Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
249
Views
5
Helpful
1
Replies

layer 2 communication

suthomas1
Level 6
Level 6

‎04-01-2013 07:23 PM - edited ‎03-04-2019 07:27 PM

Hi,

We have a 3750 as core switch. It has following  vlans:- VLAN21 - 10.58.21.1/24 , VLAN41 - 10.58.41.1/24 , VLAN100 -  192.168.100.1/24 , VLAN201-172.16.1.0/30

All the servers in VLAN21 and VLAN41 are accessed by services and users from VLAN100 and within the same vlans.

Now, there is a firewall(non-cisco) which is to be placed logically between the users and the servers.

The server layer 3 vlans - VLAN21 - 10.58.21.1/24  and VLAN41 -  10.58.41.1/24 will be deleted from the 3750 and created on the firewall.

Route from 3750 is added for these; ip route 10.58.21.0 255.255.255.0 172.16.1.2 and

ip route 10.58.41.0 255.255.255.0 172.16.1.2

( 172.16.1.2 is the ip on the firewall interface connected to the 3750 , used for routing traffic across )

After  this is done, we face a strange problem. Traffic within vlan 21 , eg.  10.58.21.10 and 10.58.21.20 are not able to communicate for application  processing. The ping between these two is fine.  From my understanding,  these will only be switched at 3750, but it doesn't work.

As soon as the firewall is removed, the traffic works as usual.

Any possible reasons for this and what should be done to mitigate this.

Appreciate all help!

Labels:
0 Helpful
1 Reply 1

ksaleemjaffer
Level 1
Level 1

‎04-02-2013 07:49 AM

Try this.

Create VRF in 3750. By this you logically divide your switch into two. Then place the firewall inbetween and add necessry routes and open the ports. It should work.

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card