Solved

My first VLAN - newbie need walkthrough creating a VLAN backbone (Procurve 2824)

Posted on 2006-06-09
9
896 Views
Last Modified: 2008-01-09
Hello there,

I need some help creating a backbone between two 'companies' on their own subnets. Each company has a Procurve 2824 and I want to create a VLAN on port 24 to link the two.

Company A
------------------
10.10.1.0/255.255.255.0
switchA = 10.10.1.120

Company B
-----------------
192.9.200.0/255.255.255.0
switchB = 192.9.200.210

I have created a VLAN called BACKBONE on each switchA and switchB port 24.

* I am unsure of the correct configuration for this ... as it stands Port 24 on both sides is 'untagged' (I think this is the option to choose if you are only going to have one VLAN on this port but I might be wrong)

* (Just so you know, I kind of know my way around the CLI manager, via TELNET). I think I should be assigning IP addresses to the Port on either side but I am not sure what IP's to choose from ... if I need to choose something from their respective subnets, or create a 10.10.2.0 subnet ...

* I get a little confused with the IP Routing setting as well ... do I need it on ? All my clients use our ISA Servers as the gateway ... I guess once the above is set up, I would add static routing to the ISA. Again, I kind of know the basics, but am unsure of the best practice.

If anyone can walk me through this ... I would appreciate it. I think it's actually very, very easy if you do this quite a bit ... it's just linking up two networks on one port, so that broadcasts don't go across both networks.

That's it ... feel free to ask any questions you may have ... and try to take it a bit easy on me ... maybe a bit at a time !

Thanks,

S.S.



0
Comment
Question by:SpencerSteel
  • 5
  • 4
9 Comments
 
LVL 28

Expert Comment

by:mikebernhardt
ID: 16872056
I don't know anything about Procurves. But you will need to turn on routing for sure.

You haven't said whether these companies have other connectivity such as to the internet. That makes a big difference and it's a lot more complicated. If it's just a matter of connecting the 2 "companies" together, then what matters is what vlan number was used for the 2 LANs. Every vlan has a unique number. If you just used the default originally then they will be the same.

If it was the same then you'll need to set up the new vlan with a 3rd IP subnet as you said and also set up routing on both switches. Each switch needs a route pointing to the other end of the new link that tells it about the other company's subnet.
0
 

Author Comment

by:SpencerSteel
ID: 16883653
Hello Mike,

I think I better explain myself better.

COMPANYA is on 10.10.1.0 and has it's own ISA Server gateway to the outside world. It is a fully functioning domain in it's own right. Think of a vanilla text-box Microsoft company setup!

as is COMPANYB - virtually identical setup - ISA Server gateway to the internet and single domain.

I want to create a persistent backbone between these two companies (they are basically in the same physical location, give an office floor or two!) via the Procurve switches, rather than going out the ISA gateways and back in. The switches for both companys are in the same server room !

I hope this clears up my issue a little more. I basically need to create a persistant link on a VLAN called, say, A2B on port 24 of the switches. I don't want broadcasts, DHCP requests etc to end up being transmitted to both companies.

S.S.
0
 
LVL 28

Accepted Solution

by:
mikebernhardt earned 500 total points
ID: 16895467
OK, that's fine. So the simplest thing is then to create that extra vlan, give it a different IP subnet, and configure a route in both switches pointing to the other side. For example:

Company A
LAN: 10.10.1.0/255.255.255.0
        switchA = 10.10.1.120

Backbone vlan: 192.168.100.0 255.255.255.0
       switchA = 192.168.100.1

Add a static route: 192.9.200.0/255.255.255.0 with next hop of 192.168.100.2

Company B
LAN: 192.9.200.0/255.255.255.0
        switchA = 192.9.200.210

Backbone vlan: 192.168.100.0 255.255.255.0
       switchA = 192.168.100.2

Add a static route: 10.10.1.0/255.255.255.0 with next hop of 192.168.100.1

Not sure how you do the above, but looking at the specs, it certainly seems possible.
0
 
LVL 28

Expert Comment

by:mikebernhardt
ID: 16895482
Basically what you're doing is, you have to tell each of the switches about what's on the other side of the link you're creating. Each switch (or in this particualr application, each router) only knows about what's directly connected to it untill you tell it about what's beyond the next hop.
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 

Author Comment

by:SpencerSteel
ID: 16901131
Excellent Mike - sorry for delay in replying - not helped by the Other Side Of The Pond syndrome, I suspect.

I will have a look at this later today - it's pretty much as I thought to be honest. It's just nice to have someone onside who I can talk to.

I'll report back later ...

Cheers !

S.S.
0
 
LVL 28

Expert Comment

by:mikebernhardt
ID: 16904028
Have a Bass for me (assuming you're in England)!
0
 

Author Comment

by:SpencerSteel
ID: 16969651
Afternoon Mike ...

Finally got back to looking at this today ...

I've pretty much done what you said ... i've damn sure I have created a VLAN on port 24 connecting the two switches. The two IP addresses are COMPANY A: 10.10.2.1/24 and COMPANY B: 10.10.2.2/24

Each switch can ping BOTH the 10.10.2.0 addresses ... so they are connected.

From companyA, I added a static route *to my laptop only* and I can ping the 10.10.2.1 ... but not 10.10.2.2 .. the hopping over either fails, or PING isn't working across the switch.

Would you say I need to add the routing tables to the switches themselves ?? Not even sure if this is possible ...

Sorry it's taken the best part of a three weeks - i appreciate it you've lost all track of this thread.

Cheers,

S.S.


0
 

Author Comment

by:SpencerSteel
ID: 16969666
... oh, i've just found how to add Static routes to the switch.

I'll be back !

S.S.
0
 

Author Comment

by:SpencerSteel
ID: 16970096
OK .. some success ! I finally have two workstations on either side pinging each other (providing they have static routes in their local routing tables)

I thought it might be easy to add routes to the ISA Server which the clients use as clients - I should have known better ! Nothing is that simple ...

http://groups.google.com/group/microsoft.public.windows.server.sbs/browse_thread/thread/9c748f7fdb05a5c/5b79c62647caab8%235b79c62647caab8

So, looks like I have to add -p routes to all static computers (servers!) but can do something whizzy with the DHCP for the normal clients.

I'm going to assign you the points now, as I have managed to do what I set out to do.

It's far from idea right now - but these are for other EE questions !

So thank you for all your advice.

My head hurts !

S.S.
0

Featured Post

What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

Join & Write a Comment

We've been using the Cisco/Linksys RV042 for years as: - an internet Gateway - a site-to-site VPN device - a leased line site-to-site subnet-to-subnet interface (And, here I'm assuming that any RV0xx behaves the same way as an RV042.  So that's …
Getting hacked is no longer a matter or "if you get hacked" — the 2016 cyber threat landscape is now titled "when you get hacked." When it happens — will you be proactive, or reactive?
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now