We have a central site, with 6 regional sites.
Each regional site is connected to the same ISP, and the traffic is divided by them using a distinct VLAN for each site and at each regional site is a simple router that handles DHCP etc.
Normal routing works fine, if we just use a single VLAN, the routing works, but it is the multiple VLANs where we have issues.
In the central site we have a simple router that has all of the regional LAN/Routes configured and its WAN port is connected to a SFE2000P switch on port E9.
Port E9 is an Untagged member of VLAN’s 1006-1009.
Port E11 of the switch is Trunked and is connected to the ISP’s Cisco router(Port F0/0).
Port E11 is a Tagged member of VLAN’s 1006 thru to 10011.
We are attempting to route to the various regional sites and this fails, UNLESS the corresponding port has a PVID for that regional VLAN :
Regional1 has a VLAN of 1006 and an IP of 10.10.10.70
Regional2 has a VLAN of 1007 and an IP of 10.10.10.60
Port E9 is set to PVID 1006
If we ping from the local router to 10.10.10.70 it works perfectly.
If we ping from the local router to 10.10.10.60 it fails, and the ARP table of the local router does not show an entry of the Regional2 router MAC address.
If we set Port E9 to PVID 1006
Then if we ping from the local router to 10.10.10.70 it FAILS.
If we ping from the local router to 10.10.10.60 it works perfectly, and the ARP table of the local router shows an entry of both the Regional1 and 2 router MAC addresses.
For Internet access:
Port E12 is also Trunked to the same Cisco Router (port F0/1) and is a member of VLAN 1012
Ports E19-E24 are in Access Mode and members of VLAN1012.
The internet works perfectly, and is not an issue.
So it would seem that the Trunking is working, but the VLAN routing is not.
I understand that traffic is not broadcast between VLAN's but, as this is a "Layer3" switch why does it not learn the IP/VLAN if it knows the MAC/VLAN?