cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

CISCO SWITCHES FOR SMALL and MEDIUM BUSINESS

Introducing the next generation of Cisco Small and Medium Business Switches. Cisco is refreshing its SMB Switch portfolio. Click here  to learn more.


444
Views
5
Helpful
1
Replies
Filomena
Beginner

SG350X - Access management VLAN 1 from a different VLAN

Hi,

I have the SG350X with inter-VLAN routing disabled. It is trunked to another switch that works as the router. No static routes are defined on the SG350X since I would like it to behave like an L2 VLAN aware Switch

When I try to access VLAN 1 management interface from a host on VLAN 10, it is not possible unless I create the VLAN 10 interface with assigned IP on the SG350X

 

However, without defining the interface for both VLAN 10 and VLAN 50, the same workstation in VLAN 10 can ping a Media server in VLAN 50 (both devices are on the SG350X) and inversely the Media Server on VLAN 50 can ping the VLAN 10 workstation.

# traceroute from VLAN10 Workstation to Media server on VLAN 50, both attached to the SG350X
# it properly uses the SG350 Switch 10.0.10.2 gateway tracert 10.0.50.30 Tracing route to 10.0.50.30 over a maximum of 30 hops 1 1 ms 1 ms 1 ms 10.0.10.2 2 <1 ms <1 ms 2 ms 10.0.50.30

Trace complete.
# traceroute from VLAN50 media server to VLAN 10 workstation, both on SG350X
# traffic is properly routed to SG350 VLAN 50 gateway 10.0.50.2
# * * * : is a limitation in the server, ping is fine

traceroute 10.0.10.40 traceroute to 10.0.10.40 (10.0.10.40), 64 hops max, 40 byte packets 1 10.0.50.2 (10.0.50.2) 5.240 ms 3.237 ms 2.532 ms 2 * * *

 

I am just trying to understand why the SG350X (with VLAN routing disabled) needs the VLAN10 interface IP defined to allow acces to its VLAN 1 management interface from a VLAN 10 client while it is not needed to connect between other attached hosts (thus, properly working like an L2 switch for hosts)

 

Hope someone can explain it to me.

1 ACCEPTED SOLUTION

Accepted Solutions
balaji.bandi
VIP Master

If the device is acting as Layer 2, you would like to have managment to connect SG Switch, you need to have vlan 10 to be confiured same your Manangment VLAN to connect

 

When I try to access VLAN 1 management interface from a host on VLAN 10, it is not possible unless I create the VLAN 10 interface with assigned IP on the SG350X

yes since there is no routing exiting from VLAN 1 to VLAN 10

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Community for Help

View solution in original post

1 REPLY 1
balaji.bandi
VIP Master

If the device is acting as Layer 2, you would like to have managment to connect SG Switch, you need to have vlan 10 to be confiured same your Manangment VLAN to connect

 

When I try to access VLAN 1 management interface from a host on VLAN 10, it is not possible unless I create the VLAN 10 interface with assigned IP on the SG350X

yes since there is no routing exiting from VLAN 1 to VLAN 10

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Community for Help

View solution in original post