Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
373
Views
0
Helpful
4
Replies

VLAN Subinterfaces CAT 6500

admin_2
Level 3
Level 3

‎04-08-2004 02:15 PM - edited ‎03-02-2019 02:54 PM

I have a CAT-6500 with a 6348.

Scenario:

Ports 1-6 on VLAN100

Ports 7-12 on VLAN200

In MLS Card the virtual interface for VLAN100 I have a network in the 215.128.3.0

In MLS Card the virtual interface for VLAN200 I have a network 215.128.4.0

The problem I'm having is that on these 2 VLANS I also have to run a "sub-network" in the 10.0.0.1 block for management purposes.

So what I'm thinking is that on the MLS card on the virtual interface for VLAN100, I assigned it no IP Address and created 2 sub-interfaces

VLAN100.1 with an ip of 215.128.3.1

VLAN100.2 with an ip of 10.0.1.1

On the virtual interface for VLAN200, I assigned it no IP address and created 2 sub-interfaces

VLAN200.1 with an ip of 215.128.4.1

VLAN200.2 with an ip of 10.0.2.1

But I can't get the VLAN100.1 to talk to VLAN200.1 to talk to eachother.

What am I doing wrong, or am I going about this the wrong way.

Labels:
0 Helpful
4 Replies 4

Prashanth Krishnappa
Cisco Employee
Cisco Employee

‎04-09-2004 12:47 AM

The IOS parser might allow you to configure sub-interfaces under VLAN interfaces on a MSFC, but it will not work. Try using secondary addressing instead

0 Helpful

psoltesz
Level 1
Level 1

‎04-09-2004 06:27 AM

Hi Antonio,

I think you want to manage network equipments.

Use VLAN1 or other VLAN for management purpose. The cisco switches use VLAN1 as nativ VLAN. On the switches the physical ports configure to VLAN100 or VLAN200 or any other. So you can securely separate the management VLAN (VLAN1) from other networks.

You can control the access to the management VLAN with ACL.

Bye,

Peter

0 Helpful

Not applicable
In response to psoltesz

‎04-09-2004 12:29 PM

Peter,

Thank you. The reason I was using subinterfaces was that in each vlan there are wireless bridges. The customers attach to us via their radio. Their radio is on a public subnet. But the radio is on a private network. That is what we want to be able to controll.

For example: Customer A's radio IP would be 192.168.1.40 and a gateway of 192.168.1.1. Back at the switch for VLAN100 I created a subinterface VLAN100.192 with an IP of 192.168.1.1. But their router which is attached to their radio would have an IP of 200.45.15.20 with a gateway of 200.45.15.1. Back at the switch on VLAN100 I created a subinterface with an IP of 200.45.15.1

I have tried secondary interfaces and they do work, but it just seems a bit sloppy to me. It seems as if the VLAN subinterfaces would be a bit more secure.

Antonio

0 Helpful

psoltesz
Level 1
Level 1
In response to

‎04-10-2004 04:51 PM

Hello,

On the Cisco APs possible configure VLANs

http://www.cisco.com/en/US/customer/products/hw/wireless/ps430/products_installation_and_configuration_guide_chapter09186a00801486a1.html

with this technic you can setup VLAN for manage and other for a customers.

Bye,

Peter

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card