1252 config several VLAN trunking on ethernet not

Similar Questions

• PowerConnect 2848 - several VLANS on the 1 port does not

  Hello everyone.

  I have a Dell PowerConnect 2848.  My router is a Netgear SRX5308. In the router, I've created several VLANs (VLAN ID 10 and 20) and would that pass to the ESXi server. If I connect the ESXi server directly to the router, everything works as expected. My VMs are picking up correct VLAN based on the parameters of ESXi.

  I need the 2848 between the two, because I need to add more devices and other servers with a VLAN specific.

  Currently I use port 25 for switch 2848.

  I put the switch to managed mode.

  I created switch-> VLAN-> belonging to a VLAN, VLAN ID 10 and 20.

  I select 10 VLANS and put the T on port 25.

  I select the VLAN 20 and put the T on port 25.  (I also tried to put a U on them, just to try, but did not work)

  But my virtual computer are not able to reach the DHCP on the router.

  Spanning Tree is enabled.

  I'm obviously missing something...

  I have already passed last week banging my head on this, but have not been able to pass traffic along.

  Help, please!

  So you're on the right track. If port 25 is facing the router? What port must face the ESXi Server? That port should also have VLAN 10 and 20 should be labelled.

• Disorders from several VLANS layer 2 layer 3

  Hello

  We have a layer switch 3 PowerConnect 6248 switch with multiple VLANs and active routing and also a layer 2 with a PowerConnect 5324 switch couple VLANS configured.  My goal is to have several VLANs, through level 3 for the layer 2 switch switch and all VLANS communicate between them.

  I followed the steps under the 3 layer + Layer section 2 to the title of this post:

  en.Community.Dell.com/.../19506015

  Unfortunately, it does not work.

  Here is my current set up and what I tried. My configuration is made via the web interface.

  The 6248 has VLAN 1, 64, 110, 150 and some other configured on the switch. The IP address of the 6248 is 192.168.64.1.  I'm trying to get some vlan 150 and 110 for the layer switch 2 for may I have some ports in the service of vlan vlan portion 150 and some 110.

  I have the IP routing (routing > IP > Interface Configuration) for vlan 150 as 192.168.150.1/24 and vlan 110 as 192.168.110.1/24.

  The 5324 is connected to the 6248 via a port (connected to the port 1 of the 5324 and 18 the 6248).  18 on the 6248 port is currently configured as general / Admit All/PVID 150.  Port 1 on the 5324 is currently configured for the same, but with a PVID of the 1.  150 of VLAN is sent without the label of the 6248 switch and vlan 110 is sent labeled.

  5324 switch is configured with an IP 192.168.150.2 and a gateway of 192.168.150.1.  I am able to access the web interface of the switch and connect machines in any port and get on the 192.168.150.0 subnet.  I created a vlan 110 on the 5324 and it the tag on ports 1 and 4, but port 4 will not any traffic to vlan 110. I tried many settings of belonging to port / vlan various which have all resulted in failure.

  I would greatly appreciate help on this.  It seems that such an easy feat, but I just can't understand it.  I have attached some pictures for people to see.

  

  

  

  

  

  

  

  

  

  I had figured it out.  I enabled Double VLAN on the trunk of the 6248 switch port and it works now.

• VLAN Trunking between 6248 and 2848

  Hello

  I have a Powerconnect 6248 switch connected to a 2848 and I try to get a VLAN on the 2848.

  VLAN working and properly receive DHCP addresses, traffic lanes and DNS runs on the 6248.

  The Protocol DHCP, DNS server is connected to port 1 on the 6248.

  When I create a Trunk port on 3 the 6248 Port, allow all VLANS through it, creating a trunk on port 1 of the 2848 on VLAN10 and try to plug in devices inside, they can see all other devices connected to the L3 switch.

  The two switches are running the latest firmware and the L3 on his own works as expected. I can't get any kind of circuits working at L2, tried with normal cable and crossover switch.

  Here is the config of the L3 6248. Switch 2848 L2 has a blank canvas with 10 VLANS created on ports 1,2,3,4 with port 1 as the trunk port installation.

  Any ideas pleeease? Anyone? It drives me crazy.

  ************************

  <sub>! Current configuration:
  ! Description of the system "Powerconnect 6248, 3.2.0.7, VxWorks 6.5.
  ! Version of the software system 3.2.0.7
  ! Passage mode is configured as disabled
  !
  Configure
  database of VLAN
  VLAN 10,20,30
  VLAN 10 1 routing
  VLAN 20 2 routing
  VLAN 30 3 routing
  
  output
  battery
  1 2 Member
  output
  the IP 192.168.0.1 255.255.255.0
  field of IP domain name
  name-server IP 192.168.1.10
  IP routing
  interface vlan 10
  Routing
  IP 192.168.1.1 255.255.255.0
  output
  interface vlan 20
  Routing
  address 192.168.20.1 255.255.255.0
  IP helper-address is 192.168.1.10
  output
  interface vlan 30
  Routing
  192.168.30.1 IP address 255.255.255.0
  IP helper-address is 192.168.1.10
  output
  level password user name 'administrator' encrypted 15 5f4dcc3b5aa765d61d8327deb882cf99
  l2relay DHCP
  DHCP l2relay vlan 10-90
  !
  interface ethernet 1/g1
  switchport mode general
  pvid switchport General 10
  No switchport acceptable-framework-type general tag only
  VLAN allowed switchport General add 10,20,30
  output
  !
  interface ethernet 1/g2
  switchport mode general
  pvid switchport General 10
  No switchport acceptable-framework-type general tag only
  VLAN allowed switchport General add 10
  output
  !
  interface ethernet 1/g3
  switchport mode trunk
  switchport trunk allowed vlan add 10.20
  output
  !
  interface ethernet 1/g4
  switchport mode general
  pvid switchport General 10
  No switchport acceptable-framework-type general tag only
  VLAN allowed switchport General add 10
  output
  !
  interface ethernet 1/g5
  switchport mode general
  pvid switchport General 10
  No switchport acceptable-framework-type general tag only
  VLAN allowed switchport General add 10
  output
  !
  interface ethernet 1/g6
  switchport mode general
  switchport General pvid 20
  No switchport acceptable-framework-type general tag only
  VLAN allowed switchport General add 20
  output
  !
  interface ethernet 1/g7
  switchport mode general
  switchport General pvid 20
  No switchport acceptable-framework-type general tag only
  VLAN allowed switchport General add 20
  output
  !
  interface ethernet 1/g8
  switchport mode general
  switchport General pvid 20
  No switchport acceptable-framework-type general tag only
  VLAN allowed switchport General add 20
  output
  !
  interface ethernet 1/g9
  switchport mode general
  switchport General pvid 30
  No switchport acceptable-framework-type general tag only
  VLAN allowed switchport General add 30
  output
  !
  interface ethernet 1/g10
  switchport mode general
  switchport General pvid 30
  No switchport acceptable-framework-type general tag only
  VLAN allowed switchport General add 30
  output</sub>

  After turning off spanning tree on the 2848, all works now.

  VLAN, trunking everything.

  Thanks for the help! :)

  I hope that if someone else can use what it took me ages to develop. I plugged on Netgear switches etc and they seem to work.

  The issue was going on between the dell 6248 and 2848, Spanning tree is enabled on the default 2848. If I was going to the Netgear via the 6248, then at the 2848 switches worked.

  My config on the l3 also works very well if someone would use :)

• PowerConnect 5448 several VLANS between upstream and downstream server firewall

  I am struggling with what I thought, would be a simple task: route several subnets, each on one VLAN different, a firewall to a server.  In fact, I can't even pass the VLAN by default one still looking correct in the address tables and STP.

  Port 1 = firewall, VLAN 1 unidentified, 2 VLAN Tag, 1 PVID, tried the two trunk and general patterns

  17 = server NIC, VLAN 1 unidentified port, VLAN Tag, PVID 1 and 2 2, tried, tried both safe and general patterns

  VLAN 1 (firewall untagged) 10.84.195.0/24, 10.84.195.2 Interface IP and default gateway 10.84.195.1

  VLAN 2 (tag of firewall) 10.101.0.0/16, IP Interface 10.101.0.2 for 2 VLAN, firewall est.1

  The first thing I got was that something has not been properly marked by (Hyper-V, using SC VMM 2012 SP1) server or the firewall (Watchguard XTM 520).  Simple test: VPN Firewall, ping the switch to 10.101.0.2 with the tag, and works, remove the label and it doesn't.  Dynamic address table shows the two-way firewall.  Line 18 below appears right after the ping as planned on VLAN 2 with the same MAC address in VLAN 1.  In addition, I ping the switch 10.101.0.2 from the server and it works fine.  The table shows that VLAN 2 from the host (and 1 other VM), so it seems to me that everything is properly labeled.

  	15	VLAN 1	00907f8f571b	G1
  	16	VLAN 2	00155d1f1b07	G17
  	17	VLAN 2	001dd8b71c01	G17
  	18	VLAN 2	00907f8f571b	G1

  What I can't do, is ping through the switch to VLAN 2.  I can't ping my VPN server (10.101.20.1), and I can not ping to the gateway (10.101.0.1) from the server.  Note, it is not because of rules to firewall on each end.

  What Miss me?  I don't think I need a routing of layer 3 here, I don't have to go through VLAN, just have them several VLANS passes from one port to the other.

  Other things to note in case it is useful:

  -I have no connectivity not tag with everything else through the 10.84.195.xxx/24 switch.

  -If I delete the Tags VLAN port 2 1 trunk, I suddenly can ping the bridge VLAN 2 (10.101.0.1) from the server, although I suspect that it is because the same port is the default gateway for the switch.

  -For brevity, only 2 lines of the STP are listed below, but all ports are therefore based on the question of whether they are connected or not.

  G1 activated 128.1 Frw Desg P2P (STP) No. 4
  G2 activated 128.2 Dsbl Dsbl No. 100.

  -Latest firmware installed.

  -In addition, for people concerned about their security, I want to remove use VLAN by default in the future.

  Would it be possible for run you to stick your show output here in the forum.  In this way, we can take closer look at what you have configured.

  If you connect a desktop/laptop computer (with and intellectual property in the 10.101.0.0/16 range) in a port with the mode of access switchport VLAN 2 are you able to ping IP Interface 10.101.0.2 for 2 VLANS?  You could try to disconnect the firewall and the configurations for the port and work on getting through the switch with 2 terminals on a single VLAN.  Then, once this is confirmed as work connect the firewall back up with a trunk/general mode adding the VLAN necessary.

  You connect to the firewall on a layer 3 interface?  You need Layer 3 routing to reach the firewall correctly.

• Cisco SLM224G VLAN Trunk Help! -&gt; Problem solved!

  Hi, I have a few difficulties of implementation of the switch, I can't understand how to configure the network for VLANs created port. I have configured under management of VLANS, VLAN 10 and 20, I asigned ports e1, e2, e3, e4, e5, e6 with 10 PVID and e7, e8, e9, e10, e11, e12 with 20 PVID and the rest to defaul 1 PVID, frame SD = All + infiltration on filtering. Under port to VLAN-> VLAN10-> ports e1, e2, e3, e4, e5, e6 Tagged + e24 tag (I want this to be the trunk) and the tag VLAN20-> e7, e8, e9, e10, e11, e12 Tagged + e24. Theats all that I set up according to the SLM_Admin_Guide.pdf and I have connected the e24 (trunk port) to a Pf meaning Server (the server is configured with the same VLAN ID as on the switch), please someone tell me how to set up the trunk? I know that there is no option in the Port settings to define 'Access' or 'Trunk'... until this means? that the SLM224G does not support the VLAN Trunk? I saw some screenshots with the Linksys SLM224G and he had 'Access' or 'Trunk' setting... and Cisco does NOT work.  Help!

  Hello

  Interesting, I see two different GUIs in your screen capture, it looks like two different computers. :-)

  But the big brother of the SLM, the series SRW and I am about what follows to the SRW series, because I do not have a SLM in front of me, I had put;

  Step 1. the port settings interface return, leaving the PVID to 1 then do scroll down and save the option.

  Step 2.  On this "ports setting photo GUI, you have, I would put the switch ports to shared resources in mode Trunk. If the port must not be tagged in the VLAN 1 only, then I leave the setting the port mode 'access '.

  (Access mode allows a port belong only to one VLAN no marked only).

  (shared mode allows the switch port belong to several VLANs marked, but still unmarked in one vlan only usually the vlan by default)

  Step 3.  So I goto the "Vlan to the port' tab, Tagged for ports beloning to vlan 10 then do scroll down and save the option."

  step 4   So I goto the "Vlan to the port' tab, Tagged for ports beloning to vlan 20 then do scroll down and save the option."

  By default vlan1 in most SRW series brother would then be not identified on all ports and vlan10 and vlan 20 could be labelled on the appropriate ports.

• VLAN Trunking

  I can't trunking VLAN to work and I don't know if I have VMware installed correctly.

  ~ # esxcfg - vswitch - l
  Switch name Num used Ports configured Ports MTU rising ports
  128 5 128 1500 vmnic1 vSwitch0
  
  Name PortGroup VLAN ID used rising Ports
  VM 0 1 vmnic1 network
  0 1 vmnic1 network management
  
  Switch name Num used Ports configured Ports MTU rising ports
  128 7 128 1500 vmnic2 vSwitch1
  
  Name PortGroup VLAN ID used rising Ports
  VM 1 0 vmnic2
  VLAN 20 - NIC 20 1 vmnic2
  VLAN 10 - NIC 10 1 vmnic2
  VM - NIC 0 1 vmnic2

  ~ # esxcfg - NICS - l
  Name PCI Driver link speed Duplex MAC address MTU Description
  vmnic1 0000:03:00.00 r8168 up to 100 Mbit/s Full 80:ee:73:73:51:7e 1500 Realtek Realtek 8168 Gigabit Ethernet
  vmnic2 r8168 Down 0Mbps Full 80:ee:73:73:51:7f 1500 Realtek Realtek 8168 Gigabit Ethernet 0000:05:00.00

  ~ # esxcfg - vmknic - l
  Interface Port Group/DVPort IP IP family address Netmask Broadcast MAC address MTU TSO MSS active Type
  Managing IPv4 192.168.1.117 network vmk0 255.255.255.0 192.168.1.255 true 1500 65535 STATIC 80:ee:73:73:51:7f

  
  vmk0 networking fe80::82ee:73ff:fe73:517f 64 80:ee:73:73:51:7f 1500 65535 true IPv6 STATIC, PREFERRED
  VM - IPv4 NIC 192.168.6.1 vmk1 255.255.255.0 192.168.6.255 00:50:56:60:ca:6 has 1500 65535 true STATIC
  VM - NIC IPv6 fe80::250:56ff:fe60:ca6a 64 00:50:56:60:ca:6 vmk1 has 1500 65535 true STATIC, PREFERRED
  vmk2 VLAN 10 - IPv4 map NETWORK 192.168.110.1 255.255.255.0 192.168.110.255 00:50:56:6 d: d4:b6 1500 65535 true STATIC
  VLAN 10 - NIC IPv6 fe80::250:56ff:fe6d:d4b6 64 00:50:56:6 d vmk2: d4:b6 1500 65535 true STATIC, PREFERRED
  vmk3 VLAN 20 - IPv4 map NETWORK 192.168.120.1 255.255.255.0 192.168.120.255 00:50:56:67:40:fc 1500 65535 true STATIC
  vmk3 VLAN 20 - NIC fe80::250:56ff:fe67:40 fc 64 00:50:56:67:40:fc 1500 65535 true STATIC IPv6, PREFERRED

  I think that it is configured correctly.  Non - VLAN works well, but VLAN will not give them IPs.

  I have created a thread in the Debian forum because I think that it is something wrong with the way my DHCP server is configured.

  http://forums.debian.NET/viewtopic.php?f=5 & t = 109503

  Finally, I got it to work.  Thanks for all the help.

  So I had to create 1 Virtual Machine under the vSwitch1 with "All the (4095)" VLAN ID.  Traffic not VLAN becomes also IPs.

  

• VLAN Trunking ESXi with blade HP c7000 and Juniper EX3200

  Hi, I'm quite new in VMWare field, because recently my company is going to launch a public cloud in Malaysia, his will combine several technologies, so I guess I have no choice but to go and study all materials and related software. My background is system and network, I understood the concept and success raising (EX3200) switch with port is lucky trunking with id vlan native 48, where my other vlan is 45-47. However later on, I will consider how I need to activate multiple markup in ESXi, I found this VST it one that I seek, I created VLANs inside the vSwitch. Then I change my machines in vlan respectively (label to change card). Then I change connect it outside (adapter for vMotion and multi-service, call Management Network default console) to vlan 48, however, when I change, my blade appear to be isolated from others. I remove id vlan, or put as 4095, then it works again, but the machine all connect them my VLAN (45-47) can not ping to the outside, please help me in this...

  Yes do not activate the switch with VLAN, vlan 48 which is native on the trunk port create a portgroup of vmware on the vswitch who has network you cards connected to the switch but leave the tag of vlan empty this will be then in the vlan default of the switch, and then create three more vmware exchanges one for each vlan and this time make sure you enter the id vlan.

  then provide that the routing has been implemented each vm will be able to talk to each other (if there are now firewalls to stop).

• A bet with the network team - configure the VLANs on Teddy does not work against Cisco?

  Hello

  We have a great place of Esx and I have a bet with one of the network Admins.

  I configured a vSwitch to work with 1 bear. On this vSwitch I configured 1 vlan with a Vlan ID 100

  I told the guy from the network to set up the bear side here and he said he has set up 'Access' and not trunk as normally I ask because it's only 1 Vlan.

  I said ok and we tried and nothing works, when I configured the Vlan 0 in the Esx, it started working.

  Of course we cannot leave it like that and need to Config the Vlan on the Esx.

  I told them that once I configured the Vlan on my side there is nothing to do there, and they need to do the thing here.

  they say the same thing.

  Who is right? It is something they need to configure side here if she's 'access' and not 'trunk '?

  or is it something at my side?

  This mayble help your network http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=1004074 management team

  and

  http://KB.VMware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalID=1003806

  Please, do not forget the points of call of the "useful" or "correct" answers

  Mauro Bonder - moderator

• Affecting several VLANS to a Port Group

  Hi all!

  We have 2 switches farm of server connections to the host server. Each of our 8 ESX servers has 4 physical network adapters that support virtual machines. We have 2 network cards to each physical switch. We have a single vSwitch and 2 port VM groups set up on each ESX Server. We use and configuration active / standby in Port groups so we can control what physical move the VM speaks to. All 4 network cards are available for the Group of ports, with connections going to spend 1 active and forward to switch connections 2. It is reversed on the other group of Port.

  We have several VLANS associated with our data center. Is it possible to put the tag VLAN on 2 port groups VM to support multiple VLANs? Otherwise, I think we have to put up a pair of these groups of ports for each VIRTUAL local area network, we want to make it available to the virtual machines on each ESX Server. Is this correct? We have some circuits/EtherChannel enabled on switches that work properly. However, we cannot port VM groups to pass traffic unless label them us, and it seems we can only enter a VIRTUAL local area network in the area.

  Thank you in advance for your help!

  Steve Hurd, MCSE, CCNA, VCP

  To use the trunks that are coming in your ESX host, you must have your VLAN Tag somewhere along the way.  If you are not at the level of the switch (since you're trunking), you will need to do the vSwitch, either the level of the virtual machine.

  VSwitch level, this by creating exchanges and then marking at the level of the port group.  Marking that is currently happening in the ESX/vSwitch, and your vm must use the port suitable for group the VLAN they need to use.

  Your last option is to tag at the level of the virtual machine itself.  To do this, your vSwitch must use VLAN 4095 tag, which allows all the VLANS to pass through, and all tags are marked.  The portgroup vSwitch here is basically a tunnel and will allow the unmodified traffic, but now, you have to mark your VLAN of the NETWORK adapter in your virtual machine.  It is very effective if you have a large number of virtual machines.  The most practical method will be to create the VLAN-based exchanges at the vSwitch level and go from there.

  Unlettered, somewhere, communication will not incorrectly, as the physical switch will assume that all traffic not marked will even vlan uses unmarked frames (vlan native), and machines on that vlan can communicate each other.

  -KjB

• Config port / VLAN on switch MXL

  I'm not a network engineer, but I try to set a port to my MXL switch to a VLAN that will route traffic on virtual machines on a local network of calculation.

  This is the port Te 0/52 on the back of the MXL and I am running ESXi on servers in my m1000e.  In fact, I have two MXLs in the tissue A of the m1000e configured with VLT via the interfaces of the FourtyGig.  This part has been implemented by people of Dell Tech Services, making the installation.

  Here's what looked like the config to start:

  dsa1 #show vlan

  Codes: *-Default VLAN - VLAN, GVRP, R - G remote control Port Mirroring VLAN, P - primary, C - community, I - isolated
  O Openflow
  Q: U - no identified, the T - tag
  x - unidentified Dot1x, X - Dot1x tag
  o - unidentified OpenFlow, O - OpenFlow tag
  G - GVRP tag, M - Vlan-stack, H - VSN tagged
  i unidentified intern, I - labeled internal, untagged, V v - VLT - VLT tag

  Ports Status Description Q NUM
  * 1 U active Po33 (0/33.37 Fo)
  U Po41 (Te 0/41-44)
  Te U 0/1-32
  115 active Mgmt T Po41(Te 0/41-44)
  V Po33 (0/33.37 Fo)
  Te T 0/1-32
  486 active VMGuest T Po41(Te 0/41-44)
  V Po33 (0/33.37 Fo)
  Te T 0/1-32
  Te U 0/49-50

  And I wanted to add VLAN 1000 to calculate, so I did the following:

  dsa1 #conf

  dsa1 (conf) #interface Te 0/52
  dsa1 (conf-if-you-0/52) #show config
  !
  interface TenGigabitEthernet 0/52
  no ip address
  MTU 12000
  hybrid portmode
  switchport
  FlowControl rx tx off
  spanning tree rstp edge port bpduguard stop-on-violation
  no downtime

  dsa1 vlan (conf) #interface 1000
  dsa1 (conf-if-vl-1000) #show config
  !
  interface Vlan 1000
  Description information
  name computer
  no ip address
  Tagged TenGigabitEthernet 0/1-32
  Unmarked TenGigabitEthernet 0/52
  no downtime

  VLAN now looks like:

  dsa1 #show vlan

  Codes: *-Default VLAN - VLAN, GVRP, R - G remote control Port Mirroring VLAN, P - primary, C - community, I - isolated
  O Openflow
  Q: U - no identified, the T - tag
  x - unidentified Dot1x, X - Dot1x tag
  o - unidentified OpenFlow, O - OpenFlow tag
  G - GVRP tag, M - Vlan-stack, H - VSN tagged
  i unidentified intern, I - labeled internal, untagged, V v - VLT - VLT tag

  Ports Status Description Q NUM
  * 1 U active Po33 (0/33.37 Fo)
  U Po41 (Te 0/41-44)
  Te U 0/1-32
  115 active Mgmt T Po41(Te 0/41-44)
  V Po33 (0/33.37 Fo)
  Te T 0/1-32
  486 active VMGuest T Po41(Te 0/41-44)
  V Po33 (0/33.37 Fo)
  Te T 0/1-32
  Te U 0/49-50
  1000 active Compute T Te 0/1-32
  Te U 0/52

  But I wanted to add THAT VLT Po33 tag to the new VLAN because there is in others, not because I really understand what it does.  In my view, it is used for load balancing?  If I label it with the command 'tag Po33' in the config of vlan, out with the status "T" instead of "V".

  Here are the details of the VLT:

  dsa1 #show vlt detail
  Local LAG Id counterpart LAG Id status Local Peer status Active VLAN
  ------------  -----------  ------------  -----------  -------------
  41 41 UP UP 1, 115, 486
  dsa1 #show brief vlt
  VLT area in brief
  ------------------
  Domain ID: 100
  Role: secondary
  Primary role: 4096
  ICL Link Status: to the top
  Status of heart rate: upward
  VLT Peer status: to the top
  The local unit ID: 0
  Version: 6 (4)
  Local system MAC address: f8:b1:56:09:70:b1
  MAC address of the remote system: f8:b1:56:09:70:fd
  Configured the system MAC address: 00:01:00:01:00:01
  Version of the remote system: 6 (4)
  Restore delay timer: 90 seconds
  Delay-restore Abort threshold: 60 seconds
  Routing peer: disabled
  By the peer-routing-Timeout timer: 0 seconds
  Multicast peer-routing timeout: 150 seconds

  So my questions are, I'm on the right track?  It will do what I want it to do is send traffic on port 0/52 Te which is labeled in ESXi with 1000 VLAN?  Should I worry the VLT marking stuff and if yes, how should I do the VLT marking rather than normal marking?

  The connection only 1 port of MXL 1 to a device, this device is considered a switch/host an orphan. A VLT connection will have 1 port each MXL placed in a port channel and connected to a device.

  Here is a good article that covers the VLT in use with different Topologies.

  http://Dell.to/1wfDl3n

  And the User Guide is a good source to have as well.

  http://Dell.to/1Hy70bb

• WLC 2504 several VLANs multiple SSID

  I have three sites

  Data center management unit A - main - controller + Access - Point IP 172.16.x.x - Vlan 38

  Unit B - system managed by controller IP 172.17.x.x - Vlan 38 Access Points

  Unit C - system managed by controller IP 172.18.x.x - Vlan 38 Access Points

  In the network topology OSPF runs. We have several VLANS about 38 we wish to propagate through SSID, but maybe I'm not create more than 16. How to make a movement of the user of a unit for unit B how do mention Vlan IP for the user because it is 38 Vlan spread on each unit.

  UNIT A - UNIT B - UNIT C

  |                            |                               |

  172.16.X.X 172.17.X.X 172.18.X.X

  |                            |                               |

  VLAN 2-38 VLAN 2-38 VLAN 2-38

  |                            |                               |

  AP-1                          AP-2                        AP-3

  |                               |                               |

  User to user-1 user-2-3

  Need of advice and suggestion

  Hello Saad,

  If I understand your scenario, you have 2-38 or 16 VLAN for each unit. To ensure exactly the addressing specific IP must be assigned to the user, you must create groups of AP and add AP group particular AP. Let's say for the 1st floor that you used the subnet 192.168.1.0/24 and AP-group1 so all the first floor AP will be in AP group1. In addition to browse documents cisco you will get any idea on AP groups concept.

  In order to obtain roaming when users move from one unit to another unit we configure mobility in the controller. As OSPF is already running then you have reach-ability between the controller.

  Hope this information helps you.

• % CABLE_MODEM_HWIC-3-CONTROL_PLANE_FAIL: RBCP failure: failed to add the service ACE flow - type Ethernet not supported

  Hi all...

  I think % CABLE_MODEM_HWIC-3-CONTROL_PLANE_FAIL: RBCP failure: failed to add the service ACE flow - type Ethernet not supported

  on my 1841 which is currently set to L2L via internet cable. Anyone seen this before? I can't find anything on Cisco related to this.
  The tunnel rises and I got the same configs using DSL except interfaces are different. Thank you...
  My configs are below:
  crypto ISAKMP policy 10

  BA 3des

  md5 hash

  preshared authentication

  Group 2

  # address a.a.a.a isakmp encryption key

  ISAKMP crypto keepalive 20 periodicals

  !

  life crypto ipsec security association seconds 28800

  !

  Crypto ipsec transform-set esp-3des esp-md5-hmac xform

  Crypto ipsec df - bit clear

  !

  10 VPN ipsec-isakmp crypto map

  the value of a.a.a.a peer

  Set transform-set xform

  PFS group2 Set

  match address CRYPTO_ACL

  !

  interface cable-Modem0/1/0

  no ip address

  Bridge-Group 1

  Bridge-Group 1 covering-disabled people

  !

  interface BVI1

  IP address 98.x.x.x 255.255.255.224

  IP virtual-reassembly

  VPN crypto card

  Hello DialerString,

  I fear that the ACL is not related to the question, so I expect not to see anything in the debug output

  Hope to help

  Giuseppe

• Several VLANS and DHCP relay on two stacked switch SGE2000-G5

  We were put to the task of securing a small desktop system managed that is currently set up with a standard switch for each of the offices (with different companies) to see each other and in some cases, access to each of the other documents on the network.

  Obviously, this is far from adequate set up and our goal is to isolate each office using VIRTUAL networks, but share a common internet connection provided by managed offices.  We have two switches for layer 3 Cisco SGE2000-G5, but we are new on Cisco equipment and VLAN, so we are not quite sure on how to implement this.  DHCP must be provided by a router, there is no server.  We are open to suggestions on the router as we still buy a.

  I hope that someone may be useful.

  Thank you very much

  Jim

  Hi Jim,.

  SGE2000 switches you are using must be able to handle this without issue. What type of router you are using? As long as you have a router that will take in charge VLAN / several subnets, it should be a simple configuration.

  Here's a quick run down of the measures to be implemented. (using vlan1 and vlan2)

  On the router, create a vlan / subnet 2 and set the port to connect to your shared resources with the two VLAN 1 and 2 switch. (it will be untagged, two will be marked)

  On the switch, create vlan2 and do the same for the port connected to the router. (vlan1 marked and tagged vlan2)

  Now for each switch port that you want to assign the port access and vlan1 and vlan2. (this vlan will be without a label)

  If your router allows, disable routing inter - vlan. If this isn't the case, you must create rules to block traffic from one network to the other.

  All this happens under the assumption that your router can support VLAN and can also make DHCP for this VLAN.

  Hope this information helps

• SA520W VPN from Site to Site with several VLANs

  Hello

  I have a customer here with several VLANS in their places who wants to set up a VPN from Site to site between 2 devices SA520W. Unfortunately I can not find a way to set it up. In the VPN policy, I can choose between everything (which is not what I want, I want only traffict between subnets the routed via VPN), IP address unique, a beach (in a subnet) and a subnet itself - but only one. I don't find a way to configure several subnets in the selection of local traffic and remotely. Adding another IKE policy between the 2 sites does not either (which is good normally).

  Any ideas? Anything I'm doing wrong?

  Thank you for your help.

  Best regards

  Thomas

  I know that if you have an ASA or a router, you can define as VLANS to pass through the tunnel.

  Do not have access to a SA520W to test...

  A recommendation might be to post the question on the SMB community where they answered questions related to this product, just to check what other people did.

  Federico.