VMWare client SSL error. Only on one switch

jrgt51

Prominent
Aug 8, 2017
26
0
530
Two client machines set to run VMWare (not thin clients, just PC's that someone made a batchfile to run vmware when its closed) are unable to authenticate. They are connected to switch 1.
Before or after (random) entering your credentials to log into your VM it errors out with an SSL error. no error codes or any other specific information is given.
I moved the machines to another building (the SHOP) with switch 2 and tried to log in. success.
I think it is within the switch configuration but not sure. Does any one have any suggestions?

Routing is done at the switches. not the router itself.
 
It greatly depends what kind of switches these are. If you are actually doing routing at the switch level you have layer 3 switches. The features they have are can be different even between lines from the same manufacture.

My blind guess would be you have a dhcp problem and the device is not getting proper IP information. You are going to have to dig through the config and see what is wrong. It can be massive number of things anything from being assigned to the wrong vlan to security option blocking it.
 

jrgt51

Prominent
Aug 8, 2017
26
0
530
i found out that there is a large amount of packet loss (10-35%). I believe this might have something to do with it. the switches are a stacked pair of two cisco switches. i will look into why i am seeing a large amount of loss.
 


If the packet loss is due to a problem on the switch you should see errors/packet discards on the port. A port mirror and wireshark will let you see what packets are actually getting lost. It will not show packets that are actually discarded by the port you would have to capture on the end device that sent them to see which. In general the only packets that are discarded by a switch have some kind of data corruption. This tends to be a half duplex issue but ports seldom go into half duplex any more.
 

jrgt51

Prominent
Aug 8, 2017
26
0
530
I am not too familiar with wireshark but i have used it to fix a few other issues before. I connected my Laptop to the same port the machine was using and ran wireshark while running a continuous ping and website searches. ping cmd showed several pack loss. The only things that stood out to me were several retransmissions and duplicated ACK'ments.

On the Duplexing mismatch i tried several combinations of duplex modes and speeds. i also tried a different port incase that one spefcially was having issues.
 

jrgt51

Prominent
Aug 8, 2017
26
0
530
I replaced an sfp on switch#2 of the stacked pair. packet loss went from 10% to 0%. response time went from 10ms to 2 ms. but both of the sfp's on the stacked pair are now blinking amber/green on occasion. also, from a run-config of the sfp ports there are 2/4 interface resets. even though overall quality of the network is improved.