Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2035
Views
0
Helpful
16
Replies

question on Vlan Routing on 6513's

pipsadmin
Level 1
Level 1

‎05-09-2008 03:40 AM - edited ‎03-05-2019 10:51 PM

I have a configuration question, so I tought of comming on here and seing if you guys could help me out.

Currently we have 3 6500's, SW1 and SW2 (6513's) inter-connected via port-channel(vlan

trunk) and SW3 (6509) connected via standard trunk port on a lan extention over Gige.

Our vlan routing is currently done via a pair of Fortigate firewalls. They have a physical

interface connection for each vlan to SW1 and SW2. These fortigates are setup as the

gateways for each vlan (10.98.x.1).

We have the requirement to move the vlan routing down to the core 6500's on the MSFC.

each 65xx switch have a vlan interface setup for each vlan (19) as shown bellow which spands across all 3 switches:

VLAN 100 DMZ 192.168.2.0/21

VLAN 102 PROD 10.98.2.0/23

VLAN 104 CORP 10.98.4.0/23

VLAN 106 QA 10.98.6.0/23

VLAN 108 VOIP 10.98.8.0/23

VLAN 112 FCIP 10.98.12.0/23

VLAN 208 SIPGC

VLAN 210 PROD-SIP 10.98.10.0/23

VLAN 221 GT (No Vlan interface)

VLAN 242 BGP (No Vlan interface)

VLAN 264 SIP-VPBX (No Vlan interface)

VLAN 265 SIP-BW 65.89.151.225/29

VLAN 300 WANCOM1 (No Vlan interface)

VLAN 400 WANCOM2 (No Vlan interface)

Each vlan spands across all 3 switches via the Trunk ports since there are devices on

specific vlans that are connected to different 6500's for redundancy.

The Vlans are currently all setup for spanning tree priority:

SW1 spanning-tree priority 0

SW2 spanning-tree priority 4096

SW3 spanning-tree priority 8192

I need to know, if we pull the fortigate firewall from this setup, and start doing the

vlanrouting on the MSFC, how does this change the configuration? Please provide some examples.

Since we have 3 core switches, do we need to implement HSRP on the Vlan interfaces? If so,

how would that be configured? Again, configuration examples would be appreciated.

Also, which routing protocol should be implemented in this scenerio?

Labels:
0 Helpful
16 Replies 16

pipsadmin
Level 1
Level 1
In response to Jon Marshall

‎05-13-2008 11:32 AM

yes, so since it is, should'nt i be using Classless RIPv2?

0 Helpful

Jon Marshall
Hall of Fame
Hall of Fame
In response to pipsadmin

‎05-13-2008 11:38 AM

Well that depends on a number of things.

What other devices do you have in your network and do you need them to peer with your 6500 switches.

A default route on your 6500's pointing to the fortigate firewalls would take care of your internet access although you would need to add routes on the firewalls for the vlans connected on your 6500's for the return traffic.

A dynamic routing protocol is a good thing in a network with a number of devices that need to exchange routes. But if you don't have that many devices static routing will work just fine.

It's really up to you as to what you need. Ripv2 is an improvement on v1 in some respects but i'm not sure at the moment you need either.

Jon

0 Helpful
Customers Also Viewed These Support Documents