I resolved the issue. Thanks

FloridaGAL · ‎02-09-2016

Here's my setup

3 Networks across 3 switches (3x C3650)

10.7.64.1.x/24 (Vlan 7)

10.10.10.x/24 (Vlan 20)

192.168.1.x/24 (Vlan 15)

The switches are all connected to each other, with Switch one have a connection to an ASA and the outside world. My goal is to get all three switches communicating via Layer 2 by using the 10.10.10.x network as a bridge to connect the other two networks.

Each switch has one switchport that exists in the 10.10.10.x network (.1 for Switch 1, .2 for Switch 2, .3 for Switch 3).

I currently have a route in Switch 1 that is as follows:

ip route 192.168.1.0 255.255.255.0 10.10.10.3

I have a route in Switch 3 that is as follows:

ip route 10.7.64.1.0 255.255.255.0 10.10.10.1

From the 192.168.1.x network I can ping everything perfectly in the 10.10.10.x and 10.7.64.x networks. However, I can ONLY ping the SVI for VLAN 15 (192.168.1.1) and the network id (192.168.1.0) from the 10.7.64.x network on Switches 1&2.

Right now there is a trunk between Switches 1&2 and a trunk between Switches 1&3. On both trunks Vlan access is being granted to Vlans 7,20 and 15.

This really has me stumped as to why I can't have complete bi-directional communication. Can anyone assist me in this?

Richard Bradfield · ‎02-10-2016

Vlan 20 has interfaces on all switches

I take it Vlan 15 is on switch 3 and its address 192.168.1.1 is the gateway for that network.

and Vlan 7 is on switch 1 and its address is 10.7.64.1

can you share the relevant configurations

FloridaGAL · ‎02-10-2016

SW1

#sho run
Building configuration...
Current configuration : 10427 bytes
!
! Last configuration change at 13:37:07 EST Tue Feb 9 2016 by GALIT
! NVRAM config last updated at 13:17:37 EST Tue Feb 9 2016 by GALIT
!
version 15.0
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
service compress-config
!

!
boot-start-marker
boot-end-marker
!
!
vrf definition Mgmt-vrf
 !
 address-family ipv4
 exit-address-family
 !
 address-family ipv6
 exit-address-family
!

!

aaa new-model
!
!
!
!
!
!
!
!
aaa session-id common
clock timezone EST -5 0
clock summer-time EDT recurring
switch 1 provision ws-c3650-48ps
ip routing
!

ip device tracking
!
!
!
!
!
!
!
!
!
!
diagnostic bootup level minimal
spanning-tree mode pvst
spanning-tree extend system-id
!
redundancy
 mode sso
!
!
vlan access-map 15 10
 action forward
!
!
!
class-map match-any non-client-nrt-class
  match non-client-nrt
!
policy-map port_child_policy
 class non-client-nrt-class
    bandwidth remaining ratio 10
!
!
!
!
!
!
interface GigabitEthernet0/0
 vrf forwarding Mgmt-vrf
 no ip address
 negotiation auto
!
interface GigabitEthernet1/0/1
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/2
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/3
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/4
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/5
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/6
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/7
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/8
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/9
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/10
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/11
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/12
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/13
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/14
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/15
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/16
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/17
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/18
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/19
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/20
 switchport access vlan 20
 switchport trunk allowed vlan 7,20
 switchport mode trunk
!
interface GigabitEthernet1/0/21
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/22
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/23
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/24
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/25
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/26
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/27
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/28
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/29
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/30
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/31
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/32
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/33
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/34
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/35
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/36
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/37
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/38
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/39
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/40
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/41
 switchport access vlan 10
 switchport mode access
 spanning-tree portfast
!
interface GigabitEthernet1/0/42
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/43
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/44
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/45
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/46
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/47
 switchport access vlan 7
 switchport mode access
 switchport voice vlan 10
 spanning-tree portfast
!
interface GigabitEthernet1/0/48
 description SW1 TO SW2 Link
 switchport trunk allowed vlan 7,10,20
 switchport mode trunk
!
interface GigabitEthernet1/1/1
 switchport access vlan 7
 switchport mode access
!
interface GigabitEthernet1/1/2
!
interface GigabitEthernet1/1/3
!
interface GigabitEthernet1/1/4
!
interface Vlan1
 no ip address
 shutdown
!
interface Vlan7
 ip address 10.7.64.1 255.255.255.0
 ip helper-address 10.7.64.8
!
interface Vlan15
 ip address 192.168.1.1 255.255.255.0
!
interface Vlan20
 ip address 10.10.10.1 255.255.255.0
!
ip http server
ip http authentication local
ip http secure-server
!
ip route 0.0.0.0 0.0.0.0 10.7.64.4
!
!
!
!
!
!
!
!
line con 0
 stopbits 1
line aux 0
 stopbits 1
line vty 0 4
 
 transport input ssh
line vty 5 15
 
 transport input ssh
!

wsma agent exec
 profile httplistener
 profile httpslistener
wsma agent config
 profile httplistener
 profile httpslistener
wsma agent filesys
 profile httplistener
 profile httpslistener
wsma agent notify
 profile httplistener
 profile httpslistener
!
wsma profile listener httplistener
 transport http
!
wsma profile listener httpslistener
 transport https
ap group default-group
end

FloridaGAL · ‎02-10-2016

SW 3

#sho run
Building configuration...
Current configuration : 5542 bytes
!
! Last configuration change at 10:05:28 UTC Tue Feb 9 2016 by 
!
version 15.0
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
service compress-config
!

!
boot-start-marker
boot-end-marker
!
!
vrf definition Mgmt-vrf
 !
 address-family ipv4
 exit-address-family
 !
 address-family ipv6
 exit-address-family
!
logging console emergencies

!

no aaa new-model
switch 1 provision ws-c3850-24t
ip routing
!
ip device tracking
!
!
qos wireless-default-untrust
!
system mtu 9198
!
!
!
!
!
diagnostic bootup level minimal
identity policy webauth-global-inactive
 inactivity-timer 3600
spanning-tree mode pvst
spanning-tree extend system-id
!
redundancy
 mode sso
!
!
!
class-map match-any non-client-nrt-class
  match non-client-nrt
!
policy-map port_child_policy
 class non-client-nrt-class
    bandwidth remaining ratio 10
!
!
!
!
!
!
interface GigabitEthernet0/0
 vrf forwarding Mgmt-vrf
 no ip address
 shutdown
 negotiation auto
!
interface GigabitEthernet1/0/1
 switchport access vlan 15
!
interface GigabitEthernet1/0/2
 switchport access vlan 15
!
interface GigabitEthernet1/0/3
 switchport access vlan 15
!
interface GigabitEthernet1/0/4
!
interface GigabitEthernet1/0/5
 switchport trunk allowed vlan 1,7,20
 switchport mode trunk
!
interface GigabitEthernet1/0/6
 switchport trunk allowed vlan 1,7,20
 switchport mode trunk
!
interface GigabitEthernet1/0/7
!
interface GigabitEthernet1/0/8
!
interface GigabitEthernet1/0/9
!
interface GigabitEthernet1/0/10
!
interface GigabitEthernet1/0/11
!
interface GigabitEthernet1/0/12
!
interface GigabitEthernet1/0/13
 switchport access vlan 15
!
interface GigabitEthernet1/0/14
 switchport access vlan 7
!
interface GigabitEthernet1/0/15
!
interface GigabitEthernet1/0/16
 switchport access vlan 15
!
interface GigabitEthernet1/0/17
!
interface GigabitEthernet1/0/18
!
interface GigabitEthernet1/0/19
!
interface GigabitEthernet1/0/20
!
interface GigabitEthernet1/0/21
!
interface GigabitEthernet1/0/22
 switchport access vlan 15
!
interface GigabitEthernet1/0/23
!
interface GigabitEthernet1/0/24
!
interface GigabitEthernet1/1/1
!
interface GigabitEthernet1/1/2
!
interface GigabitEthernet1/1/3
!
interface GigabitEthernet1/1/4
!
interface TenGigabitEthernet1/1/1
!
interface TenGigabitEthernet1/1/2
!
interface TenGigabitEthernet1/1/3
!
interface TenGigabitEthernet1/1/4
!
interface Vlan1
 no ip address
!
interface Vlan15
 ip address 192.168.1.2 255.255.255.0
 ip helper-address 10.7.64.8
!
interface Vlan20
 ip address 10.10.10.3 255.255.255.0
 ip helper-address 10.7.64.8
!
ip default-gateway 192.168.1.1
no ip http server
ip http secure-server
!
!
!
!
!
line con 0
 exec-timeout 0 0
 stopbits 1
line aux 0
 stopbits 1
line vty 0 4
 
 login local
 transport input ssh
line vty 5 15
 login
!
wsma agent exec
 profile httplistener
 profile httpslistener
wsma agent config
 profile httplistener
 profile httpslistener
wsma agent filesys
 profile httplistener
 profile httpslistener
wsma agent notify
 profile httplistener
 profile httpslistener
!
wsma profile listener httplistener
 transport http
!
wsma profile listener httpslistener
 transport https
ap dot11 24ghz rrm channel dca 1
ap dot11 24ghz rrm channel dca 6
ap dot11 24ghz rrm channel dca 11
ap dot11 5ghz rrm channel dca 36
ap dot11 5ghz rrm channel dca 40
ap dot11 5ghz rrm channel dca 44
ap dot11 5ghz rrm channel dca 48
ap dot11 5ghz rrm channel dca 52
ap dot11 5ghz rrm channel dca 56
ap dot11 5ghz rrm channel dca 60
ap dot11 5ghz rrm channel dca 64
ap dot11 5ghz rrm channel dca 149
ap dot11 5ghz rrm channel dca 153
ap dot11 5ghz rrm channel dca 157
ap dot11 5ghz rrm channel dca 161
ap group default-group
end

FloridaGAL · ‎02-10-2016

I resolved the issue. Thanks for checking in to help.

VLAN routing issue