- Community Home
- >
- Networking
- >
- Switching and Routing
- >
- Comware Based
- >
- Re: VLAN Communication in same switch (2920)
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-01-2014 03:54 PM
тАО08-01-2014 03:54 PM
VLAN Communication in same switch (2920)
Hi everyone,
I'm new on switching i've the basic knowledge on VLAN's. i'm tested my configuration but i think that is wrong because if i do a ping from PC1 to PC2 i've response. I don't want communication between that host
VLAN 1 - IP 192.168.1.1 (port 1-10 untagged)
VLAN 2 - IP 192.168.2.1 (port 11-20 untagged)
PC1 in VLAN 1 - IP 192.168.1.10 gateway 192.168.1.1
PC2 in VLAN 2 - IP 192.168.2.10 gateway 192.168.2.1
The routing is enable and i have a route static for internet 192.168.1.254.
What can i do?
Regards!!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-02-2014 08:29 AM
тАО08-02-2014 08:29 AM
Re: VLAN Communication in same switch (2920)
So in your case, remove the ip for one (or both) of your vlans and your L3-switch wont route between the vlans (even if you have ip routing enabled).
Also note that you shouldnt use vlan 1 for anything.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-03-2014 04:16 PM
тАО08-03-2014 04:16 PM
Re: VLAN Communication in same switch (2920)
So there are a number of ways to have your two subnets but not route between them:
1/ With the config you have right now, add in an access list on at least one of the VLAN interfaces which denies traffic from one subnet to the other.
HOWEVER, this will break your second subnet's access to the internet, because you've put the internet on VLAN1.
2/ Keep the existing config, configure the access list(s), but change the internet router address to be in a 3rd entirely separate subnet.
3/ Remove both IP addresses from the switch. Create a new subinterface on the router and put 192.168.2.1 on it. Configure at least one access list separating the two subnets.