Configuration issue VLAN

Hi all

I'm a newbie on VLAN and spent a lot of time googleing and youtubeing trying to learn more about the virtual LAN, but now I'm stuck.

I think I'll need upgrade to vSphere Enterprise Plus Standard so I can use the dswitch to specify local networks virtual, but not sure.

Your expertise will be appreciated.

That's what I'm trying to do.

I need to put some of the vm (see Security Server) on the DMZ servers, and since they all share the same NETWORK card on the host, the only way to do it is by using the VIRTUAL LAN. (I think).

Our network consists of:

Cisco ASA 5510 - 3Com 4200G Switch - switch PowerConnect 2724 DELL

Every PC on the LAN are connected to the 3Com switch.

All 4.1 vSphere hosts are connected to the DELL PowerConnect 2724.

VLAN 1 = LAN

VLAN 2 = DMZ

Cisco ASA 5510

0 port: Connect to the Internet

Port 1: Connect to 3Com switch 48-port

3Com 4200 G

Port 1-46: assigned to the vlan 1

: 47 connected to DELL 24 Port switch, assigned as a trunk in vlan 1 and 2

: 48 connected to Cisco ASA Port 1, assigned to vlan 1 and 2

Reference DELL 2724 (Installer in question)

1-23 port: assigned to the default vlan 1 for now.

Port 24: As trunk assigned to the vlan 1 and 2.

Port 1-2: connected to the VM NIC host where view Security Server and DMZ will be setup.

I have installation subinterfaces on the Cisco ASA for VLAN1 and 2, thanks to engineer Cisco that helped me.

Basically, we split an interface to use the 2 VLANS.

But after its installation, the local network was not able to talk to the Cisco and vice versa. I ping the other PC or vSphere hosts on the local network, but cannot access the internet or Cisco. From the outside, you can connect to the Cisco but cannot ping the cisco LAN.

Do I need to have some dSwitch on the vSphere host to install vlan1 and 2?

I DO NOT use vlan1 since it was a vlan by default of the switch?

Or are you a better solutions for our mess?

Fine thanks

See you soon.

You allowed 101 VLAN on ports of junction on the physical switch on which the uplinks are connected?

For an example of Cisco configuration, see http://kb.vmware.com/kb/1004074

André

Tags: VMware

Similar Questions

  • Configuration of VLAN Switch SF302 - 08 p

    I have the following Setup using two switches PoE SF302 - 08 p:

    1st floor

    =========

    SWITCH1 # <------->private network

    <------->public network

    2nd floor

    =========

    Switch #2 <------->private network

    ... public network (visible, but devices can't connect)

    I tried to do the config in the identical to the #1 switch #2 switch, but something still does not work.

    This is probably a configuration issue VLAN, or what?

    Thank you.

    Ken Watkins

    Hi Ken, the interfaces between switches must both vlan of the port.

    example of

    VLAN 1

    VLAN 2

    port 1 connects to port 1 of the second switch

    config t

    interface gi01

    switchport mode trunk

    switchport trunk allowed vlan add 2

    The ports between switches must be vlan unidentified native, all other VLAN Tag. In my example, 1u, 2 t.

    -Tom
    Please mark replied messages useful

  • Issue of configuration of VLAN

    We have ESX Server 3.5.0 110181 and VIC version 2.5.0. Each of our ESX host has 4 NICs for use in our LANs, 2 more for each Port of the Console of Service VMKernel Port. Physical network adapters to connect to a stack of 5500 Nortel ethernet Routing switches.

    I am trying configure 4 NICs in each ESX host to be able to view the two VLANS separated. I am trying to configure these VLANS on the Nortel switches. The problem is I'm new on the VLAN and can't do network cards in the ESX host to always see the two VLANS. Right now I have an ESX host with two network cards that see both VLAN and two network cards who don't see a VLAN. I'm pulling my hair out trying to figure out what I did wrong.

    First and I realize maybe this isn't the best place to ask this question, but in the Nortel VLAN config, there are four choices of marking and I have not been able to understand that it is appropriate to use for the ESX host. The choices are; Removes all brand, removes the brand only PVID, Tag all or only Tag PVID.  Can someone help me with this?

    Also should I do at VIC or on the ESX host to see systematically the VLAN? The NICs appear to periodically just drag one of VLAN, generally the VLAN the DMZ.

    Any help much appreciated. This VLAN is new to me and I could not find very clear or basic info. on the configuration of VLANS.

    Thank you.

    Hi danzbassman, the best would be to put each of the 4 corresponding ports on your Nortel 'Tag All' or "UNTAG PVID." switch only

    If you use 'UNTAG PVID Only' on the switch, this means that all executives EXCEPT those on the VLAN "primary" assigned to the port should have tags on them. Then, on the side of ESX vSwitch, you want to create your virtual machine with the many groups entered the VLAN ID field for each VLAN "secondary" on the ports of Nortel and the VLAN ID field blank for the VLAN "primary". For example, suppose that your four NICs (attributed to vSwitch1) were connected to ports 1, 2, 3 and 4 on the side of Nortel and you had three VLANS, 100, 200, and 300, with VLAN 100 defined as the PVID on each of the four ports. If you want your virtual machines to be able to properly access to all three of these VLANs, to put in place three groups of virtual computer on vSwitch1 ports, one with the VLAN ID set to nothing (for VLAN 100 traffic, because it is not marked), one with the VLAN ID value of 200 and another with the VLAN ID value 300.

    If you use 'Tag All', then you would follow the same procedure, except your first port group (one for traffic VLAN 100) should also have its VLAN ID set to 100.

    Please, help me by awarding points for a 'useful' or 'proper' response if you think it is useful!

    -Amit

  • Need help setting up a configuration of VLAN special using WRVS4400N

    Hi guys,.

     

    I need your help on how to implement a configuration of VLAN somehow non-standard.

    The situation is the following:

    The customer wants a WLAN set up for the company and the other for guests. Now, wouldn't that be not so difficult if we'd be using the internal internet connection. But the WRVS4400N will be used to implement wireless LANs / VLAN only.

    The company uses the DHCP protocol on both of their subnets, provided by a Watchguard Firebox XTM510.

    Now, what we would do is set up the back door #1 for the connection to the subnet of the client and the #2 for the connection to the optional subnet for the guests. The first problem is that we were not able to configure DHCP forwards to the VLAN2. It works very well on the 1st but the 2nd doesn't allow that either ENabled or disabled, grayed out DHCP.

    To work around the problem that he would be allowed to set up DHCP WRVS4400N providing in itself for the subnet invited, but try that didn't work at all.

    Is it possible? Thanks in advance!

    Best,

    Ralph.


  • RVS4000 Configuration of VLAN

    I am trying to set up a couple of VLAN on the RVS4000.  The router allows me to enter the VLAN ID without problem, but it doesn't seem to be a screen to set up the network and DHCP component for the new configuration of VLAN.  I saved the configuration of the router and printed.  There are several VIRTUAL networks in the configuration with the IP addresses starting with 192.168.2.0/24 and increasing unit (192.168.3.0, 192.168.4.0, etc.).   These networks VLAN contains the DHCP configuration also.  How can I change these addresses.  Is it possible that you can not change them and take what's there and use it?   When I configured a VLAN with ID 30, is to tie the knots got an address in the 192.168.2.0 subnet, which is not what I wanted.  The manual is no help.  He said almost nothing about the configuration of VLANS.  Is there another source for more information on the configuration of the RVS4000 with VLAN?

    Also, I downloaded and installed the new firmware for the router.

    Any help is appreciated.

    Tony

    Forget it.  I thought about it.  It is on the configuration page and you will need to use the drop-down list for the VLAN configured.

  • PC6224 Configuration of VLAN

    Hello

    I am desirous of VLAN my iSCSI data in two separate VLANS and think I understand what to do. I would like to just anyone for the validation test it before I go live and eventually get things horribly wrong.

    All i15 labeled ports must be configured as switchport access vlan 15
    All i16 labeled ports must be configured as switchport access vlan 16
    Four XG ports must be configured as vlan allowed switchport General add 15.16 tag.

    So far I think I have it but I'm not sure on how to get the traffic untagged crossing ports XG.
    It will do it automatically, or should I set switchport General pvid 1 for these ports, so all untagged traffic goes to the network vlan by default?

    I need to set the VLAN on LAG3 or will it not serious because the ports are marked? Or do I not have to label the ports if the OFFSET is the tag? Or I have to mark the two?

    Thanks for the help,

    Jim.

    Put a PVID on a LAG sets going what traffic VLAN not identified.

  • Cisco asa active multiple interfaces on a single switch without configuration of vlan switch.

    I was wondering if there is a work around on cisco asa to have 2 interfaces vlan on a switch. The reason I ask I have a cisco asa 5505 and a dell switch that does not support the configuration of VLANs. I set up 2 interface vlan on a cisco asa and when two interfaces are active my internet drops frequently. I was wondering if there is nothing to configure the asa cisco to make this thing work. Thanks in advance...

    Assuming that Dell switch at least linking several interfaces of the ASA to the Dell should translate all media spanning tree protocols, but a bet covering the tree blocking State to avoid a tree covering loop.

    If the Dell does not support tree covering weight then you would be in very bad shape each broadcast packet would be will loop indefinitely and cause what we call a 'broadcast storm. "

    One way is not good and the other real harm.

  • How to configure the VLAN-access plan on Cisco 3650

    Hello

    I would like to configure the VLan-access plan to filter some of the traffic VLAN, but I am unable to run vlan-map command on the cisco L3 3650 v03.06.00E

    Hello ahmed,.

    According to the command search tool, 3650 v03.06.00E does not support the vlan-access plan.

    You will need to catalyst 3650, 3SE to configure "vlan access map.

    https://Tools.Cisco.com/support/CLILookup/cltSearchAction.do

    Show vlan-plan of access (catalyst 3650, 3SE)

    VLAN-access plan (catalyst 3650, 3SE)

    I hope this helps.

    Please evaluate the useful messages.

    Thank you.

  • Configure the VLAN SG-200-26 2 p using WRVS4400N

    I would like to configure two VLANS on my SG-200-26 p switch. Using port 25 for VLAN 1 and port 26 for VLAN 2 from my WRVS4400N. Then assign each port (1-24) to one or the other VLAN.

    My router has 2 VLAN private Public (1) (2). Private is conifured wireless 1, 3 & 4 and private ports. Configured public port 2 and public wireless.

    Each work fine with different IP on each VLAN.

    Can I configure the switch as described above by using port 25 and 26? Y at - it instructions somewhere?

    PEOPLEVISON,

    Under the terms of a Port VLAN membership, you may need to select a port before joining VLAN...

    You can also us Port to VLAN if you wish. Just the VLAN at the top and click on Go. Then check the radio button for Untagged for the ports you want to in this VLAN.

    I have no problem with what you're trying to do. Please keep us updated.

    -Marty

  • Configuration of vlan SG 300 - 28 p

    Hello

    I tried to Setup VLAN on a SG300 - 28 p, but they do not work.

    This is my setup:

    I want to Switch1 to have 1-10 ports to access the area demilitarized and 11-24 the LAN.

    Then I wan to add switch2-4 to expand access to the local network.

    Is this possible?

    I tested with cisco 2960 switches by saying just what ports forge have access to

    DMZ and LAN, but small business switches are different...

    I really appreciate the help!

    Hi Francisco, assuming that the 2960 worked and there was no difference in configuration then the problem would be that you have not added the VLAN to the trunk.  On a catalyst you do not configure the VLANS on a trunk, since all VLAN pass them. On SB switches, that you need to configure the VLANS on the trunk, otherwise only the VLANs native / default works.

    -Tom
    Please mark replied messages useful

  • Configure the vlan with SG 300 - 10 p and 520 SA

    Hi all

    Forgive my ignorance, but I need help with the basic configuration.

    For a small office, I bought an appliance of security SA520 (for future VPN with another remote desktop) and a switch of SG 300 - 10 p to connect 3 PCs and 3 IP PHONE. The SA 520 is the router. I have to configure 2 VLANS on the switch:

    VLAN2: DATA (for PC)

    VLAN3: VOICE (for IP PHONE)

    VLAN1: BY DEFAULT.

    How can I configure simply all ports?

    I would like to configure ports 1-4 on 5 to 8 ports and VLAN2, VLAN3 and G10 port is reserved for the SA520 router.

    I want to split VOICE and DATA network.

    I think I need to create a trunk on G10 to SA520...

    Can someone help me?

    Hi Julien,

    OK sounds like you use it vlan by default for network management and the vlan 2 for vlan3 for voice and data.

    I use a calculator for this, my SA520 is ready at the present time.

    Step 1   On the SA520 add vlan 2 and vlan 3 and label them voice and data respectively.

    Step 2. Allows you to use the switch port 4 on the SA520 as a port to shared resources to the SG-300.

    (my intent is to use vlan1 not tagged vlan tagged 2 and vlan tagged 3 on the uplink of the switch and the SA500.)

    To do this, I have to say the SA520 port 4 of the switch will be in trunking and not access mode.

    You will need to check the membership of vlan 2 and vlan 3 on switch port 4.

    Step 3.  Now add a few IPS to VLAN2 and VLAN3

    Step 4.  Create DHCP scopes if that is what is needed on the SA520

    So now I hope that we have the SA520 with the associated IPS VLAN1, VLAN2 and VLAN3

    We also have the switch port 4 as a network interface

    We are vlan1 reproducing unidentified and vlan2 tag and tag to the SG-300 switch vlan3.

    We do the opposite on the SG-300 switch.

    If you use G10 as the uplink to the SA520 you'll notice of default port 10 must already be in trunk mode.

    Switch ports G10 should be marked for vlan 2 and labelled for vlan3.  It will be, default Gi10 untagged for vlan1.

    Make sure you keep ports switch is correctly set up.

    Best regards, Dave

  • Configuration of VLAN 'Wi - Fi comments' on ASA 5512

    I'm trying to configure a new vlan on my Cisco ASA 5512 running version 8.6 (1) 2.  This vlan will give access to AP Wireless 'invited' into my network.  I have the configuration of vlan comments through my switches, I am able to devote a switch port to 40 VLANS and acquire an IP address in the network 10.40.10.0/24.  Below is an extract from what I think is relevent to the config information.  I try to carry the traffic of comments on my ' outside' interface.

    Obvious to me miss me another command here.  Any help would be appreciated to greatling. If more running-config is required please advise.  Thanks in advance!

    _________________________________________________________

    interface GigabitEthernet0/1.40

    Description comments Wireless Network

    VLAN 40

    nameif guestwireless

    security-level 50

    IP 10.40.10.5 255.255.255.0

    Route outside 0.0.0.0 0.0.0.0 X.X.X.X 1 (public IP address to X.X.X.X)

    access extensive list ip 10.40.10.0 guestwireless_access_in allow 255.255.255.0 interface outside

    guestwireless MTU 1500

    Access-group guestwireless_access_in in the guestwireless interface

    dhcpd address 10.40.10.50 - 10.40.10.250 guestwireless

    dhcpd dns 8.8.8.8 interface guestwireless

    guestwireless enable dhcpd

    ________________________________________________________

    Here is the part of the killing

    interface GigabitEthernet0/0

    ISP Interface Description

    nameif outside

    security-level 100

    To take

    interface GigabitEthernet0/0

    security level 0

    You do not want the more precarious with the higher level hehe safety interface

    Looking for a Networking Assistance?
    Contact me directly to [email protected] / * /

    I will fix your problem as soon as POSSIBLE.

    See you soon,.

    Julio Segura Carvajal
    http://laguiadelnetworking.com

  • What configuration of VLAN requires a switch connectivity defined as an access port?

    What configuration of VLAN requires a switch connectivity defined as an access port?

    By external switch tagging

  • A bet with the network team - configure the VLANs on Teddy does not work against Cisco?

    Hello

    We have a great place of Esx and I have a bet with one of the network Admins.

    I configured a vSwitch to work with 1 bear. On this vSwitch I configured 1 vlan with a Vlan ID 100

    I told the guy from the network to set up the bear side here and he said he has set up 'Access' and not trunk as normally I ask because it's only 1 Vlan.

    I said ok and we tried and nothing works, when I configured the Vlan 0 in the Esx, it started working.

    Of course we cannot leave it like that and need to Config the Vlan on the Esx.

    I told them that once I configured the Vlan on my side there is nothing to do there, and they need to do the thing here.

    they say the same thing.

    Who is right? It is something they need to configure side here if she's 'access' and not 'trunk '?

    or is it something at my side?

    This mayble help your network http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=1004074 management team

    and

    http://KB.VMware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalID=1003806

    Please, do not forget the points of call of the "useful" or "correct" answers

    Mauro Bonder - moderator

  • Configuration of VLAN interface network invited only.

    I'm running CentOS 2.6 and I try to configure the VLANS on a host only interface.  I get an error invalid argument of vconfig.  VLANs are not supported on host-only networking?  I have searched around for a while but you have not found a clear answer.

    Interesting, because on my host OpenSUSE 11.1 x 64, the same command vconfig works very well. I have not tested the VLAN later, but certainly not error:

    #vconfig add vmnet1 900

    VLAN with VID added == 900 to IF -: vmnet1: -.

    #

    Guy Leech

    VMware vExpert 2009

    ---

    If you have found this device or any other answer useful please consider the use of buttons useful or Correct to award points.

Maybe you are looking for

  • Get horizontal wrinkles when scrolling down in the active window in firefox.

    Using the latest version of Firefox on a Dell XPS 630i, Win 7 Pro. Use of a HP w2338h monitor set in 1620 x 1050 at 60 Hz. Graphics card is NVIDIA GeForce GTS 240. Logitech Anywhere Mouse MX. When scrolling down I get lines on the screen when I type

  • HP probook 450 g1: route power hp probook 450 g1

    I'm here to ask a question about the road that the flow of electrons inside my question computer.this is intended for professionals from the hardware store. When I plug my laptop, does the power: (a) goes to the battery and the laptop is powered from

  • Satellite A200: Can't update Vista 64bits Bios 2.40

    Here's my question:I 2.20 Bios Vista 32 but I am trying to install the new version 2.40 and is impossible for me.I try and I try and have me always the same mistake, in box 15. I try a few different forms, Bios of x 64 vista, because I instaled Vista

  • Dead on Qosmio G20-128 pixels?

    I've seen a few dead pixels on the screen of my Qosmio G20-128. The number of pixels is greater than the minimum value for the use of the guarantee. I have to send my laptop using Toshiba. But I absolutely need the laptop for my work! Y at - it an op

  • Spoolsv.exe question-, nothing seems to fix it.

    I get error spoolssv.exe so prevalent here. So far, nothing suggested by someone I've seen corrects this problem. I deleted everything in the \printers\ directory (even if there anything here); fact the variuos regedit suggestions; Spoolsv.exe copied