This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Routing between VR's on a single switch

Routing between VR's on a single switch

EtherNation_Use
Contributor II

‎01-07-2014 10:00 PM

Create Date: Mar 20 2013 3:28AM

I have a network that I am trying to isolate. Lets say it's 1.1.1.0/24. I would like it to communicate with 2.2.2.0/24 and 3.3.3.0/24 and not with the other 15 networks. My thought was to put it on a separate VR and only advertise this network to 2.2.2.0 and 3.3.3.0. I thought this might be a cleaner way to do this as opposed to creating an acl and having to list every network in the acl. And if I understand Extreme ACL's correctly (very possible that I dont'), I would have to create ingress and egress ACL's.
So the underlying question is - Am I able to route between VR's on the same switch without having to exit the switch, go through a firewall, and then connect back into the switch?

This is on a BD8810 XOS 12.6.3.2

Thanks!
Forrest

(from Forrest_Darst)
0 Kudos
5 REPLIES 5

EtherNation_Use
Contributor II

‎01-07-2014 10:00 PM

Create Date: Mar 20 2013 2:07PM

Hello Forest

As of right now there is no way to route between VRs in the same switch. The intent of the VR is for complete L3 isolation so going to an out side FW or other router is needed.

As for the ACLs you can create an ACL that looks at the traffic in both directions of the conversation and have it applied on ingress.

P (from Paul_Russo)
0 Kudos
GTM-P2G8KFN