Hello @baselzind ,

usually you have a L2 trunk on the switch side that allows a subset of the existing Vlans that should match not the subinterfaces numbers but their associated encapsulation.

on router side you have something like

int gi0/0

no ip address

int gi0/0.10

encapsulaton dot1q 10

ip address 10.10.10.1 255.255.255.0

the subinteface number can be different from the mapped Vlan-id in the enc dot1q command but usually they are kept the same for clarity in configuration.

on the switch side the command

int gi0/23

switchport

swithport mode trunk

switchport trunk allowed vlan 10,20,30,40

Note : the default is to allow all defined Vlans on a trunk on a cisco switch this will lead to send broadcast frames for all Vlans to the router that has no subinterfaces associated to them. So it is good practice to avoid this by manually configuring the list of permitted Vlans to match the encapsulations of the configured subifs on the router.

Hope to help

Giuseppe

Hello @baselzind ,

I am sorry if I have not been clear.

The L2 switch cannot have subinterfaces.

A multilayer switch however can have SVI = switched virtual interfaces that are not sub-interfaces but logical L3 interfaces tied to the L2 VLAN. They are up/up if at least one L2 port either access or trunk is up/up and in STP forwarding state in yhe corresponding L2 VLAN. (that is the vlan with the same number in Cisco switches)

An SVI is an interface named like

interface vlan 10

desc SVI for L2 broadcast domain Vlan 10

ip address 10.10.10.2 255.255.255.0

no shut

and can be configured on a multilayer switch.

the physical interface to the router will be a L2 trunk exactly as explained in my previous post on this thread.

Hope to help

Giuseppe

Hello @baselzind ,

you need to have two IP addresses in the same IP subnet and subnet mask in order to make ARP to work correctly.

also check if you have a firewall enabled on the PC that might block ICMP ping

You can use arp -g on the PC shell if it is windows based.

On the router you can use

show ip arp

to check if there is an entry for the IP address of the PC.

An SVI interface is not needed if the L2 switch just acts as a L2 switch. Ensure that the port you connect the PC to is assigned to the Vlan in access mode. Then configure the subinterface on the router as I have showed in previuos post.

Last do not modify the native vlan settings (by default the native vlan is vlan 1) or you need to do it on both ends the switch side and the router side.

Hope to help

Giuseppe

Hello Baselzind,

As per my understanding, you have L2 switch where you have configured the VLAN and I hope you have connected the PC to an access port configured on the L2 switch.

Now coming back to your uplink connection, you have configured the trunk interface on the switch and connected it to the sub-interface on the router.(your PC and the router is in same network)

But still, you cant ping the subinterface from your PC,  could you please share us the port configuration of the switch where the router is connected and also the PC port configuration. 

>>Do I need a svi for this to work? what could I be missing? the sub-interface is up

As described above you can not create SVI on L2 switch, what you are missing in this I would be able to comment after seeing your configuration both switch end and router end.

Regards,

Priyanka