08-03-2010 08:38 AM - edited 03-06-2019 12:17 PM
Hello
I need to connect two points of my network over L2 provider network.
Provider provides two links with VLAN 312 assigned on it (can be changed if needed).
I want to define my own VLANs in my network.
(See attached image)
What switches should be used to build this network?
Solved! Go to Solution.
08-11-2010 07:41 AM
If you put in layer 3 (routing capable) switches, you could route
the one vlan that is being provided.
If all you get is layer 2 capable, then q in q will have to do.
08-03-2010 09:56 AM
08-03-2010 10:04 PM
Here are Ciscos products for Metro ethernet CPE
But there are ROUTERS not switches.
Do I really need routers for my tasks? And why?
08-04-2010 08:28 AM
Either one could be made to work.
I have done both.
08-03-2010 07:23 PM
If the provider can give you q-in-q tunnel you could practically use any type of Cisco switch...3550,3560,3750. If they can do this then have the tunnel cdp, vtp, stp, etc...as you desire. Here's a good example: http://irwanp.wordpress.com/2008/06/23/qinq-8021q-tunneling-on-cisco-switches/
HTH,
Brandon
08-03-2010 10:32 PM
Here's a good example
Thanks.
But I have some specific: I have NO customer switch.
My switches would be "service provider edge switches" on those schemas.
Traffic outgoing from MY switch should be double tagged to pass provider network.
So should I purchase TWO switches for every edge of my network (one for internal VLANs and one for Q-in-Q incapsulation, like shown on those schemas) or enough only one catalyst 3560 configured like this:
interface fa0/1
switchport mode access
switchport access vlan1
interface fa0/2
switchport mode access
switchport access vlan2
interface fa0/24
switchport mode dot1q-tunnel
?
08-04-2010 08:41 AM
Hi Alexadr,
If I understand you clearly,If you are connecting L3 Switch from Internet cloud or service provider ISP,would be easy to manage the whole Network.
you can configure VLAN as you mentioned in the configuration by making that switch a VTP Server Switch and also NAT to provide more secure infrastructure at security point of view.
Please feel free to share your input/clarification if you need.
Regards
Vinod Agrahari
08-05-2010 03:34 AM
If you are connecting L3 Switch from Internet cloud or service provider ISP,would be easy to manage the whole Network
No, I can't. Provider offers only one VLAN. I can ask him to change VLAN identifier, but not amount of VLANs.
You can see default scheme of connection (that they offer) in attached file
There are only L2 switches and all stations in one VLAN, but I want to split my networks with my own VLANs.
08-05-2010 08:04 AM
Can the SP provide a trunk instead of one specific VLAN ?
Heres a thought. you get your one vlan between sites, terminate it on your switches
then give that vlan an IP address at either end (your Address space)
Then IP the rest of your vlans and route between the sites.
I have a bias towards L3 solutions as opposed to L2.
there are a lot of choices in the medium size switch world to take care of this.
08-06-2010 12:00 AM
Can the SP provide a trunk instead of one specific VLAN ?
No. We had talked about many times, but they always said "No".
We offer them enable Q-in-Q on their next-level switches, but they said "No" again. They can pass Q-in-Q, but Q-in-Q encapsulation should be done on our switches.
I have a bias towards L3 solutions as opposed to L2.
Hmmm, interest...
But I don't understand some things:
1) How to configure port connected to SP on my switch. If I configure as usual (access mode, assigned to VLAN) then traffic, outgoing from this port, will be untagged. But I need tagged to pass SP network.
2) When one VLAN are distributed between two sites I need addition work to retranslate broadcast (for Windows Neighbourhood for example) ?
08-06-2010 07:51 AM
My personal choice would be to use switches with layer 3 functionality.
You could accept their VLAN, assign your own IP addressess and off you go.
then route between the sites.
08-08-2010 10:02 PM
08-09-2010 07:57 AM
I would go with q in q then...a 3560 should be able to handle that.
08-10-2010 09:24 PM
I would go with q in q then..
I don't understand you
First, you said about layer3 solution prior to layer2. Now you say "q-in-q", but it is layer2.
Can you explain in details what do you mean?
May be draw some schema or most important parts of config for switches?
08-11-2010 07:41 AM
If you put in layer 3 (routing capable) switches, you could route
the one vlan that is being provided.
If all you get is layer 2 capable, then q in q will have to do.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide