Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 527
  • Last Modified:

VLAN configuration

I would like to configure VLAN on a dell Power Connect 5424 switch. I appreciate any help as i am first time configuring multiple vlans in a switch. Our normal IP range is 192.168.0.0. I want to provide 8 ports to other VLAN out of the 24 ports but these 8 ports should have access the resources connected to my local range. My genuine question is, how will the both range will communicate if both VLANs have different range of IPs?

Thanks for any help to configure the above scenario effectively.
0
Basheerpt
Asked:
Basheerpt
  • 5
  • 3
1 Solution
 
Rick_O_ShayCommented:
To communicate between VLANs requires an external router with an interface in each VLAN/subnet or Layer 3 capability on the switch.  
0
 
bsohn417Commented:
U can do this on L2 switch u would need router (l3 device) or layer 3 switch. you need to have routing enabled.
0
 
Rick_O_ShayCommented:
I don't think that is a layer 3 switch so you will have to do your routing via an external router.
You would create the new VLAN with those 8 ports in it and use a new IP subnet on it like 192.168.1.0/24.

To get the routing part you would configure another interface on your router in the new subnet at maybe 192.168.1.1
and connect it to a port in the new VLAN. Devices in that VLAN would use 192.168.1.1 as their default gateway.
 
This can only be done if the router has more than one physical routing port. If not you would need to use VLAN tagging on the switch and router if the router will support tagging.

What model router do you have?
0
Become an Android App Developer

Ready to kick start your career in 2018? Learn how to build an Android app in January’s Course of the Month and open the door to new opportunities.

 
BasheerptAuthor Commented:
Rick O Shey,
Thanks for your helpful comment. I have the F/w ASA5510. this is my gateway. Would u please elaborate from how to start configuration in this switch and router? I have 2 switches same kind (5424), having a SAN device to connect on it with separate VLAN. this is the purpose of creating vlan here. Also, need to have failover between switches. Are there any special configuration for failover?

Please suggest and guide me best way to accomplish this task. Thanks again
0
 
Rick_O_ShayCommented:
I don't know the specifics for configuring those particular switches and router.
The basics that you need to do are:
On the router you will need to create a new sub-interface on the physical port with the new subnet IP address. That will be the default gateway for all devices in that new VLAN. Each of the interfaces will need to be put in their respective VLANs using 802.1Q tagging.

On the switch port going to the router you also need to tag it with both VLANs.
If the two switches are connected together and both have the same two VLANs those ports need to be tagged for both VLANs.
On the 8 other ports in the new VLAN they just need to be in that VLAN as untagged.

Just remember that wherever packets from more than one VLAN need to go on a port it needs to be tagged. If only one VLAN is using that port like PCs it needs to be untagged. Some vendors use such terms as trunk port for tagged and access port for untagged.
0
 
Rick_O_ShayCommented:
Sorry, I forgot to mention that on the ASA I believe you need to use the "same-security-traffic permit intra-interface" command to allow internal to internal network communications. It is documented here:

http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a0080734db7.shtml#topic2
0
 
BasheerptAuthor Commented:
Thanks Rick,
Are there any special configuration to have the failover on these switches? I have to uplink cables from another switch, i need to connect these cables to each of these switches. Any Idea on how to configure the failover with or without aggregation? (possible aggregation among 2 ports in different switches?)

Thanks again.
0
 
Rick_O_ShayCommented:
If you are connecting two switches together with multiple ports you need to make them a trunk or aggregation link or whatever they call it on these switches.
Basically you would make them tagged ports with all of the VLANs that need to flow between the switches configured on them.
Check the details of what needs to match on the individual links for the switches you are using.  Usually they have to be the same speed, duplex mode, etc.
It is pretty easy to do if you use LACP and just make the two ports part of the same LAG.
0
 
BasheerptAuthor Commented:
Thanks to all for your valuable comments. It helped me.
0

Featured Post

Hire Technology Freelancers with Gigs

Work with freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely, and get projects done right.

  • 5
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now