Any help appreciated.

Firuz Azimov · ‎02-05-2015

Hi

I configure intervlan on cisco 7613 (2vlans on one port).

There are 2 vlans (vlan 10 and 20)

Users in vlan 10 cannot communicate with users in vlan20.

I did successfully this configuration in many routers. But it doesn work in cisco7600 on ES+ card.

Maybe someone know how to resolve this issue.

Thanks.

Firuz Azimov · ‎02-06-2015

Any help appreciated.

Cisco Freak · ‎02-06-2015

Please post you configs from the router and the switch.

CF

Firuz Azimov · ‎02-06-2015

Cisco 7600 (acts like router)

interface TenGigabitEthernet12/1
description MAIN---CONNECT
switchport
switchport trunk allowed vlan 666,777
switchport mode trunk
end

interface Vlan777
ip address 192.168.101.2 255.255.255.252

ip wccp 80 redirect in

interface Vlan666
mtu 9000
ip address 192.168.243.105 255.255.255.252
ip wccp 80 redirect in
ip flow ingress

Huawei (Switch)

interface GigabitEthernet4/1/1
stp disable
flow-interval 30
port link-type trunk
undo port trunk permit vlan 1
port trunk permit vlan 666 777

glen.grant · ‎02-06-2015

Are the layer 2 vlans created on each side of the connection. On the Cisco side do a show vlan and make sure both show active . Cant help you with the Huwaei switch haven't worked on those but check that side also .

Firuz Azimov · ‎02-06-2015

BT#show vlan id 777

VLAN Name Status Ports
---- -------------------------------- --------- -------------------------------
777 test_0355 active Te12/1

BT#show vlan id 666

VLAN Name Status Ports
---- -------------------------------- --------- -------------------------------
666 VLAN0666 active Te12/1

Both vlans are active.

Users on vlan 10 and 20 can ping their default gateways but cant ping each other.

Maybe this restriction only in 7600 ES+ cards ?

paul driver · ‎02-06-2015

Hello

is ip routing enabled on the core switch

Does the access swich have a default-gatway or default route to the core!

sh ip route

sh int trunk

Res

paul

Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul

Evgeniy Prichinin · ‎02-06-2015

ip routing is enabled by default on 7600.

i think that problem in wccp. try to remove this commands.

Firuz Azimov · ‎02-07-2015

ok I will try and reply

Evgeniy Prichinin · ‎02-09-2015

Please post output of this commands.

show ip arp vlan 666

show ip arp vlan 777

show int vlan666

show int vlan777

show vlan id 666

show vlan id 777

Firuz Azimov · ‎02-09-2015

BT#show ip arp vlan 777
Protocol Address          Age (min) Hardware Addr   Type   Interface
Internet 192.168.101.2           -   0026.cbb3.b980 ARPA   Vlan777
Internet 192.168.101.1           1   0025.9ed3.174b ARPA   Vlan777

BT#show ip arp vlan 778
Protocol Address          Age (min) Hardware Addr   Type   Interface
Internet 192.168.101.6           -   0026.cbb3.b980 ARPA   Vlan778
Internet 192.168.101.5           0   000f.e253.939d ARPA   Vlan778

BT#show inter vlan 777
Vlan777 is up, line protocol is up
Hardware is EtherSVI, address is 0026.cbb3.b980 (bia 0026.cbb3.b980)
Internet address is 192.168.101.2/30
MTU 1500 bytes, BW 1000000 Kbit, DLY 10 usec,
     reliability 255/255, txload 1/255, rxload 1/255
Encapsulation ARPA, loopback not set
Keepalive not supported
ARP type: ARPA, ARP Timeout 04:00:00
Last input 00:03:19, output 00:03:19, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: fifo
Output queue: 0/40 (size/max)
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
L2 Switched: ucast: 7 pkt, 638 bytes - mcast: 549 pkt, 35136 bytes
L3 in Switched: ucast: 242 pkt, 17452 bytes - mcast: 0 pkt, 0 bytes mcast
L3 out Switched: ucast: 1478 pkt, 105722 bytes mcast: 0 pkt, 0 bytes
     870 packets input, 57628 bytes, 0 no buffer
     Received 549 broadcasts (0 IP multicasts)
     0 runts, 0 giants, 0 throttles
     0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
     2610 packets output, 187954 bytes, 0 underruns
     0 output errors, 0 interface resets
     0 output buffer failures, 0 output buffers swapped out

BT#show inter vlan 778
Vlan778 is up, line protocol is up
Hardware is EtherSVI, address is 0026.cbb3.b980 (bia 0026.cbb3.b980)
Internet address is 192.168.101.6/30
MTU 1500 bytes, BW 1000000 Kbit, DLY 10 usec,
     reliability 255/255, txload 1/255, rxload 1/255
Encapsulation ARPA, loopback not set
Keepalive not supported
ARP type: ARPA, ARP Timeout 04:00:00
Last input 00:00:17, output 00:01:49, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: fifo
Output queue: 0/40 (size/max)
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
L2 Switched: ucast: 348 pkt, 22842 bytes - mcast: 5748 pkt, 367872 bytes
L3 in Switched: ucast: 16 pkt, 1632 bytes - mcast: 0 pkt, 0 bytes mcast
L3 out Switched: ucast: 376 pkt, 35217 bytes mcast: 0 pkt, 0 bytes
     6112 packets input, 392346 bytes, 0 no buffer
     Received 5748 broadcasts (0 IP multicasts)
     0 runts, 0 giants, 0 throttles
     0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
     1061 packets output, 85288 bytes, 0 underruns
     0 output errors, 0 interface resets
     0 output buffer failures, 0 output buffers swapped out

BT#show vlan id 777

VLAN Name Status Ports
---- -------------------------------- --------- -------------------------------
777 test_0355 active Te12/1

VLAN Type SAID MTU Parent RingNo BridgeNo Stp BrdgMode Trans1 Trans2
---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------
777 enet 100777 1500 - - - - - 0 0

Remote SPAN VLAN
----------------
Disabled

Primary Secondary Type Ports
------- --------- ----------------- ------------------------------------------

BT#show vlan id 778

VLAN Name Status Ports
---- -------------------------------- --------- -------------------------------
778 test1_0355 active Te12/1

VLAN Type SAID MTU Parent RingNo BridgeNo Stp BrdgMode Trans1 Trans2
---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------
778 enet 100778 1500 - - - - - 0 0

Remote SPAN VLAN
----------------
Disabled

Primary Secondary Type Ports
------- --------- ----------------- ------------------------------------------

I changed vlan 666 to 778. Hope this information helpful

Jon Marshall · ‎02-09-2015

Your SVIs are using /30 subnets but you are talking about users in each vlan.

So is it just one user per vlan ie. the other available IP address or do you have multiple users.

Jon

Firuz Azimov · ‎02-11-2015

Yes you are right. In each vlan one user.

Firuz Azimov · ‎02-13-2015

any update guys?

Jon Marshall · ‎02-13-2015

If vlan 666 connects to port 12/1 and vlan 777 connects to port 12/2 the can ping each other.

Sounds like a trunking issue.

Can you post from the 7600 a "sh int trunk" (presuming that is the command ie. same as 6500) and the equivalent from the Huawei switch.

So basically you have the two clients connected to the Huawei and then that is connected to the 7600 with a trunk.

Is that correct ?

Jon

Inter VLAN doesnt work on cisco7600