Routing to gateway not working on native

jacobholmjensen · ‎10-18-2021

Hi Cisco Community, I'm currently stuck with an issue I hope you can help me with.

I'm trying to practice the whole "management VLAN" idea, and I'm meeting a lot of trouble on the way to understanding...

This is my humble setup with SSH, ICMP-packets and all other stuff working on vlan99 which is my management VLAN. But.. The PC's in VLAN10 can ping the SVI on the switch, but not their gateway 192.168.10.1...

Here is the config for the router:

!
hostname R1
!
enable secret 5 $1$mERr$4dpRATIgxQacPVK0CfNV4/
!
ip cef
no ipv6 cef
!
username ADMIN password 0 ADMIN
!
ip ssh version 2
no ip domain-lookup
ip domain-name SSH1
!
spanning-tree mode pvst
!
interface GigabitEthernet0/0/0
no ip address
duplex auto
speed auto
!
interface GigabitEthernet0/0/0.10
description NATIVE
encapsulation dot1Q 10 native
ip address 192.168.10.1 255.255.255.0
!
interface GigabitEthernet0/0/0.99
description MGMT
encapsulation dot1Q 99
ip address 192.168.99.1 255.255.255.0
!
interface GigabitEthernet0/0/1
no ip address
duplex auto
speed auto
shutdown
!
interface GigabitEthernet0/0/2
no ip address
duplex auto
speed auto
shutdown
!
interface Vlan1
no ip address
shutdown
!
ip classless
!
ip flow-export version 9
!
line con 0
!
line aux 0
!
line vty 0 4
login local
transport input ssh
line vty 5 15
login local
transport input ssh
!
end

And here is the config for the switch:

!
hostname S1
!
enable secret 5 $1$mERr$4dpRATIgxQacPVK0CfNV4/
!
ip ssh version 2
no ip domain-lookup
ip domain-name SSH2
!
username ADMIN privilege 1 password 0 ADMIN
!
spanning-tree mode pvst
spanning-tree extend system-id
!
interface FastEthernet0/1
switchport access vlan 99
switchport mode access
!
interface FastEthernet0/2
switchport access vlan 10
switchport mode access
!
interface FastEthernet0/3
switchport access vlan 10
switchport mode access
!
interface FastEthernet0/4
!
interface FastEthernet0/5
!
interface FastEthernet0/6
!
interface FastEthernet0/7
!
interface FastEthernet0/8
!
interface FastEthernet0/9
!
interface FastEthernet0/10
!
interface FastEthernet0/11
!
interface FastEthernet0/12
!
interface FastEthernet0/13
!
interface FastEthernet0/14
!
interface FastEthernet0/15
!
interface FastEthernet0/16
!
interface FastEthernet0/17
!
interface FastEthernet0/18
!
interface FastEthernet0/19
!
interface FastEthernet0/20
!
interface FastEthernet0/21
!
interface FastEthernet0/22
!
interface FastEthernet0/23
!
interface FastEthernet0/24
!
interface GigabitEthernet0/1
switchport mode trunk
!
interface GigabitEthernet0/2
!
interface Vlan1
no ip address
shutdown
!
interface Vlan10
description NATIVE
ip address 192.168.10.2 255.255.255.0
!
interface Vlan99
description MGMT
ip address 192.168.99.2 255.255.255.0
!
ip default-gateway 192.168.10.1
!
line con 0
!
line vty 0 4
login local
transport input ssh
line vty 5 15
login local
transport input ssh
!
end

The config files are also attached as .txt-files...

Thank you very much for your help

Georg Pauwen · ‎10-19-2021

Hello,

configure the below on interface GigabitEthernet0/1:

switchport trunk native vlan 10

Giuseppe Larosa · ‎10-20-2021

Hello @jacobholmjensen ,

as correctly noted by @Georg Pauwen you have a native VLAN mismatch :

on router side the native VLAN is 10

on switch side it is the default value of 1.

This breaks layer3 connectivty in VLAN 10 as native = untagged frames are considered by the switch as part of Vlan 1 not VLAN 10.

With the command suggested you can fix the native VLAN mismatch.

Hope to help

Giuseppe