Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1211
Views
0
Helpful
5
Replies

Configuring routing for a 3rd party managed LAN exstension

PIKEYMIKEY
Level 1
Level 1

‎06-05-2019 07:08 AM

Hi,

 

I am having brain fog and wanted to know what is the best way to setup routing between two sites that are connected via a 3rd party managed LAN extension.

The 3rd party is configuring all the site to site connectivity through their NTE and will plug straight into the 3850 on each side.

I will need to do the routing.

 

I have created layer 3 vlans which are similar to the current site, what is the additional config that is needed? 

 

Labels:
0 Helpful
5 Replies 5

balaji.bandi
Hall of Fame
Hall of Fame

‎06-05-2019 07:14 AM

If you have configured L3 interface SVI already.

 

for secure connection

you can run  ipsec  between sites or to main site.

Create Access control protect between the links

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

PIKEYMIKEY
Level 1
Level 1
In response to balaji.bandi

‎06-05-2019 07:22 AM

Ok so the security if needed can be added at a later date, but the SVI's should be enough to talk to each site?

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to PIKEYMIKEY

‎06-05-2019 08:50 AM

on high level YES, again we can only suggest based on the information you provided.

 

if you looking more help, good to have HLD diagram so we can suggest in better manner.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

PIKEYMIKEY
Level 1
Level 1
In response to balaji.bandi

‎06-05-2019 11:45 PM

Hi, I've drawn out the diagram. 

As mentioned the ISP with be doing the link from network one to two I will need to do the routing. 

I am thinking I will need to create a new vlan interface on each side such as vlan 500 give it an new ip/subnet of 192.168.100.1/30 and then attach that vlan 500 to the access port linking the LAN extension?

 

 

Preview file
12912 KB
0 Helpful

PIKEYMIKEY
Level 1
Level 1
In response to PIKEYMIKEY

‎06-06-2019 01:22 AM

Actually after reviewing the config the core 1 switch connects directly to the FirePOWER and the 3rd Party router such as the image attached.

the int it connects on is gi1/016 and its config is shown. Just a generic access port on vlan 902 nothing else using it.

What I would like to clarify is what is needed for the routing between the sites?

As mentioned the 3rd party is providing a managed LAN extension.

Preview file
161 KB
0 Helpful
Customers Also Viewed These Support Documents