This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

c3g124-48 configuration intervlan routing and access policy and hyper-v integration

c3g124-48 configuration intervlan routing and access policy and hyper-v integration

Bruno_D_Annna
New Contributor

‎02-17-2017 11:25 AM

Hello, I'm new in configuring C3g124-48
I have a switch from you and it has the firmware in its last version, however I have some difficulties in the configuration shown below:
What I intend to create:
VLAN ID

ID NAME IP (/24) Gtw

1 Cliente 10.1.0.1

10 Administração 10.1.1.1

20 Tecnica 10.1.2.1

30 Servidores 10.1.3.1

40 Voip 10.1.4.1

50 Cameras 10.1.5.1

60 Testes 10.1.6.1

70 Public 10.1.7.1

Rules of Access:

Inter Vlan Access
ID 1 10 20 30 40 50 60 70

1 X - - X - - - -

10 X X X X X X X -

20 X - X X X X X X

30 X X X X X X X -

40 - - - X - X - -

50 - X - X - X - -

60 X - X X - - - X

70 X - - - - - - X


Vlan 30 - LACP configured on ports 44 - 48 Ports

Swicth Data:
IP Layer Vlan Default: 10.1.0.254/24
Each of the VLANs the switch would be the default gateway and the static routing between the gateway, switch and vlans.
Configuring access rules to filter traffic as shown above.

This configuration below do not know if it would be possible to create in this swicth:

Dynamic VLAN configured on port 42-43, where the Hyper-V Mac Source is: 0A: F1: 04: xx: xx: xx and will receive virtual machines with dynamic routing that only have access to them and to the router's ip, in addition to Access to the gateway IP, in case 10.1.0.1/24
Each VM Created with this MAC start belongs to a VLAN that can not access any of the other VLANs, only Gateway access.
Can you tell me if it would be possible to create this scenario on your Switch? If you can not create this whole scenario, how far can I go with your switch and which product of yours could satisfy the requirements for a network with this complexity.
Att,

Bruno D'Anna
0 Kudos
9 REPLIES 9

Erik_Auerswald
Contributor II

‎03-01-2017 07:46 PM

Hi Bruno,

I would not recommend to use both the switch's host IP interface (set ip address) and SVIs on the same switch. I would recommend to use only SVIs, including for VLAN 1 (if you really want to use VLAN 1 at all).

If you want to use an SVI for VLAN 1 use the following:
clear ip address router enable configure interface vlan 1 ip address 10.1.0.254 255.255.255.0 no shutdown exit ip route 0.0.0.0 0.0.0.0 10.1.0.1 exit exit exitErik
0 Kudos

Bruno_D_Annna
New Contributor

‎03-01-2017 05:37 PM

Understand, in this case the default Vlan will remain without IP address and routing is run on the other VLan ´ s.
So how do I set a default gateway to switch in Vlan 1 interface?
0 Kudos

Erik_Auerswald
Contributor II

‎03-01-2017 02:13 PM

Hi,

the switch interface, configured with "set ip address", cannot be used for routing. You should probably remove that address from a console session with "clear ip address" and then add an SVI to VLAN 1. Otherwise the C3 cannot route from or to VLAN 1.

Erik
0 Kudos

Bruno_D_Annna
New Contributor

‎03-01-2017 02:02 PM

Hello Friend,

I run several tests and Intervlan routing does not seem to be working

For the purpose of testing, I isolated a Swicth port and defined a static IP, along with a static VLAN, these command lines were used in the Switch:

#set ip address 10.1.0.254 mask 255.255.255.0 gateway 10.1.0.1

#set vlan create 20

#set vlan name 20 "tecnica"

#set vlan egress 20 ge.1.5 untagged

#clear vlan egress 1 ge.1.5

#set vlan association subnet 10.1.2.0 255.255.255.0 20

#router

#enable

#configure

I#nterface vlan 20

I#p address 10.1.2.1 255.255.255.0

#ip rip enable (no necessary)

#no shutdown

#exit

#set port vlan ge.1.5 20



#show ip route

Destination Gateway Flags Use If Metric

0.0.0.0/0 10.1.0.1 UG 1 host 5

10.1.0.0/24 10.1.0.254 UC 33 host 5

10.1.0.254 10.1.0.254 UH 0 lo0 5

10.1.2.0/24 10.1.0.254 UC 0 rt2 5

10.1.2.1 10.1.0.254 UH 0 lo0 5

#ping 10.1.2.1

10.1.2.1 is alive


On the computer connected to VLAN Default:

Ip: 10.1.0.4/24 gtw: 10.1.0.1

#route add 10.1.2.0 mask 255.255.255.0 10.1.0.254

#ping 10.1.2.1

(no response)

#tracert 10.1.2.1

(no trace to route)

Route Print

endereço de rede Máscara Ender. gateway Interface Custo

0.0.0.0 0.0.0.0 10.1.0.1 10.1.0.4 266

10.1.0.0 255.255.255.0 No vínculo 10.1.0.4 266

10.1.0.4 255.255.255.255 No vínculo 10.1.0.4 266

10.1.0.255 255.255.255.255 No vínculo 10.1.0.4 266

10.1.2.0 255.255.255.0 10.1.0.254 10.1.0.4 11




Config in the Computer Connected to the port 5 Vlan 20:

IP: 10.1.2.3/24 gtw: 10.1.2.1

#ping 10.1.2.1 (alive)

#Ping 10.1.0.254 (switch)

No response

#Ping 10.1.0.1 (router)

No response



Router Config: 10.1.0.1/24

#route add -net 10.1.2.0/24 gateway 10.1.0.254

#route

Destination Gateway Genmask Flags Metric Ref Use Iface

default 200-1-58-201. 0.0.0.0 UG 0 0 0 ppp1

1.1.1.0 * 255.255.255.0 U 0 0 0 eth1

10.1.0.0 * 255.255.255.0 U 0 0 0 br0

10.1.2.0 10.1.0.254 255.255.255.0 UG 0 0 0 br0

200-1-58-201. * 255.255.255.255 UH 0 0 0 ppp1

#ping 10.1.2.1 (no response)

But no response or track to VLAN 20

0 Kudos
GTM-P2G8KFN