12-10-2015 02:46 PM - edited 03-08-2019 03:04 AM
Hello All,
We have a network of layer 2 switches which link upto firewalls(holds layer3 gateway interface for subnets).
About 04 new vlans were added to layer 2 switches, corresponding layer3 created on firewalls & trunks enabled for these links.
Now, none of these new vlans are actually being assigned to any individual ports as "access vlans". However, these are available across many
trunk ports ( which link to servers that use trunk interfaces to get required vlans into them ).
In such a case, will the layer 2 address of the gateway interface(of firewall) will be visible on the layer 2 switches using sh mac-address table?
The gateway can be pinged from layer2 switches , however i can't see the mac of the gateway on these switches. Is it normal or because of no access ports being assigned towards these vlans?
Appreciate all inputs.Thanks in advance.
Solved! Go to Solution.
12-10-2015 06:15 PM
Do you have VTP pruning enabled? If so, the access layer switch trunk links will have VLANs pruned off the trunk links if there are no access ports assigned to those VLANs.
As soon as there are any broadcast or unicast frames on the new VLANs, the switches should learn of the gateway MAC addresses.
12-10-2015 03:12 PM
You should see the MAC address listed against the trunk port. Have you checked the mac-table after pinging the gateway?
12-10-2015 06:15 PM
Do you have VTP pruning enabled? If so, the access layer switch trunk links will have VLANs pruned off the trunk links if there are no access ports assigned to those VLANs.
As soon as there are any broadcast or unicast frames on the new VLANs, the switches should learn of the gateway MAC addresses.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide