Solved

Routing problem on FSM7328S

Posted on 2007-03-23
2
2,775 Views
Last Modified: 2008-01-09
This is the first time I'm configuring a L3 switch, so please excuse if this might be a stupid question for you:

I'm using 2 stacked Netgear FSM7328S switches. I've configured 3 different VLANs:
VLAN ID 10   192.168.1.0 / 24
VLAN ID 20   192.168.2.0 / 24
VLAN ID 30   192.168.3.0 / 24
Routing between these VLANs works fine.

To enable routing to an external network 10.1.2.0 / 24 and to the Internet I did configure port 1 as interface 192.168.5.254 / 24 on the switch. In addition I did configure a Netgear VPN router (FVX538) with LAN IPs 192.168.5.253 /24 and 10.1.2.254 / 24 and I did use a patch cable for connection between the VPN router and port 1 on the switch.

I've added the following default route on the FSM7328S stack:
Network address 0.0.0.0, SM 0.0.0.0, Interface: Port 1, Next Hop IP 192.168.5.253
I've added the following route on the VPN router FVX538:
Network address 192.168.0.0, SM 255.255.0.0, Interface: LAN, Gateway IP 192.168.5.254

When I connect a computer to VLAN 20 (IP: 192.168.2.50) it will be able to ping successfully addresses in the Internet as well in the 10.2.2.0 / 24 subnet. In this direction all seems to work fine. But I'm neither able to ping IP addresses in the VLANs nor the gateway IP 192.168.5.254 on the FSM7328S stack from computers in the 10.2.2.0 / 24 subnet.

If I ping to 192.168.2.254 for example (this is the routing interface in VLAN 20) from IP 10.1.2.51, then my computer in the VLAN will lose connection to the switch. After some minutes connection will be restored. I can restore connection manually if I unplug the cable of this computer on the FSM7328S and re-connect it into another switch port.

Does anybody know what might be the reason for this behaviour?

Thanks in advance!
ghana
0
Comment
Question by:ghana
2 Comments
 
LVL 11

Accepted Solution

by:
ghana earned 0 total points
ID: 18785647
OK, I found the reason myself:It was caused by Spanning Tree Protocol and another switch.

In the log of the switch stack I found the following entries, that appeared every 2 seconds:
0.0.0.0-1 UNKN[280142736]: dot1s_sm.c(1351) 43042 %% dot1sPrxMachine(): Rcvd BPDU in Discard State on port 1

The subnet 10.1.2.0 / 24 does contain another single FSM7328s switch. This switch tried to communicate with the switch stack via spanning tree protocol. When I disabled the spanning tree on the single switch in subnet 10.1.2.0. / 24 the problem was solved. Now communication in both directions does work as expected.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Interface Vlan and No Switchport 7 57
stacking Catalyst 3650 20 36
esx multi vlans 3 63
Ping Through ASA Firewall 6 25
The worst thing when starting a new job is when the previous Network Administrator left behind no documentation. How do you get into the devices? If you've been in this situation or just accidently mistyped your password, this article will hopefully…
I see many questions here on Experts Exchange regarding switch port configurations and trunks. This article is meant for beginners in the subject to help to get basic knowledge about Virtual Local Area Network (VLAN (http://en.wikipedia.org/wiki/Vir…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now