cpp-police-control-low-priority
 class system-cpp-police-wireless-priority1
 class system-cpp-police-wireless-priority2
 class system-cpp-police-wireless-priority3-4-5
 class system-cpp-police-topology-control
 class system-cpp-police-dot1x-auth
 class system-cpp-police-protocol-snooping

 class system-cpp-police-forus
 class system-cpp-default


ip access-list extended AutoQos-4.0-wlan-Acl-Bulk-Data        // CAN'T BE REMOVED
 permit tcp any any eq 22
 permit tcp any any eq 465
 permit tcp any any eq 143
 permit tcp any any eq 993
 permit tcp any any eq 995
 permit tcp any any eq 1914
 permit tcp any any eq ftp
 permit tcp any any eq ftp-data
 permit tcp any any eq smtp
 permit tcp any any eq pop3

ip access-list extended AutoQos-4.0-wlan-Acl-MultiEnhanced-Conf
 permit udp any any range 16384 32767
 permit tcp any any range 50000 59999

ip access-list extended AutoQos-4.0-wlan-Acl-Scavanger
 permit tcp any any range 2300 2400
 permit udp any any range 2300 2400
 permit tcp any any range 6881 6999
 permit tcp any any range 28800 29100
 permit tcp any any eq 1214
 permit udp any any eq 1214
 permit tcp any any eq 3689
 permit udp any any eq 3689
 permit tcp any any eq 11999

ip access-list extended AutoQos-4.0-wlan-Acl-Signaling
 permit tcp any any range 2000 2002
 permit tcp any any range 5060 5061
 permit udp any any range 5060 5061

ip access-list extended AutoQos-4.0-wlan-Acl-Transactional-Data
 permit tcp any any eq 443
 permit tcp any any eq 1521
 permit udp any any eq 1521
 permit tcp any any eq 1526
 permit udp any any eq 1526
 permit tcp any any eq 1575
 permit udp any any eq 1575
 permit tcp any any eq 1630
 permit udp any any eq 1630
 permit tcp any any eq 1527
 permit tcp any any eq 6200
 permit tcp any any eq 3389
 permit tcp any any eq 5985
 permit tcp any any eq 8080


Monday, January 1, 2018

Configuring IOU Switch in GNS3

I needed to do some quick switching labs so I run IOU Layer 2 Switch in VirtualBox and GNS3. To run an IOU Layer 2 image in GNS3, go to File > Important Appliance > search the IOU .ova file > Next.
 



Click Import.
 


To edit settings, click the IOU VM > Settings



General > change the VM name (IOU_VM)
 


System > Motherboard > Base Memory > type 256
 


Network > Adapter 1 > Attached to: Host-only Adapter (this settings is already pre-configured) > click OK.


Right-click on the VM > Start > Normal Start.
 


Type the login and password: root / cisco

I had an issue where there was no IP address after http://
 


To fix the blank IP address, go to File > Preferences > Network > Host-only Networks > VirtualBox Host-Only Ethernet Adapter #x > Adapter > Edit (screw driver icon at the very bottom).



Change the 169.x.x.x APIPA address to 192.168.56.1 and Network Mask 255.255.255.0 > click OK.
  


Go to DHCP Server tab > leave Enable Server ticked > type Server Address: 192.168.56.100 > Server Mask: 255.255.255.0 > Lower Address Bound: 192.168.56.101 > Upper Address Bound: 192.168.56.254 > click OK.



Reset the IOU VM by doing a Power OFF then ON. You'll notice the http:// has an IP address upon bootup.



You can also verify using the ifconfig command.
 


Type the URL http://192.168.56.101:8000/upload on a web browser (I’ve used Mozilla Firefox) > click Browse and search for the IOU file > click Upload. 

Upload the L2 and L3 IOU Images (compatible with GNS3 1.3.1rc4) and also Phyton license setup
  
The upload process will take about 2-3 minutes to finish.
 

You can delete image files from the IOU VM server by issuing the commands (Linux):

cd /home/gns3/GNS3/images/IOU     // CHANGE DIRECTORY
ls        // TO LIST  
rm <IMAGE NAME>     // REMOVE THE FILE


In GNS3 (I've used version 1.3.1rc4) go to Edit > Preferences > Server > Local server  tab > choose host binding: 192.168.56.1 and TCP port range below.
 


Go to Remote servers tab > leave the defaults for Host: 192.168.56.101 and Port: 8000 TCP > click Add > Apply.
 

You'll need to allow GNS3 server on your PC personal firewall (mine's Windows Firewall). Click Allow access.
 


Go to IOS on UNIX > Browse > search for the IOURC.txt file > click Apply.
 


Click IOU devices > leave the default settings below and click Next.
 


A pop-up message will appear asking to provide the directory path of the IOU Image (IOU Image URL can be found on the web browser/server) > click OK.
 


Type a Name (L2 Image) > copy/paste the IOU L2 Image directory (/home/gns3/GNS3/images/IOU/i86bi-linux-l2-adventerprisek9-15.1a.bin) > leave default Type of L2 Image > click Finish > Apply > OK.
 



Click and drag the L2 Image switch icon > right-click > Start (or click Start green icon on top) > right-click again > choose Console.