You will see this kind of configuration very often on switches where the edge device is an IP Phone.
During the initial connection, the IP Phone will negotiate its values with the TFTP and DHCP server and form a trunk.
The IP Phone config will indicate its native Vlan and it will forward the native Vlan information from the switch onto the device connected to the phone which is usually a workstation.
Therefore, the workstation will use Vlan21 as the access vlan and the phone will use another Vlan per its configuration. This way you have separate Vlans for voice and data.
If you didn't have a phone connected to this port, the workstation will only understand the native vlan information, on this case Vlan21. If you have a trunk port without a native Vlan information, the workstation will assume that is connected to Vlan1 which is the default native Vlan on a trunk port.
Ill tell you what this switchport is being used for.
It supports a connection to a MAN circuit -- a TLS circuit -- to a hub site. In other words, there are 2 "spokes," each with their dedicated connections into the TLS multipoint-to-multipoint cloud. Coming out of the cloud and into the "hub" is one leg with aggregate traffic from both remote spokes.
furthermore, the "hub" is a 6509 switch port that is configured as a trunk and is taking the traffic and trunking it once again to another switch (6513), which is the true destination of the traffic. In other words, instead of just connecting the TLS circuit directly into the 6513 (the true destination), they didnt want to 'waste' a dedicated fiber going up a riser, so they trunked up the traffic with other vlans on an already-existing fiber riser between the 6509 and the 6513.
The only problem is that the traffic coming from one of the sites is VoIP traffic and its getting killed on that shared riser. Now they want to go nuts and implement QoS over the fiber riser/trunk.
Am I making sense?
Check out the 2 attachments.
Now, given what I just told you, why the hell is that port at the DR site (3560) configured the way it is??? LOL
Vlan 21 represents your Metro-Vlan given by the provider.
Your edge switches are connected to the provider's switches which are configured for dot1q-tunneling and they only accept packets from you if they are tagged with Vlan 21 (that's the metro-tag). This same switch is servicing other customers and each customer is assigned a different metro-tag. Yours happen to be 21.
In your first post, "switchport access vlan 21" command is ignored, since trunk is established.
When trunk is established, all packets are being tagged with 802.1Q.
If for some reason you don't want packets from a certain VLAN to be tagged with 802.1Q, you would use "switchport trunk native vlan". In your case Command "switchport trunk native vlan 21" sends all the packets from VLAN 21 as-is.
Trunks are made to differentiate traffic in different VLANs, so only one VLAN can be untagged at the time.
In your particular case 3560 will be able to communicate with WAN router, but not with 6509 or 6513.
To make it work, you would have to configure subinterface with encapsulation dot1Q on your wan router, and remove native VLAN configuration on your 3560.
Or you would have to type "switchport trunk native vlan 21" on your 6509 port.
But because it's CATOS the command will look different.
Question We run asr9001 with XR 6.1.3, and we have a very long delay to
login w/ SSH 1 or 2 to the device compare to IOS device. After
investigation, the there is 1s delay between the client KEXDH_INIT and
the server (XR) KEXDH_REPLY. After debug ssh serv...
Introduction The purpose of this document is to demonstrate the Open
Shortest Path First (OSPF) behavior when the V-bit (Virtual-link bit) is
present in a non-backbone area. The V-bit is signaled in Type-1 LSA only
if the router is the endpoint of one or ...
Hi, I am seeing quite a few issues with patch install and wanted to
share my experience and workaround to this. Login to admin via CLI, then
access root with the “shell” command Issue “df –h” and you’ll probably
see the following directory full or nearly ...