06-22-2009 02:54 AM - edited 03-06-2019 06:22 AM
I have two 6500 switches as core and running hsrp. i need to create one L2 VLAN and don't want inter-communication with other Vlans. i also need running HSRP.
how i can get it. because if create one Vlan and don't create it's SVI interface it is what i neen but for HSRP feature when i create SVI it starts communication with other VLans.
i also dont want to create access-list to dis-allow inter valn communication.
if there is any solution please help me.
thanks,
06-22-2009 03:01 AM
Place the SVI's in a VRF away from your global routing table.
06-22-2009 03:08 AM
thanks for replying
plz explain it in more detail.....
06-22-2009 03:55 AM
If you don't want to use acl's and you have to have a L3 interface for this new vlan then you can use vrf-lite to separate this vlan from your other vlans. Basically vrf-lite will allow you to have 2 separate routing tables, one for the new vlan and one for the rest.
See this attached link for configuring vrf-lite -
http://www.cisco.com/en/US/docs/switches/lan/catalyst4500/12.2/50sg/configuration/guide/vrf.html
Note the link is for a 4500 config but vrf-lite works on the 6500 as well.
Jon
06-23-2009 10:58 PM
Thanks Jon,
it was very helpful document but somewhere i think it is related to VPNs and ISP.
at my end how can implement this.
plz help with example for SVIs or VLANs.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide