With Vlan implementation many users are cutoff from other users within other vlan domains. To establish connectivity between Vlan's a Layer 3 device is needed.
topology: (inter-vlan routing with a router)
1 - Create Vlans:
[S1] vlan batch 10 20
note: use "display vlan" to see Vlan database.
2 - Configure access ports:
[S1] interface e0/0/1 [S1-Ethernet0/0/1] port link-type access [S1-Ethernet0/0/1] port default vlan 10 [S1-Ethernet0/0/1] interface e0/0/2 [S1-Ethernet0/0/2] port link-type access [S1-Ethernet0/0/2] port default vlan 20
note: use "display port vlan" to see which ports are assigned to which vlans.
3 - Configure trunk on the switch:
[S1] interface g0/0/1 [S1-GigabitEthernet0/0/1] port link-type trunk [S1-GigabitEthernet0/0/1] port trunk allow-pass vlan all
4 - Configure trunk on the router:
[R1] interface g0/0/0 [R1-GigabitEthernet0/0/0] interface g0/0/0.10 [R1-GigabitEthernet0/0/0.10] dot1q termination vid 10 [R1-GigabitEthernet0/0/0.10] ip address 192.168.10.1 24 [R1-GigabitEthernet0/0/0.10] arp broadcast enable [R1-GigabitEthernet0/0/0.10] interface g0/0/0.20 [R1-GigabitEthernet0/0/0.20] dot1q termination vid 20 [R1-GigabitEthernet0/0/0.20] ip address 192.168.20.1 24 [R1-GigabitEthernet0/0/0.20] arp broadcast enable
note: ARP broadcast is disable by default, if ARP broadcast remains disable the router will discard the packets. By enabling ARP broadcast on the sub-interface the router is able to construct a tagged ARP broadcast packet and send the packet from the sub-interface.
5 - Assign IP addresses to clients:
Client 1
IP - 192.168.10.100
MASK - 255.255.255.0
GW - 192.168.10.1
Client 2
IP - 192.168.20.100
MASK - 255.255.255.0
GW - 192.168.20.1
Connectivity test
topology: (L3 switch based vlan routing)
1 - Create vlans:
[S1] vlan batch 10 20 30 40
[S2] vlan batch 10 20 30 40
2 - Assign ports to vlans:
[S1] interface e0/0/1 [S1-Ethernet0/0/1] port link-type access [S1-Ethernet0/0/1] port default vlan 10 [S1-Ethernet0/0/1] interface e0/0/2 [S1-Ethernet0/0/2] port link-type access [S1-Ethernet0/0/2] port default vlan 20
[S2] interface e0/0/1 [S2-Ethernet0/0/1] port link-type access [S2-Ethernet0/0/1] port default vlan 40 [S2-Ethernet0/0/1] interface e0/0/2 [S2-Ethernet0/0/2] port link-type access [S2-Ethernet0/0/2] port default vlan 30
3 - Configure trunk:
[S1] interface g0/0/1 [S1-GigabitEthernet0/0/1] port link-type trunk [S1-GigabitEthernet0/0/1] port trunk allow-pass vlan all
[S2] interface g0/0/1 [S2-GigabitEthernet0/0/1] port link-type trunk [S2-GigabitEthernet0/0/1] port trunk allow-pass vlan all
4 - Configure Vlanif interfaces:
[S1] interface vlanif 10 [S1-VlanIf10] ip address 192.168.10.1 24 [S1-VlanIf10] interface vlanif 20 [S1-VlanIf20] ip address 192.168.20.1 24 [S1-VlanIf20] interface vlanif 30 [S1-VlanIf30] ip address 192.168.30.2 24 [S1-VlanIf30] interface vlanif 40 [S1-VlanIf40] ip address 192.168.40.2 24
[S2] interface vlanif 10 [S2-VlanIf10] ip address 192.168.10.2 24 [S2-VlanIf10] interface vlanif 20 [S2-VlanIf20] ip address 192.168.20.2 24 [S2-VlanIf20] interface vlanif 30 [S2-VlanIf30] ip address 192.168.30.1 24 [S2-VlanIf30] interface vlanif 40 [S2-VlanIf40] ip address 192.168.40.1 24
note: Vlan routing is implemented by creating vlan interfaces that operate as a gateway for each vlan within the layer 3 switch.
Connectivity test
Thank you very much! Damn useful and Easy to understand!!! Love this blog so much
ReplyDeletethank you, what about the intervlan switch layer 3 how to configure it.
ReplyDeleteHi, sorry for my late reply. In a layer 3 switch you need to configure vlan interfaces(SVI). This is explained in the second part of the tutorial.
Deletewould you mind sending a link for that particular tutorial? please.
Deletetks
ReplyDeleteThanks mate, really helpful!! Enabling arp broadcast solved the inter-vlan routing problem i was having.. i stil don't see why, but indeed problem solved!! T_T
ReplyDeleteGood explanation
ReplyDelete