@MarkoAnastasov45813 Hello,

I have few questions about routing Layer 3 switch. On some point going lost and I do not know how that happened.
When use switch L3 connect the router I think need to be -No switchport – why?? I know the no switchport working as L3 routing.

R: Using it as "switchport" you will need create  a sub interface and encapsulate a necessary vlan that you want, if you use as "no switchport" there is no necessity to create subinterface and you can input IP ADDRESS directly on both interface.

Do need to have Access list on the SwL3 or only on the Cisco router as it is connected to OSP router.

R: Depends what your necessities or what you want to do, if it is connected on a router to establish ospf sessions, there is not requirements to input ACL  on your port, just if you need filter something, but filter in  OSPF is better.

Do you need to have (Ip NAT) on the SwL3 or just on the cisco router? it is connected to OSP router.

R: in most of device like (SWITCH LAYER 3) do not do a NAT, if you need configure a NAT i suggest to you apply it on ROUTER, certainly router has most options for your configuration.

I need to make SWL3 to work as router??

R: It is a best practices, because if you input your ROUTER as core/distribution of your network it will be a "router on a stick" legacy design in networks. So, if you can, use your switch as L3 routing for your network.

Do I need to make swL3 with DHCP pool with different network What is best practice?

R: Maybe... dhcp on SWL3 works well, but it is not manageable better like DHCP running on windows/linux/ipam.. something like that. But if you cant use it on other system, certainly will work in your SWL3.

Please can I have some example as packet tracer file. I did some but they are work on PC but not really work on real. ACL, NAT etc.

R: I dont understood your doubt. Are you looking for something like WIRESHARK?

What is the best practice for routing L3 switch Static route (next hop, default route) or dynamic route as (RIP, EIGRP and OSPF)?

R: It is necessary know your topology/environment to suggest the best options, but talking about best practices, working with dynamic routes is a good way to start... EIGRP is  Cisco properties, OSPF can be configured in different vendors.

Is there any general different when routing L2 SW and Route and L3 + router? I think the principle of routing shout be the same??

R: SW L2 can limit a coalison domain and SWL3/ROUTER can limit a broadcast domain. 

I am really lost when start routing. No idea why???

R: Start writing your topology/design and writing addressing (ip adress range) according your topology/design.

Sorry if some questions are stupid

R: dont worry, everyone start from the begginn.

Here some link to help you:

ROUTING FIRST TIME: https://www.cisco.com/c/en/us/td/docs/routers/7600/ios/15S/configuration/guide/7600_15_0s_book/supcfg.pdf

CREATING VLAN: https://community.cisco.com/t5/networking-documents/how-to-configure-vlans-on-the-catalyst-switches/ta-p/3131780

OSPF: https://community.cisco.com/t5/networking-documents/reading-and-understanding-the-ospf-database/ta-p/3145995

Good lucky in your studies/project.

Thank you in advance!
Marko

Hi,

first of all no questions are stupid, questions are questions and in this community we all are here to collaborate with each other and share our experiences.

Your example exhibts a typical scenario which we seen quite often in real networks, especially the smaller size ones where we have one ISP Router, one switch and hosts connected to the switch.

From configuration perspective, we do all the NAT on the Router which is ISP Router in this case that is use to connect the ISP connection. We dont need to put ACL on the Router since traffic on the Internet cannot reach us directly as private IP Addresses are not routable. Only traffic from our LAN can reach to Internet with proper NAT configuration.

In any LAN, we define multiple VLANs to limit the broadcast domain and to have some segregation. Typically we use different VLAN for Voice, Data, wireless, different VLAN for each floor and each area.

To make inter-vlan communication, we need a layer 3 device. If in above scenario if we have Layer 3 switch then we need to create all VLAN interfaces/SVI's on the switch and that will be our default gateway for the VLANs. From the switch, we typically have one default Route pointing to ISP Router and also we are having Routers for our VLANs defined on the Router.

We dont need to run routing protocols in the internal LAN in most of the scenarios. Protocols might be required when we have lot of Layer 3 devices in a network and need to exchange the Routes for example, we have DC switches, LAN switches, WAN Routers, Internet Routers then running protocol can make sense internally.

When we have layer 3 switch, by default all of its interfaces are in Layer 2 trunk mode, to make it layer 3, we need to put no switchport command.

I dont have packet tracer so cant share any thing. I know you still have lot to ask, feel free to put your more queries. I believe lot of people will participate and will try to share their experiences with you.