Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
407
Views
3
Helpful
5
Replies

Cat6500: InterVlan Routing

Go to solution
new_networker
Level 1
Level 1

‎08-28-2008 05:00 AM - edited ‎03-06-2019 01:03 AM

hi,

I would like to know how do the Cisco network devices as well as FWSM communicate with different VLANs defined on Cat6500 24/48 port switch. Is SVI required for every VLAN defined on Cat6500 switch ?

For e.g. if an ASA is connected to VLAN2 (192.168.1.x subnet) on Cat6500 switch and would like to initiate connection to FWSM which is connected to VLAN3 (192.168.2.x subnet).

Rgds.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame
In response to new_networker

‎08-28-2008 05:49 AM

You would need an SVI for both vlans to route traffic between those vlans. So yes an SVI is required for both vlan 1 and 2 in your example.

Jon

View solution in original post

5 Replies 5

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame

‎08-28-2008 05:24 AM

This is quite a large question. If we forget about the FWSM for the moment.

"Is SVI required for every VLAN defined on Cat6500 switch"

Not necessarily, it depends. If you want to be able to route to that vlan and from that vlan then yes you will need an SVI for that vlan. If you don't create an SVI you cannot route for this vlan on the MSFC.

So why create just a vlan without an SVI on the MSFC ? Well there are a number of reasons but this is where the FWSM comes in. If you want to firewall a vlan that exists on the 6500 then you cannot have an SVI on the MSFC otherwise it will never be firewalled. So you need to create the interface for that vlan on the FWSM module and not the MSFC.

Does this makes sense ?

Jon

0 Helpful

Go to solution
new_networker
Level 1
Level 1
In response to Jon Marshall

‎08-28-2008 05:30 AM

1) SVI for every VLAN (except FWSM)

Does it mean that a SVI will have to defined per VLAN i.e. two SVI's will be required to support in & out traffic between two VLANs.

2) FWSM

In other words is it right to say that FWSM will do the routing, hence doesn't require MSFC configuration.

0 Helpful

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame
In response to new_networker

‎08-28-2008 05:35 AM

1) One SVI will route traffic for that vlan both in & out.

2) In effect yes. Any vlan that you allocate to the FWSM will have a L3 interface on the FWSM and not an SVI on the MSFC and the FWSM will pass traffic between these vlans.

Note that one vlan is needed to connect the MSFC to the FWSM and so both the MSFC and the FWSM will have a L3 interface for this vlan.

Jon

0 Helpful

Go to solution
new_networker
Level 1
Level 1
In response to Jon Marshall

‎08-28-2008 05:47 AM

1) For more clarity,

If SVI is configured only on VLAN1 and not VLAN2, would VLAN1 be able to successfully route the traffic to VLAN2. Or, is SVI required for VLAN2 (the receiving VLAN) as well.

Thanks.

0 Helpful

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame
In response to new_networker

‎08-28-2008 05:49 AM

You would need an SVI for both vlans to route traffic between those vlans. So yes an SVI is required for both vlan 1 and 2 in your example.

Jon

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card