Bridging between VLAN interface and port-channel interface
Here's the overview:
We have a customer who will be accessing managed services located in our data center. I have a 1941 router (with a 4-port ESW) at the customer site and a 3750 stack in our data center that has the managed resources attached. The two are connected via dual wireless bridge links, which on the router are both connected to the physical interfaces. The ESW card will connect into the customer's LAN.
My goal is simply to extend their LAN into a VLAN on the 3750 stack so we don't have to change all the client devices by being able to leave the server addresses where they are. I've tried several methods to bridge this end-to-end but haven't been successful. From what I can tell, the biggest issue is getting bridging established between the VLAN interface and the port-channel interface on the router (which is on the two physical interfaces). For some reason the bridge group can be applied to both the VLAN and PO interfaces but it just doesn't work. I can get from the PO back to the 3750 just fine but when I source it from the VLAN interface the bridge just doesn't work.
I've been looking at dot1q tunneling and L2 tunneling but I'm stumped how to make those work with just the two devices. In other words, how to participate in the tunneled VLAN on the same device terminating the tunnel. I tried bridging over GRE but again, the bridging issue within the router just seems to be the underlying issue.
If anybody has any suggestions, ideas or just pointers to documentation I would be totally grateful!
Re: Bridging between VLAN interface and port-channel interface
Well, I don't have a compelling reason to use L3 at this point. Originally the plan was to use VRF over L3 links for path isolation but the migration path created by changing the server addresses was ugly so I decided to go the L2 way after the router was purchased. I still prefer the VRF method for security reasons so I'll probably keep the router in there. I guess I could just run everything into the ESW card and put it all in the same VLAN. Doesn't get any easier than that.
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...