Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
4772
Views
10
Helpful
5
Replies

Do I need to enable inter-VLAN routing on Catalyst 9200L?

Go to solution
JamesEdmondsAspall
Level 1
Level 1

‎07-12-2021 08:06 AM

Hi,

 

I am using a 9200L stack as our main root switch in a small network.

 

I know that DNA Essentials license provides some basic L3 functionality including inter-VLAN routing, but I am wondering if I need to do anything to enable this, or if I simply need to create the SVIs on each VLAN?

Do I perhaps also need to add routes for each VLAN subnet pointing to the appropriate SVI IP address?

 

Additionally, can I do any control over what VLANs can/cannot access each other, or will it only do "Allow All"?

 

Thanks

James

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Reza Sharifi
Hall of Fame
Hall of Fame

‎07-12-2021 08:12 AM - edited ‎07-12-2021 08:14 AM

Hi,

If you already have the license, then you simply create the SVI you need.

config t

interface vlan x

ip address x.x.x.x

Also, you don't need to do anything besides enabling "ip routing" on the switch for SVIs to communicate with each other(inter-vlan routing). If you want to block communication between SVIs, you would need to use ACLs.

HTH

View solution in original post

5 Replies 5

Go to solution
Reza Sharifi
Hall of Fame
Hall of Fame

‎07-12-2021 08:12 AM - edited ‎07-12-2021 08:14 AM

Hi,

If you already have the license, then you simply create the SVI you need.

config t

interface vlan x

ip address x.x.x.x

Also, you don't need to do anything besides enabling "ip routing" on the switch for SVIs to communicate with each other(inter-vlan routing). If you want to block communication between SVIs, you would need to use ACLs.

HTH

Go to solution
Joseph W. Doherty
Hall of Fame
Hall of Fame
In response to Reza Sharifi

‎07-12-2021 08:22 AM

In addition to what Reza already noted, don't forget your VLAN hosts, generally, should have their VLAN's SVI's IP configured as their gateway IP.  (Also, if using DHCP, exclude the VLAN's SVI from the allocation pool.)

I don't know the routing restrictions, if any, for a 9200L switch, but often such "low end" switches are sold for, mostly, for L2 usage.  I.e. L3 features, like routing, can be very limited.

If you need to route to other devices, then you'll need to also configure static route statements and/or a dynamic routing protocol.  (Again, such is where something like a 9200L might have very limited features.)  For routing, on the same switch, between VLANs, and their SVIs defined on the switch, it's as simple as Reza described.

Go to solution
JamesEdmondsAspall
Level 1
Level 1
In response to Joseph W. Doherty

‎07-12-2021 08:28 AM

Thanks guys.

 

We are quite budget restricted, as I'd love to have gone with a 9300 series for some more oomph/features, but at the moment the actual network requirements are pretty simple.

We have a small handful of VLANs, so only want to allow some communication between them, and then we will have one static route for internet access pointing to a Meraki firewall.

 

Noted on points around gateways and DHCP, and these are on my lists of items to sort when deploying

 

I'll enable ip routing to do what I need, then investigate ACL setup.

 

Thanks very much!

James

0 Helpful

Go to solution
Reza Sharifi
Hall of Fame
Hall of Fame
In response to JamesEdmondsAspall

‎07-12-2021 08:32 AM

Good Luck, James!

0 Helpful

Go to solution
JamesEdmondsAspall
Level 1
Level 1
In response to Reza Sharifi

‎07-12-2021 08:37 AM

Appreciate it!

You guys in this forum are acting as my mini CCNA tutors haha!

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card