Source IP and/or VLAN mismatch

AdminERB
Comes here often

Source IP and/or VLAN mismatch

Hi everybody,

 

Please advise / help with my MX device.

 

Event log :

 

Source IP and/or VLAN mismatchsource_client_ip: 192.168.50.90, source_client_mac: 9C:8E:99:59:E8:E3, source_client_assigned_vlan: 50 
last_illegal_ip192.168.1.10
last_illegal_ip_mapped_vlan_id1
client_total_illegal_packets117774
all_total_illegal_packets139439
last_reported_total139343
Source IP and/or VLAN mismatchsource_client_ip: 192.168.1.10, source_client_mac: 9C:8E:99:59:E8:E2, source_client_assigned_vlan: 1 
last_illegal_ip192.168.50.90
last_illegal_ip_mapped_vlan_id50
client_total_illegal_packets5139
all_total_illegal_packets139343
last_reported_total139237

 

My device (server)uses two network adapters.

 

1. 9C:8E:99:59:E8:E2 static IP - 192.168.1.10 - acess VLAN1 

2. 9C:8E:99:59:E8:E3 static IP - 192.168.50.90 - acess VLAN50 

 

The path to the server is from MX (port 3 trunk output all VLAN)  to manageable Cisco switch (input trunk all VLAN) output port 1 (acess VLAN 1 untagged the server network adapters "1")

output port 2 (acess VLAN 50 untagged the server network adapters "2")

 

The connection is OK, but the error message goes every 30 minutes.

 

have you encountered this problem?

Thank you very much for any advice. 

 

1 REPLY 1
Bruce
Kind of a big deal

I’d say it looks like you’ve got something mis-configured on the server, or elsewhere in the network. For whatever reason the MX is seeing packets with the 192.168.50.90 IP address on its interface for VLAN 1 - so there is most likely nothing wrong with the MX, it’s letting you know about an error elsewhere in the network.

 

What OS is the server running? Are any of the network interfaces bridged together, are there any ‘clever’ network functions configured in the network or on the server (e.g. NAT)? Are the VLANs bridged together somewhere in the network?

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.