Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
959
Views
5
Helpful
6
Replies

Limint number of VLAN-s in QinQ

Go to solution
Branimir Turk
Level 1
Level 1

‎03-30-2009 11:46 PM - edited ‎03-06-2019 04:55 AM

Hi everybody,

Is there any way to limit number of C(ustomer)-VLANs on QinQ tunnel port?

For example, only VLANS 10-20 are double tagged, all other traffic is dropped.

Thanks,

Branimir

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Giuseppe Larosa
Hall of Fame
Hall of Fame

‎03-31-2009 01:58 AM

Hello Branimir,

as far as I know this is not possible: you cannot choice what vlan-ids have to be tunneled and what should be filtered/stopped.

all vlan-tags presented to the dot1q tunnel interface are externally tagged with the service provider tag for this customer.

This is for forwarding efficiency.

see for example this chapter from config guide of C3750

http://www.cisco.com/en/US/docs/switches/lan/catalyst3750/software/release/12.2_44_se/configuration/guide/swtunnel.html#wp1010370

Hope to help

Giuseppe

View solution in original post

0 Helpful
6 Replies 6

Go to solution
Giuseppe Larosa
Hall of Fame
Hall of Fame

‎03-31-2009 01:58 AM

Hello Branimir,

as far as I know this is not possible: you cannot choice what vlan-ids have to be tunneled and what should be filtered/stopped.

all vlan-tags presented to the dot1q tunnel interface are externally tagged with the service provider tag for this customer.

This is for forwarding efficiency.

see for example this chapter from config guide of C3750

http://www.cisco.com/en/US/docs/switches/lan/catalyst3750/software/release/12.2_44_se/configuration/guide/swtunnel.html#wp1010370

Hope to help

Giuseppe

0 Helpful

Go to solution
Branimir Turk
Level 1
Level 1
In response to Giuseppe Larosa

‎03-31-2009 02:00 AM

Hi Giuseppe,

Thank you for the information.

Regards,

Branimir

0 Helpful

Go to solution
guruprasadr
Level 7
Level 7

‎03-31-2009 02:08 AM

HI Branimir, [Pls RATE if HELPS]

Please let us know the requirement in detail.

Let us assume the Setup as:

BaseStation Switch==>Tunneling Switch ==> Core Switch ==> Edge RouterA.

Configuration for the QnQ Tag Interface at Tunneling Switch:

interface FastEthernet0/20

description For Edge RouterA

switchport access vlan 900

switchport mode dot1q-tunnel

speed 100

duplex full

no cdp enable

spanning-tree portfast trunk

spanning-tree bpdufilter enable

end

Note: VLAN 900 is the QnQ Tag VLAN ID.

BaseStation Switch <> Tunnelling Switch.

If the C(ustomer) VLANS eg: 30-40 are not allowed in the X-connected Interface towards the Tunneling Switch means; the VLANS are not Tagged and hence it is dropped.

Pls RATE if HELPS

Best Regards,

Guru Prasad R

0 Helpful

Go to solution
Branimir Turk
Level 1
Level 1
In response to guruprasadr

‎03-31-2009 02:12 AM

Hi,

If i understood correctly, you are saying that i need to configure trunk port on BaseStation Switch with switchport allowed vlan 30-40.

Unfortunately BaseStation switch is not under my administration.

0 Helpful

Go to solution
guruprasadr
Level 7
Level 7
In response to Branimir Turk

‎03-31-2009 10:43 AM

HI branimirturk, [Pls RATE if HELPS]

If you do not want VLAN Range 30 - 40 on QnQ path;

Don't allow VLAN 30 - 40 in the BaseStation Switch <> Tunnelling Switch.

Hope I am Informative.

Best Regards,

Guru Prasad R

Go to solution
Branimir Turk
Level 1
Level 1
In response to guruprasadr

‎03-31-2009 11:26 PM

Hi,

Thank you,

Branimir

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card