Re: SG350 VLAN question if configured correct for 1 host per vlan/port

S3C · ‎08-28-2020

This is 1 part of a big conf of only LAN.

Below I kinda want to get OK if done right, totally wrong or missed something in the conf.

5 Hosts = 5 VLANs/Ports (mode access)

1 host per VLAN/Port

Interface 1 = VLAN 1 = IP x.x.10.10/24

Interface 2 = VLAN 2 = IP x.x.20.10/24

etc

Port 9 is trunked to a FW

switchport mode trunk
switchport trunk allowed vlan 10,20,30,40,50
switchport nni ethtype dot1q

Hosts will have static IP so no need for DHCP per vlan right?

----------------------

CLI output:interface GigabitEthernet1
switchport access vlan 10

spanning-tree bpduguard enable

interface GigabitEthernet2
switchport access vlan 20

spanning-tree bpduguard enable

interface vlan 10
ip address x.x.10.10 255.255.255.0
interface vlan 20
ip address x.x.20.10 255.255.255.0

Attached is a diagram of the idea

Georg Pauwen · ‎08-28-2020

Hello,

design looks by the book. If you do this in Packet Tracer, keep in mind that the 5505 doesn't do subinterfaces, you need the 5506X. Other than that, I guess you know how to configure the ASA ?

S3C · ‎08-28-2020

Hello!

Im using a Cisco FTD 1010 for FW.

I have configured sub-interfaces on the 1 trunk port with above VLAN IDs & IPs.