I'm configuring VLAN's on a Cisco 3550 & 2960. The 3550 is a layer 2 & 3 switch. I've configured the "router on a stick" config before but this is the first time on a layer 2 & 3 switch. Then trunking to 2960 thru gi ports.
How would I connect the VLAN's together to be routed? Do I put the IP on the VLAN or do I configure subinterfaces on the router port? And if I put the IP on the VLAN can I apply acl to it like an interface?
I'm thinking that you wouldn't create sub-int, you would need to connect a cable and trunk it.
The 3550 will have SVI's- Switched Virtual Interfaces. What that means is each VLAN can have a layer 3 address.
switch(config)# interface vlan 5
switch(config-int)# ip add 10.10.5.254 255.255.255.0
switch(config)# interface vlan 6
switch(config-int)# ip add 10.10.6.254 255.255.255.0
You'll need to enable ip routing-
switch(config)# ip routing
Now hosts between the VLANs can communicate. Finally to add the 2960 into the mix, you will want to create a trunk between the switches. No sub-interfaces needed and you can apply ACLs inbound and outbound.
This document gives several answers on frequently asked questions for PFRv3 channel state behavior.
Q1: What are all the channel operational states from a BR (border role) perspective and what are the rules/conditions to be in each st...
The need was to reach an host inside a LAN through a VPN connection managed by the LAN gateway (Cisco 1921).
The LAN gateway performs NAT and there was a dedicate nat rule for the host i wanted to reach through VPN.
I couldn't connect to the hos...
We have 3 identical switches configured by someone else and would like to claim some of the Gigabit ports(G1/G2/G3/G4) for use on servers. When we try to change the wiring and configuration, we run in to connectivity issues. Attached is a des...