I'm new to Switch management and configuration, so please excuse the simplistic nature of this question. Here is what I want to do. I want to configure a 2950 with Three Different VLANs, interfaces 1-8 (VLAN 1), interfaces 9-16 (VLAN 2) and interfaces 17-24 (VLAN 3). I have interface 0/1 connected to another switch on our LAN and it is communicating. For now, I want to have VLAN 3 Blocked from talking to any thing except its own interfaces. I want VLAN 2 able to communicate with VLAN 1, but most of the traffic should be just among devices in that VLAN. I've issued the commands to configure my other two VLANs
SwitchA# vlan database
SwitchA(vlan)# vlan X name vlanX
I've assigned the interfaces to their respective VLANs. Show Run displays this:
So you're saying that I can only have Two VLANs - VLAN 1 and 2? I guess I can live with that until I get a new switch. If I drop VLAN 3 and use VLAN 2 as my old VLAN 3, what configuration changes do I need to do to keep VLAN 2 traffic contained on that switch?
You can have multiple vlans at layer 2 ie. when you do a "sh vlan brief" you are viewing the L2 vlans and you can have all 3 vlans.
But at L3 ie. when you do a "sh ip int brief" you can only have one vlan interface up/up at any one time because as Giuseppe says this is a L2 switch. Also this one vlan interface is not used to route user traffic between vlans, it is only used for managing the switch.
If you want to route traffic between vlans you will need either a router or preferably a L3 switch.
Ah, I get it. You're saying that this switch can't route the traffic, it would have to be a L3 type switch. OK, then the routing would be handled by the router. Is there a setting that needs to be done on the router to handle the traffic. Basically, we are segmenting a Class C (that we own) to handle a Virtual server setup, segmenting (subnet 255.255.255.240) our 14 IPs per segment. The router is currently configure to "see" the whole range (actually two Class Cs - XXX.XXX.24 and 25 using subnet 255.255.254.0).
So I still want the VLAN 3 segment to be contained within its own VLAN. The Virtual devices that will be connected here will only need to talk to one another. The router should handle VLAN 1 (by default), what about VLAN 2? Does some setting need to be made to handle that?
You can have any number of ports configured in different VLANs but you will have to trunk a port up to a router or other layer 3 device in order to route between the VLANs.
If port 1 if in VLAN3 and port 2 is in VLAN4 and port 24 is the trunk to the router then the packet would travel from port 1 up the trunk, down the trunk, and then to port 2.
Hope that helps.
Just saw your next post.
Yes, you will need to configure your port that connects to the router as a trunk with encapsulation dot1q. On the router interface you will do the same thing and then configure subinterfaces fa0/1.1 for vlan1 fa0/1.2 for vlan2, etc.
Each subinterface will be configured with its own subnetted IP address and mask.
This document gives several answers on frequently asked questions for PFRv3 channel state behavior.
Q1: What are all the channel operational states from a BR (border role) perspective and what are the rules/conditions to be in each st...
The need was to reach an host inside a LAN through a VPN connection managed by the LAN gateway (Cisco 1921).
The LAN gateway performs NAT and there was a dedicate nat rule for the host i wanted to reach through VPN.
I couldn't connect to the hos...
We have 3 identical switches configured by someone else and would like to claim some of the Gigabit ports(G1/G2/G3/G4) for use on servers. When we try to change the wiring and configuration, we run in to connectivity issues. Attached is a des...