90% of attacks start with a phish. It’s critical that IT admins and MSSPs have the right security in place to protect their end users from these phishing attacks. Check out our latest feature brief for tips and tricks to keep your employees off a hackers line!
vlan device gateways
If I have a layer 3 switch trunking down 5 vlans to a layer 2 switch.....what should the gateway be of the devices plugged into that layer 2 switch?
What if i'm trunking down those same vlans through two layer 2 switches? Is there any problems with this? Can I trunk through as many layer 2 switches as I want? Any best practices here? Thanks!
What if i'm trunking down those same vlans through two layer 2 switches? Is there any problems with this? Can I trunk through as many layer 2 switches as I want? Any best practices here? Thanks!
Who is Participating?
If you're sending 5 VLANs down a trunk to a layer 2 switch, the gateway for devices plugged into that layer 2 switch would depend on which VLAN their device's port was configured to use. Assuming your VLANs are carrying IP traffic, each VLAN would typically have an IP subnet associated with it (doesn't necessarily have to or could have more than one, but generally speaking will have one). Whatever is routing that subnet would be the appropriate gateway.
Trunking through multiple layer 2 switches is fine, there is an upper limit based on distance and latency, but two is completely fine. You would simply have to have trunk ports in between them.
Trunking through multiple layer 2 switches is fine, there is an upper limit based on distance and latency, but two is completely fine. You would simply have to have trunk ports in between them.
If you trunking is working correctly, your gateway still is the layer 3 switch VLAN interface IP for systems from within each VLAN.
For example, if your vlan5 has vlan interface ip 10.10.10.5 for 10.10.10.0/24 subnet then, your gateway for vlan 5 computers would be 10.10.10.5, no matter where they are as long as they are in the same vlan 5.
For example, if your vlan5 has vlan interface ip 10.10.10.5 for 10.10.10.0/24 subnet then, your gateway for vlan 5 computers would be 10.10.10.5, no matter where they are as long as they are in the same vlan 5.
So long as the IP address is not the same as the layer 3 switch interface, fine. You can use it to remotely manage the layer 2 switch. It would not be the gateway address for other devices, however as the layer 2 switch can't route. The layer 2 switch would need to have a default route pointing to the layer 3 switch interface so that it could reach and be reached by other networks.
I would have thought so too. I had the layer 3 switch as the gateway for those devices, however any time I was on any of the other vlans other than the management vlan, I could not go anywhere.
I called Dell this morning and they looked at all my routing, gateways, etc. They said if the vlan has an interface IP, it should be the gateway of those devices. I made that interface ip my gateway and that solved it.
Now, I know making the layer 3 switch your gateway works sometimes, but it seems when I was on this 3rd switch in the chain, it wasn't.
The layer 2 switch doesn't need to route in this case.
So i'm not really sure what the deal is.
I called Dell this morning and they looked at all my routing, gateways, etc. They said if the vlan has an interface IP, it should be the gateway of those devices. I made that interface ip my gateway and that solved it.
Now, I know making the layer 3 switch your gateway works sometimes, but it seems when I was on this 3rd switch in the chain, it wasn't.
The layer 2 switch doesn't need to route in this case.
So i'm not really sure what the deal is.
Question has a verified solution.
Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.
Have a better answer? Share it in a comment.
All Courses
From novice to tech pro — start learning today.
The question is the why wouldn't the switches in between relay the arp request for MAC?
anyway, glad you got it resolved.