This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

vlan configuration for routing unable to ping own subnet

vlan configuration for routing unable to ping own subnet

Rasheed_Folami
New Contributor II

‎10-29-2015 07:25 PM

Hi guys, First of all, I'm really new to this and have been stumbling through to figure out a nagging issue

We created 4 VLANs with corresponding Virtual Routers (as well as separate subnets) in our brand new environment (Users,Server, Lab,Phone). One of our VLANs ("User") is the only one currently utilized. It is on a 10.1.15.x subnet (part of a B5 stack) seems to be restricting certain computers from accessing the internet. Most of the other client computers (on same subnet) are able to access the network and internet, with the exception of a few. The VLANs were setup last weekend, and I believe it may be a configuration issue.

The affected clients receive IP via DHCP and are able to get IPs;

IP: 10.1.15.x
Subnet Mask: 255.255.255.0
Gateway: 10.1.15.254

but are unable to ping the internal VLAN gateway (10.1.15.254). They can ping any IP on the same subnet (and vice versa) but are unable to ping any other IP on other subnet (the unnafected computers on same subnet are able to ping other subnets just fine, and have no problems connecting to internet).

I suspect some sort of MAC blocking?? It happens no matter what active port i try them on.

Any assistance in troubleshooting is hugely appreciated. We have had no luck figuring it out.

12 REPLIES 12

Jeremy_Gibbs
Contributor

‎10-29-2015 08:51 PM

Just a quick question, tg.2.50 and tg.1.50 go to what? Other switches connected to it? Who is doing the routing? Enterasys, Cisco, Extreme? I know the B5 doesn't do L3 interfaces.
0 Kudos

Rasheed_Folami
New Contributor II

‎10-29-2015 08:44 PM

Hi Jeremy, here it is

B5(su)->show port egress
Port Vlan Egress Registration
Number Id Status Status
------------------------------------------------------------
ge.1.7 15 untagged static
ge.1.9 15 untagged static
ge.1.23 15 untagged static
ge.1.27 15 untagged static
ge.1.31 15 untagged static
tg.1.50 1 untagged static
tg.1.50 9 tagged static
tg.1.50 15 tagged static
tg.2.50 1 untagged static
tg.2.50 9 tagged static
tg.2.50 15 tagged static

B5(su)->show vlan static
VLAN: 1 NAME: DEFAULT VLAN
VLAN Type: Default
Egress Ports
tg.1.49-50, tg.2.49-50, lag.0.1-6
Forbidden Egress Ports
None.
Untagged ports
tg.1.49-50, tg.2.49-50, lag.0.1-6

VLAN: 5 NAME: Server
VLAN Type: Permanent
Egress Ports
None.
Forbidden Egress Ports
None.
Untagged ports
None.

VLAN: 7 NAME: iSCSI
VLAN Type: Permanent
Egress Ports
None.
Forbidden Egress Ports
None.
Untagged ports
None.

VLAN: 9 NAME: Voice
VLAN Type: Permanent
Egress Ports
tg.1.50, ge.2.1-48, tg.2.50
Forbidden Egress Ports
None.
Untagged ports
ge.2.1-48

VLAN: 11 NAME: Finance
VLAN Type: Permanent
Egress Ports
None.
Forbidden Egress Ports
None.
Untagged ports
None.

VLAN: 12 NAME: MGMT-HR
VLAN Type: Permanent
Egress Ports
None.
Forbidden Egress Ports
None.
Untagged ports
None.

VLAN: 15 NAME: Users
VLAN Type: Permanent
Egress Ports
ge.1.1-48, tg.1.50, tg.2.50
Forbidden Egress Ports
None.
Untagged ports
ge.1.1-48

VLAN: 20 NAME: VPN
VLAN Type: Permanent
Egress Ports
None.
Forbidden Egress Ports
None.
Untagged ports
None.

VLAN: 25 NAME: Lab
VLAN Type: Permanent
Egress Ports
None.
Forbidden Egress Ports
None.
Untagged ports
None.

VLAN: 30 NAME: Testing
VLAN Type: Permanent
Egress Ports
None.
Forbidden Egress Ports
None.
Untagged ports
None.

0 Kudos

Rasheed_Folami
New Contributor II

‎10-29-2015 08:38 PM

No, no policy in place
0 Kudos

Jeremy_Gibbs
Contributor

‎10-29-2015 08:33 PM

Well, show us this please:

show port egress
show vlan static

0 Kudos

Jeremy_Gibbs
Contributor

‎10-29-2015 08:01 PM

I am assuming you are not doing policy, right?

show policy profile all should show nothing.
0 Kudos
Top
GTM-P2G8KFN