Advertisement

02.02.2008 at 08:12AM PST, ID: 23132020
[x]
Attachment Details
[x]
The Solution Rating System

With so many solutions, how can you tell which solutions are most likely to help you and which ones are not? To provide you with a tool to use, we rate our solutions based on various elements that most accurately determine if a solution is a quality solution. To explain what factors affect the solution rating, here are the elements we take into consideration when formulating our solution rating.

  • The Grade of the Solution
  • The Zone Rank of the Expert Providing the Solution
  • The Number of Author and Expert Comments
  • The Number of Experts Contributing
  • The Feedback of the Community

Your Input Matters
Because of the way the system is set up, the most important variable in this equation is you. As a member of Experts Exchange, you are able to cast your vote on the quality of the solutions in regard to how complete, accurate, helpful and easy to understand each solution is. When you provide your feedback, each rating is adjusted accordingly. So, if you see a solution that has a poor rating that you think is a good solution, let us know by rating it. As you do, the rating will be adjusted and will become more accurate for other members of our site.

If you have any suggestions that you would like to make for our rating system, please ask a question in the Suggestions Zone of Community Support.

Thank you!
7.8

Multiple Site VLAN Connectivity help

Zones: Network Design & Methodology, Network Routers, Network Switches & Hubs
Tags: Cisco, Catalyst 3550 L3 Switch
I have 4 cataylst 3550 switches with an L3 IOS recently installed.

These 4 switches are to be used at different sites connected via Telewest National Ethernet circuits.

I understand how to configure this by configuring L3 ports; however, I want to use VLANs and I am not sure how to use VLANs in this setup. I understand the use of VLANs with L2 switches using an L3 switch or Router to route between the VLANs.

Two of the 3550s will be located at HQ and one at each of the other two sites, example:

-      HQ1 and HQ2 connected directly to one another.
-      Office1 connected directly to HQ1
-      Office2 connected directly to HQ2

I only want one port from each switch used to interconnect them together, the other ports will be in the same VLAN to connect to the local LAN.

The main point I do not understand is how can you create a VLAN between two point to point links (switch to switch) without assigning an IP address to the interfaces? Also how routing would work as I am unsure if I can use EIGRP in a pure VLAN environment.

If you could provide a high level list of what I need to do to create this environment it would be much appreciated. I can provide more info if required.

Thanks.
Start your free trial to view this solution
Question Stats
Zone: Networking
Question Asked By: Nael_Shahid
Solution Provided By: jonmckinlay
Participating Experts: 2
Solution Grade: A
Views: 4
Translate:
Loading Advertisement...
02.02.2008 at 09:37AM PST, ID: 20805127
jonmckinlay:

All comments and solutions are available to Premium Service Members only.

Start your 7 day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
02.02.2008 at 09:38AM PST, ID: 20805138
jonmckinlay:

All comments and solutions are available to Premium Service Members only.

Start your 7 day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
02.02.2008 at 11:40AM PST, ID: 20805575
Nael_Shahid:

All comments and solutions are available to Premium Service Members only.

Start your 7 day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
02.02.2008 at 12:13PM PST, ID: 20805720
Nael_Shahid:

All comments and solutions are available to Premium Service Members only.

Start your 7 day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
02.02.2008 at 12:59PM PST, ID: 20805893

Rank: Genius

donjohnston:

All comments and solutions are available to Premium Service Members only.

Start your 7 day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
02.03.2008 at 06:29AM PST, ID: 20808735
jonmckinlay:

All comments and solutions are available to Premium Service Members only.

Start your 7 day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
02.04.2008 at 11:28AM PST, ID: 20817172
Nael_Shahid:

All comments and solutions are available to Premium Service Members only.

Start your 7 day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
 
Loading Advertisement...
Microsoft
  • Internet Protocols
  • Applications
  • Development
  • OS
  • Hardware
  • Windows Security
Apple
  • Operating Systems
  • Hardware
  • Programming
  • Networking
  • Software
Internet
  • Search Engines
  • File Sharing
  • WebTrends / Stats
  • Spy / Ad Blockers
  • Web Browsers
  • New Net Users
  • Web Development
  • Chat / IM
  • Anti Spam
  • Web Servers
  • Anti-Virus
  • Email Clients
Gamers
  • Tips
  • Online / MMORPG
  • Puzzle
  • Emulators
  • Action / Adventure
  • Role Playing
  • Consoles
  • Game Programming
  • Strategy
  • Sports
  • Misc
  • Computer Games
Digital Living
  • Hardware
  • New Net Users
  • New Users
  • Software
  • Digital Music
  • Gaming World
  • Home Security
  • Apple
  • Networking Hardware
Virus & Spyware
  • Vulnerabilities
  • IDS
  • Encryption
  • Anti-Virus
  • Operating Systems Security
  • Software Firewalls
  • WebApplications
  • Cell Phones
  • Operating Systems
  • Internet
  • Hardware Firewalls
Hardware
  • Handhelds / PDAs
  • Displays / Monitors
  • Components
  • Networking Hardware
  • Peripherals
  • Laptops/Notebooks
  • Storage
  • Servers
  • Desktops
  • New Users
  • Misc
  • Apple
Software
  • System Utilities
  • Industry Specific
  • Network Management
  • Photos / Graphics
  • Page Layout
  • VMWare
  • Misc
  • Web Development
  • OS
  • CYGWIN
  • Voice Recognition
  • Message Queue
  • Quality Assurance
  • Security
  • Firewalls
  • MultiMedia Applications
  • Development
  • Database
  • Office / Productivity
  • Business Management
  • OS/2 Apps
  • Server Software
  • Internet / Email
ITPro
  • OS
  • Storage
  • Encryption
  • Operating Systems Security
  • Apple Hardware
  • Laptops & Notebooks
  • Servers
  • Networking Hardware
  • Peripherals
  • Devices
  • Displays / Monitors
  • WebTrends / Stats
  • Search Engines
  • Firewalls
  • WebApplications
  • IDS
  • Vulnerabilities
  • Email Clients
  • File Sharing
  • Spy / Ad Blockers
  • Web Browsers
  • Web Servers
  • Networking
  • Anti-Virus
  • Chat / IM
  • Anti Spam
Developer
  • Web Servers
  • Web Browsers
  • Game Programming
  • Dev Tools
  • Industry Specific
  • Office / Productivity
  • Database
  • CYGWIN
  • Web Development
  • Search Engines
  • File Sharing
  • WebTrends / Stats
  • Programming
  • Content Management
  • Application Servers
  • Protocols
Storage
  • Removable Backup Media
  • Storage Technology
  • Servers
  • Grid
  • Remote Access
  • Backup / Restore
  • Misc
  • Hard Drives
OS
  • Miscellaneous
  • Security
  • Development
  • Linux
  • VMWare
  • MainFrame OS
  • Unix
  • Apple
  • OS / 2
  • AS / 400
  • BeOS
  • Microsoft
  • VMS / OpenVMS
Database
  • Oracle
  • Miscellaneous
  • MySQL
  • Software
  • Sybase
  • Contact Management
  • PostgreSQL
  • Data Manipulation
  • Clarion
  • InterSystems Cache
  • Siebel
  • MUMPS
  • OLAP
  • SQLBase
  • SAS
  • GIS & GPS
  • 4GL
  • Berkeley DB
  • DB2
  • Informix
  • Interbase / Firebird
  • FoxPro
  • Reporting
  • LDAP
  • Filemaker Pro
  • MS SQL Server
  • dBase
  • MS Access
Security
  • Misc
  • Web Browsers
  • Software Firewalls
  • Operating Systems Security
  • File Sharing
  • Spy / Ad Blockers
  • Vulnerabilities
  • WebApplications
  • IDS
  • Anti-Virus
  • Encryption
  • Anti Spam
  • Email Clients
  • VPN
  • Chat / IM
Programming
  • Editors IDEs
  • Installation
  • Handhelds / PDAs
  • Multimedia Programming
  • System / Kernel
  • Algorithms
  • Game
  • Signal Processing
  • Project Management
  • Open Source
  • Database
  • Misc
  • Languages
  • Processor Platforms
  • Theory
Web Development
  • Scripting
  • Blogs
  • Web Servers
  • Software
  • Search Engines
  • Web Graphics
  • Images
  • Internet Marketing
  • Images and Photos
  • Components
  • Document Imaging
  • Web Languages/Standards
  • Illustration
  • WebApplications
  • Fonts
  • WebTrends / Stats
  • Authoring
  • Digital Camera Software
  • Miscellaneous
Networking
  • Protocols
  • Apple Networking
  • Network Management
  • Message Queue
  • Application Servers
  • Content Management
  • File Servers
  • Email Servers
  • Misc
  • Java Editors & IDEs
  • Wireless
  • Networking Hardware
  • Backup / Restore
  • System Utilities
  • ISPs & Hosting
  • Web Servers
  • Storage Technology
  • Removable Backup Media
  • Servers
  • Broadband
  • Grid
  • OS / 2
  • Novell Netware
  • Unix Networking
  • Windows Networking
  • Security
  • Telecommunications
  • Operating Systems
  • Linux Networking
Other
  • Community Advisor
  • Lounge
  • Community Support
  • New Net Users
  • Philosophy / Religion
  • Math / Science
  • Miscellaneous
  • URLs
  • Expert Lounge
  • Politics
  • Puzzles / Riddles
Community Support
  • Suggestions
  • New to EE
  • New Topics
  • Community Advisor
  • CleanUp
  • Announcements
  • General
  • Feedback
  • Input
  • EE Bugs
 
02.02.2008 at 09:37AM PST, ID: 20805127
jonmckinlay:
are you planning on using 1 vlan per site?  

You can use EIGRP, what you would need to do is to have 1 (or more) vlans per site, then 4 point-point subnets (30 bit masks) to use for the routed interfaces. The important thing to note is that the vlans do not matter over the layer3 links, what you will have is 1 vlan per subnet.

example, I have used different vlan for each site just to illustrate point, I'm also assuming you have other switches downstream from the layer 3 ones.

HQ1
int Vlan 10
  ip add 10.10.0.254 255.255.255.0
int f0/3
  desc Local Switches
int f0/1
  desc WAN Circuit to HQ2
  ip add 10.0.0.1 255.255.255.252
int f0/2
  desc WAN Circuit to Office1
  ip add 10.0.0.5 255.255.255.252
router eigrp 1
  network 10.0.0.0
  no auto-summary

HQ1
int Vlan 11
  ip add 10.11.0.254 255.255.255.0
int f0/3
  desc Local Switches
int f0/1
  desc WAN Circuit to HQ1
  ip add 10.0.0.2 255.255.255.252
int f0/2
  desc WAN Circuit to Office2
  ip add 10.0.0.7 255.255.255.252
router eigrp 1
  network 10.0.0.0
  no auto-summary

Office1
int Vlan 12
  ip add 10.12.0.254 255.255.255.0
int f0/3
  desc Local Switches
int f0/1
  desc WAN Circuit to HQ1
  ip add 10.0.0.6 255.255.255.252
router eigrp 1
  network 10.0.0.0
  no auto-summary

Office2
int Vlan 14
  ip add 10.14.0.254 255.255.255.0
int f0/3
  desc Local Switches
int f0/1
  desc WAN Circuit to HQ2
  ip add 10.0.0.8 255.255.255.252
router eigrp 1
  network 10.0.0.0
  no auto-summary


Hope this helps.
Accepted Solution
 
02.02.2008 at 09:38AM PST, ID: 20805138
jonmckinlay:
for resilliace you could also complete the WAN with a link from office 1 to office 2.  This way if HQ1-2 goes down you don't have your network split in 2!!
 
02.02.2008 at 11:40AM PST, ID: 20805575
Nael_Shahid:
I am planning 1 vlan per site.

Thanks for your response. I have diagramed a network with this to help me get my head around it and I will get back to you asap.

One quick question, can you route from a vlan (L2 interface) to a L3 interface (subnet) on the same switch?

Thanks again...
 
02.02.2008 at 12:13PM PST, ID: 20805720
Nael_Shahid:
Hi

Forget the above question. I am sure you can route from a vlan to an L3 subnet otherwise you wouldn't have configured the network this way.

On your example you have F0/3 connected to local switches. I assume F0/3 needs to placed in the corresponding vlan? ie:
-------------------------------
HQ1
int f0/3
switchport access vlan 10
--------------------------------
Could I have multipul ports (connected to other local switches) in the same vlan with them all in the same subnet? IE:
--------------------------------
HQ1
int range f0/4 - 8
switchport access vlan 10
--------------------------------
Ports F0/3 to 0/8 in vlan 10 (10.10.0.0/24) with a gateway of 10.10.0.254??
 
02.02.2008 at 12:59PM PST, ID: 20805893

Rank: Genius

donjohnston:
Since each site will have it's own VLAN, there's no need to transport VLANs over the point-to-point links. I would suggest layer-3 interfaces for site-to-site connections and layer-2 interfaces within each site.

For example:
1:
2:
3:
4:
5:
6:
7:
8:
9:
10:
11:
12:
13:
14:
15:
16:
17:
18:
19:
20:
21:
22:
23:
24:
25:
26:
27:
28:
29:
30:
31:
32:
33:
34:
35:
36:
37:
38:
39:
40:
41:
42:
43:
44:
45:
46:
47:
48:
49:
50:
51:
52:
53:
54:
55:
56:
57:
58:
59:
60:
61:
62:
63:
64:
65:
66:
67:

HQ1
vlan 10
interface f0/1
 description link to office 1
 no switchport
 ip address 192.168.1.1 255.255.255.252
interface-range f0/2 -24
 switchport
 switchport mode access
 switchport access vlan 10
interface vlan 10
 ip address 192.168.10.1 255.255.255.0
router eigrp 1
 network 192.168.1.0
 network 192.168.10.0
 no auto-summary
 
HQ2
vlan 10
interface f0/1
 description link to office 2
 no switchport
 ip address 192.168.1.5 255.255.255.252
interface-range f0/2 -24
 switchport
 switchport mode access
 switchport access vlan 10
interface vlan 10
 ip address 192.168.10.2 255.255.255.0
router eigrp 1
 network 192.168.1.0
 network 192.168.10.0
 no auto-summary
 
Office1
vlan 100
interface f0/1
 description link to HQ 1
 no switchport
 ip address 192.168.1.2 255.255.255.252
interface-range f0/2 -24
 switchport
 switchport mode access
 switchport access vlan 10
interface vlan 100
 ip address 192.168.100.1 255.255.255.0
router eigrp 1
 network 192.168.1.0
 network 192.168.100.0
 no auto-summary
 
Office2
vlan 200
interface f0/1
 description link to HQ 2
 no switchport
 ip address 192.168.1.6 255.255.255.252
interface-range f0/2 -24
 switchport
 switchport mode access
 switchport access vlan 200
interface vlan 200
 ip address 192.168.200.1 255.255.255.0
router eigrp 1
 network 192.168.1.0
 network 192.168.200.0
 no auto-summary
Open in New Window
 
02.03.2008 at 06:29AM PST, ID: 20808735
jonmckinlay:
Hi Nael,

Yes you are correct about the switchport access vlan xx on the local interfaces, sorry I missed that out!
You can also have multiple ports in the same vlan as described in the int range command above, if the 3550's were gigabit ports you may want to connect any servers you have local on site directly into the 3550 and then other switches for the user access on the other gigabit ports.

If you are adding other cisco switches you may want to do the interfaces between the switches as trunk ports, just incase you need to add additional vlans in the future.

hope this clarifies.
 
02.04.2008 at 11:28AM PST, ID: 20817172
Nael_Shahid:
Many thanks for your help jonmckinlay; this is exactly what I needed.

Donjohnston, thanks for you input also but jonmckinlay answered first so it would be unfair not to give him the points.

I'm sure I'll be back for more help soon as I am rather new to Cisco.

Thanks again, both of you.
 
 
20080236-EE-VQP-29 / EE_QW_2_20070628