cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1097
Views
5
Helpful
4
Replies

Network Configuration

lambingbenjamin
Level 1
Level 1

I have two stackable switches, arranging the network in a star topology. I am creating 5 distinct VLANs (one for each different department).

 

if I use the IP addresses 

Interface VLAN 192.168.1.10.255.255.255.0

VLAN2: 192.168.2.10.255.255.255.0

VLAN3: 192.168.3.10.255.255.255.0

VLAN4: 192.168.4.10.255.255.255.0

VLAN5: 192.168.5.10.255.255.255.0

VLAN6: 192.168.6.10.255.255.255.0

 

Would each VLAN need a separate default gateway? What else do I need to do to properly configure the network?

4 Replies 4

Martin L
VIP
VIP

 

Yes, each VLAN need a separate default gateway. you can use switched virtual interface (SVI) on main switch, Core sw. Switches use SVI with IP to communicate and route traffic. SVI, which behaves like routed interface,  it is virtual software-based interface that will be use for all end devices in that particular vlan. SVI x will route traffic belonging to vlan x 

192.168.1.0/24 can be use to route traffic between Core and router as SVI vlan 1 (interface vlan 1). And other SVIs (from 2-6) will be default gateways for other vlans. Technically, for security reason you should not use vlan 1 for data traffic. 

SVI interface vlan 2 with 192.168.2.10 /24 can be default gateway for vlan 2.

SVI interface vlan 3 with 192.168.3.10./24 for vlan 3 and so forth. 

you can use Packet tracer , a free simulator from Cisco Net Academy

 

Regards, ML
**Please Rate All Helpful Responses **

 

Example:

ip routing

interface Vlan2

ip address 192.168.2.10 255.255.255.0

!

interface Vlan3

ip address 192.168.3.10 255.255.255.0

etc

Example of L2 switch

interface Vlan2

ip address 192.168.2.1 255.255.255.0

 

Also, you do not need to use SVI on those edge L2 switches with IP 192.168.2.1.1 and 192.168.3.1, etc. You could move those IPs to Core switch instead of 192.168.2.10 use 192.168.2.1.  

L2 switches do not need SVI with IP for vlan x data traffic.  But they do need SVI IP Only to be able to connect to that switch for management purpose. That is usually done using special management vlan x reserved for that purpose. in your case, iy could be vlan 1 with  interface Vlan2 and ip address 192.168.1.0/24

 

Do you have Packet Tracer ? 

Martin L
VIP
VIP

trying to add example but for some reason my reply is not possing due to some html error

balaji.bandi
Hall of Fame
Hall of Fame

You have 2 options :

 

Layers 2 :

 

1.all the Switches connect to Core switch as Layer Trunk allowed respected vlan in Trunk

2. Configure on core all the SVI point Default route towards Router going to Internet.

3. On same Router point back static route for that IP ranges towards your Core switch IP address.

4. Make sure NAT is covered on router all the IP pool can get internet.

 

Layers 3 :

 

1.all the Switches connect to Core switch configured point to point interface (no switch port option connected interface between switch )

2. Configure SVI on the Local switch - Default route towards Core Switch  Point to Point IP

3. On same Router point back static route for that IP ranges towards your Core switch IP address.

4. Make sure NAT is covered on router all the IP pool can get internet.

 

I prefer Layer 2 Options, and you can create DHCP pools, ACL on core switch, One administraiton task on 1 device. (Hope you have take care License).

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Innovations in Cisco Full Stack Observability - A new webinar from Cisco