Solved

VTP Across Redundant WAN Links?

Posted on 2010-09-22
9
749 Views
Last Modified: 2012-05-10
Hi all,

I have a VTP domain implemented and functional at our company HQ.  We have a small satellite office that is connected by two WAN links.  First, there is a 45 Mbps MPLS/VPN connection over the internet as the primary method of communication.  Then there is a 9 Mbps Multilink Point to Point connection as a backup method of communication via a separate provider.

Up until now, there has been no need for VLANs at the satellite office but I have been tasked with not only extending VTP to the satellite office, but ensuring that there will be functionality regardless of which link is being used.

This is something I've never done before so I was hoping someone here could lead me in the right direction.  I've read various documents but I was afraid the redundancy and difference in link types complicates things.

Thanks in advance for any input that you can provide!
0
Comment
Question by:Z-P-M
  • 5
  • 4
9 Comments
 
LVL 17

Accepted Solution

by:
Kvistofta earned 500 total points
ID: 33742297
If the MPLS/WAN is a routed connection (different subnets at each site) then you cant run VTP since it is a l2-protocol. Your solution then is to ask the WAN-provider to un multiple vrf:s. However, if the MPLS/WAN is a l2-connection (they can be!) then you need to make sure that the wan-provider transits untagged packets aswell as this is required to make VTP work.

/Kvistofta
0
 

Author Comment

by:Z-P-M
ID: 33745221
Ah, makes sense.  Any advice on the point-to-point link?
0
 
LVL 17

Expert Comment

by:Kvistofta
ID: 33745922
What do you mean? I dont understand your question...

/Kvistofta
0
 

Author Comment

by:Z-P-M
ID: 33746071
I have contacted the ISP regarding the VTP communication over the MPLS link.  But what about the point-to-point link where I control the router on each end?  What can I do over that connection to enable VTP communication over that link?
0
Better Security Awareness With Threat Intelligence

See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

 
LVL 17

Expert Comment

by:Kvistofta
ID: 33746136
Is the p2p-link layer2? I guess not, because it is usually not (even if it can be!). That is, do you have the same IP subnet at both sides of the link? The fact that you say "routes" indicates that it is a routed l3-connection and then there is no way for you to run VTP.

/Kvistofta
0
 

Author Comment

by:Z-P-M
ID: 33746541
Oh, okay.  I heard there was a way to do it by creating sub-interfaces on the routers and a bridge group, but I just don't quite understand all the specifics.
0
 
LVL 17

Assisted Solution

by:Kvistofta
Kvistofta earned 500 total points
ID: 33746853
Yes, but that requires you to re-do your entire network topology since you will build a l2-link to connect the sites. It is both ugly and tricky. Another way to do it is to tunnel everything over l2tpv3 but it is also quite tricky and most of the times its easier to rebuild the link to a l2-connection provided by a mpls-carrier.

If it is only for VTP, that is to make it easier for you to create vlans in many switches I would recommend a management tool (like Kiwi Cat Tools) that can provision configuration changes for you.

/Kvistofta
0
 

Author Comment

by:Z-P-M
ID: 33747631
Awesome, thanks for all of the information!
0
 

Author Closing Comment

by:Z-P-M
ID: 33747652
This answered my questions regarding VTP.
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

Suggested Solutions

Security is one of the biggest concerns when moving and migrating your data from your on-premise location to the Public Cloud.  Where is your data? Who can access it? Will it be safe from accidental deletion?  All of these questions and more are imp…
Data center, now-a-days, is referred as the home of all the advanced technologies. In-fact, most of the businesses are now establishing their entire organizational structure around the IT capabilities.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now