05-10-2007 10:04 AM - edited 03-03-2019 04:55 PM
Here's config...
interface FastEthernet0/10
switchport access vlan 10
no ip address
spanning-tree portfast
interface Vlan10
description cust2
ip address 1.1.6.37 255.255.255.252
ip access-group inbound in
ip access-group outbound out
interface FastEthernet0/11
switchport access vlan 11
no ip address
spanning-tree portfast
interface Vlan11
description cust3
ip address 1.1.7.41 255.255.255.252
ip access-group inbound in
ip access-group outbound out
Than I have another vlan the one pointing to router
interface FastEthernet0/1
switchport access vlan 14
no ip address
load-interval 30
duplex full
speed 100
spanning-tree portfast
interface Vlan14
description wireless
ip address 192.168.1.1 255.255.255.0
ip access-group inbound in
ip access-group outbound out
This all worked fine, there is nothing to wrong with L3 routing. The problem is there is traffic on physical ports and I can't see traffic on VLAN interfaces. For example when I execute this command show interface vlan 14. I can see some kb traffic while there is more than 10Mb traffic on Fe 0/1. Same for other vlans.
Port FastEthernet 0/1 is connected to upstream gateway while port fastethernet0/1 is a memeber of vlan14. Why there is no traffic on vlan interfaces while there is L3 inter-vlan routing on this switch.
05-11-2007 01:16 AM
reply...
05-11-2007 04:28 AM
hi,
sorry, vlan interfaces no not count traffic passed for routing, but only traffic to/from the vlan IP address. If you want to know your traffic pattern between the vlan you can enable netflow.
Hope this helps, please rate post if it does!
05-11-2007 05:14 AM
Would you please clear this further. If vlan interfaces not count traffic passed for routing, what about the access-list we configure on vlan interface? If L3 traffic passed via vlan interface it should be counted and than access-list can work. My question is, if there is no traffic on vlan interface how come my access list will work while I can't put access-list on physical interfaces.
In this way I will extremely encourage Extreme switches the way they give us access-list in layer 2/3 mode on physical ports.
06-07-2010 04:22 AM
Hi,
one question:
why does the SVI on a 4948 count the routed traffic, whereas the 3560 SVI doesn't count? Why is there a difference between them? What is the difference between them? Is it an IOS issue?
Thanks in advance!
Sascha
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: