Aruba & ProVision-based

2920: IP Routing Between VLANs

Occasional Collector

2920: IP Routing Between VLANs

I've got a pair of HP 2920-48G-PoE+ switches connected as a stack. I've got two VLANs configured -- one is the DEFAULT_VLAN (vlan 1) and one is Montreal_Link (vlan 18). I'm using that to link with our Montreal office using a point-to-point MetroLAN connection.


DEFAULT_VLAN (vlan 1)has IP address and serves the network. Our Firewall, which carries all external traffic, is at It has all ports except for 2/20, 2/22, and 2/24 in its Untagged list.


Montreal_Link (vlan 18) has IP address and serves the network. It has 2/20 and 2/22 in its Untagged list, and trunk Trk2 in its Tagged (Static) list. Port 2/24 is set to Trunk mode for trunk Trk2. The MetroLAN connection is hooked up to this port. The switch on the other end of the link has IP address 


I have a testing laptop connected to Port 2/20, and a bunch of live machines connected to various ports on DEFAULT_VLAN.


IP Routing is enabled.


The goal is to have machines on DEFAULT_VLAN, with IP addresses in, to be able to access the external world through the firewall, their own network, and the network over the MetroLAN link, and to be able to gradually transfer those machines into our own local network on the Montreal_Link VLAN while maintaining their ability to access all of the aforementioned resources. I believe (but am not sure) that this can all be accomplished at the switch level with appropriate routes.


Right now, I have the following routes:


Destination, Gateway, vlan 1, Type static, Metric 1, Dist. 1

Destination, Gateway, vlan 18, Type static, Metric 1, Dist. 1

Destination, Gateway Montreal_Link, vlan 18, Type connected, Metric 1, Dist. 0

Destination, Gateway reject, {no vlan}, Type static, Metric 0, Dist. 0

Destination, Gateway lo0, {no vlan}, Type connected, Metric 1, Dist. 0

Destination, Gateway DEFAULT_VLAN, vlan 1, Type connected, Metric 1, Dist 0


(When I say "see" below I'm always testing by pinging.)


Test case 1, testing laptop connected to the Montreal_Link VLAN on port 2/22, if I give it an IP of, mask of, and a gateway of, I can ping the local VLAN's IP (, all the resources on 10.1.x.x on the other side of the MetroLAN link, and a seemingly random handful of addresses on 192.168.23.x -- in particular, the DEFAULT_VLAN address and a very odd collection of random other addresses, but not most of them. I haven't figured out the pattern. I supposed that it might be that it was only machined on the same switch in the stack, but that doesn't immediately seem to be the case. I also can't see the outside world at all.


If I move the testing laptop to a port on DEFAULT_VLAN, give it an IP of, mask of, and a gateway of, I can see all the machines on DEFAULT_VLAN, and I can see the outside world. I can also see the local Montreal_Link (vlan 18) address of However, I can't see anything on the other side of of the MetroLAN link (, or any of the other devices on that end of things).


So... that's kind of where I'm at. I'm sure I'm missing something here, but I'm not sure what. Any help would be greatly appreciated.

Trusted Contributor

Re: 2920: IP Routing Between VLANs

Hi Irfon-Kim,


When you test the link from the subnet and cannont get a response from the Montreal IPs, can you get a response from Also, do you have the route entry on to route back to the subnet?


Don't forget to mark a post resolved if your question was answered.
Occasional Collector

Re: 2920: IP Routing Between VLANs

No, when testing from the subnet, I cannot get a reply from I actually don't know if they have a route in place to route traffic back over the trunk or not -- Montreal is managing that switch. That's a good question, though; I'll ask.