Wilson:

I am trying to grasp the concept and I have an annoying charactersitic of my learning that I keep asking questions until I understand it.

That's OK. That's what you're supposed to do.

In my scenario in the 3550 switch that was trunked to the 6509, we are saying I only need layer 2 vlans and that if all ports are configured for workstations, that all workstations will "see" the SVI on the 6509 as their default gateway.

Yes, that's pretty much it.

You should understand that there isn't really a layer 2 vlan, per se, or a layer 3 vlan. A vlan is a vlan. It is a virtual LAN. There are different existential components of it, though. There is the layer 2/switched/ethernet component of it, and then there is the layer 3/routed/IP component.

So, depending on a switch's capabilities, you can, if you wanted to, configure the switch to perform both layer 2 and layer 3 functions of the vlan.

In your scenario, you have a 3550 and it has been decided by you that it will perform the layer 2 functions of the vlan. OK, no big deal. You create the vlan in layer 2, name it, and then place different access ports in that vlan. So, any workstation/server/IP host in general that is plugged into that switch port will be placed in the vlan for that port.

Now, since the switch is only performing the layer 2 component, the vlan's ethernet traffic will have to be sent "up" to the next layer switch to be routed so that users on that vlan can communicate with users on other vlans. On the switch performing the layer 3 functions of the vlan is where you will configure the layer 3 interface for that vlan.

The layer 2 interfaces were all the end user interfaces that devices were plugged into, as well as the trunk ports on the layer 2 switch.

The layer 3 interface on the switch that will perform the layer 3 functions of the vlan is called the SVI -- switched virtual interface. It is a layer 3/routed/IP interface with an IP address assigned to it. That interface will have a routing protocol running on it if you want to advertise reachability information for the network (vlan) it belongs to. I think that may be what you wanted to discuss regarding OSPF.

Think of the SVI as the gateway to the rest of the vlans. If traffic wants to leave or enter the vlan, it will pass through the SVI.

And you are correct again, the hosts on the vlan will "see" the SVI, meaning the SVI will be reachable through layer 2 because it's just another host on the vlan. An ethernet broadcast from one host will be "seen" by every other host on that vlan because a vlan is one broadcast domain. It's this ability to communicate over layer 2 with the SVI that allows it to obtain an IP address so that it can start communicating over layer 3.

I could have put as many trunks in series that I wanted and as long as all vlans were trunked, I would get to he SVI on the 6509 from that respective vlan as long as the port was a memeber?

Correct. You can extend the layer 2 domain with trunks over 3, 4, 5, 6 hops and more. So, a user on vlan 10 in switch 1 can communicate over layer 2 with a host in vlan 10 on switch 6.

If all of the above is correct, then I had a problem because I could not get an address from the server, even though ip helper was configured on the 6509 workstation vlan.

I do agree that you have a problem with users in a vlan being able to obtain an IP address, even though you do have the ip helper address configured. That is exactly why I joined in on this thread in the first place and why I asked you to post the configs of the 3500 switches, as well as the 6509.

HTH

Victor

Thank you for the outstanding explanations,

I found out why the DHCP did not work:

The DHCP server was not configured on the downstairs SVI interface as ip-helper.

The only server that was configured, was not up when we were trying to get communication up with the 3550s.

I have a scenario concernig OSPF it you are up for it that happened that same night.

You bet Victor.

Thanks for the great answers.

Richard

Nothing wrong with asking questions :-)

Victor has given a very good explanation of how L2 vlans and L3 vlan interfaces work.

You are right in what you say, if you had 3 or 4 3550 switches all interconnected with trunks then assuming

1) the vlans exist at layer 2 on each switch ie. "sh vlan" shows the vlan existing

2) the vlans are allowed on all the trunks

then yes they would all be able to use the SVI on the 6500 as their default-gateway.

Vlans are layer 2 by definition. So just to clarify

"sh vlan" will show you the L2 vlans on a switch.

"sh ip int brief" would show you the L3 interface(s) on a switch.

As for OSPF bear in mind that it will only run on the 6500 and the WAN router as ll your 3550 switches will not be routing. So OSPF packets will simply use the 3550 switches to pass packets between the 6500 and the WAN router.

Jon

Thanks jon,

Concerning OSPF, would the router and 6509 become OSPF neighbors and exchange LSAs with each other if they were several trunk links apart?

Hi Richard,

Victor is telling you the right things.

Based on your previous post I assumed you already had the 3550 in layer2 mode, this is why I was confused about the behavior of your config.

You wrote the following:

"In the original scenario:

I have a 3500 trunked to a 6509 carying all vlans.

VTP configured and The 3500 is acting as a client."

Sorry for the inconvenience, and please do what Victor suggested you to do.

Thanks:

Istvan