Aruba & ProVision-based
cancel
Showing results for 
Search instead for 
Did you mean: 

Switches Routing Issue

 
ae10
Occasional Advisor

Switches Routing Issue

I have 2 HP 2530 switches connected together through a trunk. The first switch is connected to a Palo Alto 200 firewall. I created 2 new VLANs on the switches and the PAs, but i cannot ping the firewall DMZ IP from the DMZ VLAN on the switch.

 

trunk 23 trk1 trunk
trunk 22 trk2 trunk
no telnet-server
ip default-gateway 10.1.15.254
vlan 1
name "DEFAULT_VLAN"
no untagged 3,15,17,19
untagged 1-2,4-14,16,18,20-21,24-28,Trk1-Trk2
ip address dhcp-bootp
exit
vlan 10
name "Data_Network"
tagged Trk1-Trk2
ip address 10.20.70.2 255.255.255.0
exit
vlan 30
name "Test_Network"
tagged Trk1-Trk2
ip address 10.10.70.2 255.255.255.0
exit
vlan 50
name "Mgmt_Network"
tagged Trk1-Trk2
ip address 10.1.70.2 255.255.255.0
exit
vlan 60
name "DMZ_Network"
tagged 3,Trk1-Trk2
ip address 172.17.170.2 255.255.255.0
exit
vlan 70
name "Wifi_Network"
tagged Trk1-Trk2
ip address 10.30.70.2 255.255.255.0
exit
vlan 99
name "Internet"
untagged 15,17,19
tagged Trk1-Trk2
no ip address
exit
spanning-tree
spanning-tree Trk1 priority 4
spanning-tree Trk2 priority 4
no dhcp config-file-update

 

IP Route Entries

Destination Gateway VLAN Type Sub-Type Metric Dist.
------------------ --------------- ---- --------- ---------- ---------- -----
0.0.0.0/0 10.1.15.254 1 static 250 1
10.1.15.0/24 DEFAULT_VLAN 1 connected 1 0
10.1.70.0/24 Mgmt_Network 50 connected 1 0
10.10.70.0/24 Test_Network 30 connected 1 0
10.20.70.0/24 Data_Network 10 connected 1 0
10.30.70.0/24 Wifi_Network 70 connected 1 0
127.0.0.0/8 reject static 0 0
127.0.0.1/32 connected 1 0
172.17.170.0/24 DMZ_Network 60 connected 1 0

 

Switch can ping DMZ IP

 

Trace-route from the firewall:

traceroute host 172.17.170.2
traceroute to 172.17.170.2 (172.17.170.2), 30 hops max, 40 byte packets
1 10.1.15.254 (10.1.15.254) 0.568 ms 0.752 ms 0.989 ms
2 * * *
3 * * *
4 * * *
5 * * *
6 * * *

 

I want the firewall to handle the routng..

1 REPLY 1
parnassus
Honored Contributor

Re: Switches Routing Issue

Double posting? my answer on your original thread here.