Ingress and Egress

  • 0
  • 1
  • Question
  • Updated 5 years ago
Create Date: Jul 9 2013 2:28PM

Hi everyone, i am new to extreme switches and i am trying to learn how to make two vlan be able to talk to each other.
What i am trying to achive is to get vlan testlab be able to connect to the internet, my gateway is on vlan Office.
A friend told me that i need to make sure that the ingress and the egress ports are tags. I am not sure what ingress and egress is and how to configure it.

Any help is appreciated, thanks.

My Config so far.
* Summit400-48t:52 # show vlan

Name               VID  Protocol Addr        Flags        Proto   Ports

Default            1    0.0.0.0        /BP -------------- ANY     0/0

MacVlanDiscover    4094 ------------------ --------       ANY     0/0

Mgmt               4093 ------------------ --------       ANY     0/1

office             4092 10.0.0.230     /24 ------f------- ANY     4/16

testlab            4091 10.0.1.2       /24 ------f------- ANY     2/16

 

Flags: (C) Domain-masterVlan, (c) Domain-memberVlan, (d) DVMRP Enabled

       (E) ESRP Slave, (f) IP Forwarding Enabled, (G) GVRP Enabled

       (L) Loopback Enabled, (M) ESRP Master, (m) IPmc Forwarding Enabled

       (N) GNS Reply Enabled, (o) OSPF Enabled, (p) PIM Enabled

       (r) RIP Enabled, (T) Member of STP Domain, (v) VRRP Enabled

       (V) VPLS/TLS Enabled, (Z) Translation-Vlan, (z) Member-Vlan

/BP: Waiting for bootp reply.

 

Total number of Vlan(s) : 5

 

 

* Summit400-48t:55 # show iproute

 

Ori Destination        Gateway         Mtr Flags       VLAN        Duration

*d  10.0.0.0/24        10.0.0.230      1   U------u--- office      0d:1h:20m:32s

d  10.0.1.0/24        10.0.1.2        1   -------u--- testlab     0d:1h:05m:22s

*d  127.0.0.1/8        127.0.0.1       0   U-H----um-- Default     0d:1h:25m:08s

*s  Default Route      10.0.0.231      1   UG---S-um-- office      0d:0h:00m:07s

 

Origin(OR): (b) BlackHole, (bo) BOOTP, (ct) CBT, (d) Direct, (df) DownIF

            (dv) DVMRP, (h) Hardcoded, (i) ICMP, (mo) MOSPF, (o) OSPF

            (o1) OSPFExt1, (o2) OSPFExt2, (oa) OSPFIntra, (oe) OSPFAsExt

            (or) OSPFInter, (pd) PIM-DM, (ps) PIM-SM, (r) RIP, (ra) RtAdvrt

            (s) Static, (*) Preferred route

 

Flags: (B) BlackHole, (D) Dynamic, (G) Gateway, (H) Host Route

       (m) Multicast, (R) Modified, (S) Static, (u) Unicast, (U) Up

 

Mask distribution:

    1 default routes                1 routes at length  8

    2 routes at length 24

 

Route origin distribution:

    3 routes from Direct            1 routes from Static

 

Total number of routes = 4.

(from William_Martinez)
Photo of EtherNation User

EtherNation User, Employee

  • 20,340 Points 20k badge 2x thumb

Posted 5 years ago

  • 0
  • 1
Photo of EtherNation User

EtherNation User, Employee

  • 20,340 Points 20k badge 2x thumb
Create Date: Jul 9 2013 2:40PM

Hi

Ingress and Egress just means inbound/outbound

However, tagging isn't the issue here - I suspect that the issue is that you have not enabled ip forwarding, which is necessary to route between VLANs and for VLANs to use default routes that exist on another VLAN.

To enable IP forwarding, just do:

enable ipforwarding vlan x (Where x is the VLAN name)

eg:

enable ipforwarding vlan office
enable ipforwarding vlan testlab


(from networkguy)
Photo of EtherNation User

EtherNation User, Employee

  • 20,340 Points 20k badge 2x thumb
Create Date: Jul 9 2013 2:58PM

Thanks for the fast reply. I do have ipforwarding enable in both vlans. If you see below, the f after the ip address of the vlan shows that it is enable.

* Summit400-48t:52 # show vlan

Name               VID  Protocol Addr        Flags        Proto   Ports

Default            1    0.0.0.0        /BP -------------- ANY     0/0

MacVlanDiscover    4094 ------------------ --------       ANY     0/0

Mgmt               4093 ------------------ --------       ANY     0/1

office             4092 10.0.0.230     /24 ------f------- ANY     4/16

testlab            4091 10.0.1.2       /24 ------f------- ANY     0/16

 

Flags: (C) Domain-masterVlan, (c) Domain-memberVlan, (d) DVMRP Enabled

       (E) ESRP Slave, (f) IP Forwarding Enabled, (G) GVRP Enabled

       (L) Loopback Enabled, (M) ESRP Master, (m) IPmc Forwarding Enabled

       (N) GNS Reply Enabled, (o) OSPF Enabled, (p) PIM Enabled

       (r) RIP Enabled, (T) Member of STP Domain, (v) VRRP Enabled

       (V) VPLS/TLS Enabled, (Z) Translation-Vlan, (z) Member-Vlan

/BP: Waiting for bootp reply.

 

Total number of Vlan(s) : 5

(from William_Martinez)
Photo of EtherNation User

EtherNation User, Employee

  • 20,340 Points 20k badge 2x thumb
Create Date: Jul 9 2013 3:20PM

Ah, my mistake, i totally missed that!

Are clients in the testlab vlan configured to use 10.0.1.2 as their default gateway?

Also i see that the IP Interface on the Testlab vlan does not have the up (U) flag

Do you have devices on this VLAN?

I see there are 2 ports active in the VLAN in your first message, but not the updated show vlan output, but do you have end stations in there at the moment? You need a device active on the VLAN for the interface to become active (or to tag the VLAN on another active port in a different VLAN, though dont do this for anything other than a quick test)

(from networkguy)
Photo of EtherNation User

EtherNation User, Employee

  • 20,340 Points 20k badge 2x thumb
Create Date: Jul 9 2013 4:22PM

I have a Lab server at this moment active on the vlan testlab. The server is running AD and DHCP. Its config is:

IP: 10.0.1.1
Mask: 255.255.255.0
DG: 10.0.1.2
DNS: 127.0.0.1


* Summit400-48t:69 # show vlan
Name               VID  Protocol Addr        Flags        Proto   Ports
Default            1    0.0.0.0        /BP -------------- ANY     0/0
MacVlanDiscover    4094 ------------------ --------       ANY     0/0
Mgmt               4093 ------------------ --------       ANY     0/1
office             4092 10.0.0.230     /24 ------f------- ANY     2/16
testlab            4091 10.0.1.2       /24 ------f------- ANY     1/16

Flags: (C) Domain-masterVlan, (c) Domain-memberVlan, (d) DVMRP Enabled
       (E) ESRP Slave, (f) IP Forwarding Enabled, (G) GVRP Enabled
       (L) Loopback Enabled, (M) ESRP Master, (m) IPmc Forwarding Enabled
       (N) GNS Reply Enabled, (o) OSPF Enabled, (p) PIM Enabled
       (r) RIP Enabled, (T) Member of STP Domain, (v) VRRP Enabled
       (V) VPLS/TLS Enabled, (Z) Translation-Vlan, (z) Member-Vlan
/BP: Waiting for bootp reply.

Total number of Vlan(s) : 5

(from William_Martinez)
Photo of EtherNation User

EtherNation User, Employee

  • 20,340 Points 20k badge 2x thumb
Create Date: Jul 9 2013 4:55PM

I got my server in VLAN testlab to ping VLAN Office!! But i still need to find a way to access the internet. VLAN Office has the Gateway at IP 10.0.0.254. What do i need to do to make testab have access to the gateway to grant me internet access?
(from William_Martinez)
Photo of EtherNation User

EtherNation User, Employee

  • 20,340 Points 20k badge 2x thumb
Create Date: Jul 9 2013 5:15PM

Hi,

1) Can you ping IP 10.0.0.230 from testlab vlan?
2) If (1) is yes, has your gateway (10.0.0.254) knowledge about 10.0.1.0/24 network? (where to send packets)

--
Jarek

(from Jaroslaw_Kasjaniuk)
Photo of EtherNation User

EtherNation User, Employee

  • 20,340 Points 20k badge 2x thumb
Create Date: Jul 9 2013 8:01PM

Yes i can ping 10.0.0.230 and no my router doesn't have knowledge of network 10.0.1.0/24. I will give that a try, this probably will solve all my problems.

Thanks Jarek

(from William_Martinez)
Photo of EtherNation User

EtherNation User, Employee

  • 20,340 Points 20k badge 2x thumb
Create Date: Sep 27 2013 10:14AM

hi anyoneGive a example ,how to make rate limit on port 2 for inbound and outbound in "summit200 switch model number 15040".

(from mansoor)

This conversation is no longer open for comments or replies.