- Community Home
- >
- Networking
- >
- Switching and Routing
- >
- LAN Routing
- >
- Re: ACL/route issue on HP 2920
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
09-15-2016 08:43 PM
09-15-2016 08:43 PM
ACL/route issue on HP 2920
Hi all,
I have a question below/attached you will see 3 configs for switches..one of the switches is doing the interVLAN routing. my problem is this. the DHCP is located behind my LAN/VLAN1...so all the VLANS woudl get their DHCP from the the windows DHCP server. im trying to implement it where the VLANS cant communicate with each other but this will be diffuclt to do if a reject route is put in place. If such route is put in place the clients will not receive a valid lease from DHCP....can anything else be done?
all help is appreciated.
thank you
Last login: Thu Sep 15 22:17:56 on ttys001
Josephs-MacBook-Pro:~ josephmathew$ telnet 192.168.4.104
Trying 192.168.4.104...
Connected to 192.168.4.104.
Escape character is '^]'.
HP J9727A 2920-24G-PoE+ Switch
Software revision WB.15.11.0007
Copyright (C) 1991-2013 Hewlett-Packard Development Company, L.P.
RESTRICTED RIGHTS LEGEND
Confidential computer software. Valid license from HP required for possession,
use or copying. Consistent with FAR 12.211 and 12.212, Commercial Computer
Software, Computer Software Documentation, and Technical Data for Commercial
Items are licensed to the U.S. Government under vendor's standard commercial
license.
HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P.
20555 State Highway 249, Houston, TX 77070
We'd like to keep you up to date about:
* Software feature updates
* New product announcements
* Special events
Please register your products now at: www.hp.com/networking/register
Username: manager
Password:
9301 SOUTHWEST# show vlans
Status and Counters - VLAN Information
Maximum VLANs to support : 256
Primary VLAN : DEFAULT_VLAN
Management VLAN :
VLAN ID Name | Status Voice Jumbo
------- -------------------------------- + ---------- ----- -----
1 DEFAULT_VLAN | Port-based Yes No
100 VLAN100 | Port-based No No
9301 SOUTHWEST# show run
Running configuration:
; J9727A Configuration Editor; Created on release #WB.15.11.0007
; Ver #03:12.15.0d:09
hostname "9301 SOUTHWEST"
module 1 type j9727a
qos type-of-service diff-services
timesync sntp
sntp unicast
sntp 30
sntp server priority 1 206.108.0.132
time timezone -360
ip default-gateway 192.168.4.1
ip route 0.0.0.0 0.0.0.0 192.168.4.1
ip routing
interface 17
rate-limit all in kbps 10240
rate-limit all out kbps 10240
exit
snmp-server community "public" unrestricted
snmp-server contact "JOSEPH MATHEW"
oobm
ip address dhcp-bootp
exit
vlan 1
name "DEFAULT_VLAN"
no untagged 17
untagged 1-16,18-24,A1-A2,B1-B2
ip address 192.168.4.104 255.255.255.0
qos dscp 101110
voice
exit
vlan 100
name "VLAN100"
untagged 17
tagged 11,22-23
ip address 192.168.100.100 255.255.255.0
ip helper-address 192.168.3.215
exit
password manager
9301 SOUTHWEST# show lldp info remote-device
LLDP Remote Devices Information
LocalPort | ChassisId PortId PortDescr SysName
--------- + ------------------------- ------ --------- ----------------------
11 | 88 15 44 5d fa d0 0 eth0 6SERVER
11 | 8815445dfad0 Port 0
22 | b0 5a da 2e 08 c0 15 15 HP-2920-24G-PoEP
9301 SOUTHWEST# show lldp info remote-device 22
LLDP Remote Device Information Detail
Local Port : 22
ChassisType : mac-address
ChassisId : b0 5a da 2e 08 c0
PortType : local
PortId : 15
SysName : HP-2920-24G-PoEP
System Descr : HP J9727A 2920-24G-PoE+ Switch, revision WB.15.12.0015, R...
PortDescr : 15
Pvid : 1
System Capabilities Supported : bridge, router
System Capabilities Enabled : bridge
Remote Management Address
Type : ipv4
Address : 192.168.4.78
Poe Plus Information Detail
Poe Device Type : Type2 PSE
Power Source : Unknown
Power Priority : Unknown
Requested Power Value : 0 Watts
Actual Power Value : 0 Watts
9301 SOUTHWEST#
show run
Running configuration:
; J9727A Configuration Editor; Created on release #WB.15.11.0007
; Ver #03:12.15.0d:09
hostname "9301 SOUTHWEST"
module 1 type j9727a
qos type-of-service diff-services
timesync sntp
sntp unicast
sntp 30
sntp server priority 1 206.108.0.132
time timezone -360
ip default-gateway 192.168.4.1
ip route 0.0.0.0 0.0.0.0 192.168.4.1
ip routing
interface 17
rate-limit all in kbps 10240
rate-limit all out kbps 10240
exit
snmp-server community "public" unrestricted
snmp-server contact "JOSEPH MATHEW"
oobm
ip address dhcp-bootp
exit
vlan 1
name "DEFAULT_VLAN"
no untagged 17
untagged 1-16,18-24,A1-A2,B1-B2
ip address 192.168.4.104 255.255.255.0
qos dscp 101110
voice
exit
vlan 100
name "VLAN100"
untagged 17
tagged 11,22-23
ip address 192.168.100.100 255.255.255.0
ip helper-address 192.168.3.215
exit
Last login: Thu Sep 15 22:01:17 on ttys000
Josephs-MacBook-Pro:~ josephmathew$ telnet 192.168.4.78
Trying 192.168.4.78...
Connected to 192.168.4.78.
Escape character is '^]'.
HP J9727A 2920-24G-PoE+ Switch
Software revision WB.15.12.0015
Copyright (C) 1991-2014 Hewlett-Packard Development Company, L.P.
RESTRICTED RIGHTS LEGEND
Confidential computer software. Valid license from HP required for possession,
use or copying. Consistent with FAR 12.211 and 12.212, Commercial Computer
Software, Computer Software Documentation, and Technical Data for Commercial
Items are licensed to the U.S. Government under vendor's standard commercial
license.
HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P.
20555 State Highway 249, Houston, TX 77070
We'd like to keep you up to date about:
* Software feature updates
* New product announcements
* Special events
Please register your products now at: www.hp.com/networking/register
Press any key to continue
Your previous successful login (as manager) was on 1990-04-29 07:12:08
from 192.168.3.151
HP-2920-24G-PoEP# show vlans
Status and Counters - VLAN Information
Maximum VLANs to support : 256
Primary VLAN : DEFAULT_VLAN
Management VLAN :
VLAN ID Name | Status Voice Jumbo
------- -------------------------------- + ---------- ----- -----
1 DEFAULT_VLAN | Port-based No No
20 WAP | Port-based No No
100 VLAN100 | Port-based No No
156 CAMERA | Port-based No No
HP-2920-24G-PoEP# show vlan 156
Status and Counters - VLAN Information - VLAN 156
VLAN ID : 156
Name : CAMERA
Status : Port-based
Voice : No
Jumbo : No
Port Information Mode Unknown VLAN Status
---------------- -------- ------------ ----------
HP-2920-24G-PoEP# config
HP-2920-24G-PoEP(config)# vlan 156 name
ASCII-STR Enter an ASCII string.
HP-2920-24G-PoEP(config)# vlan 156 name
Incomplete input: name
HP-2920-24G-PoEP(config)# vlan 156 name VLAN156
HP-2920-24G-PoEP(config)# show vlans
Status and Counters - VLAN Information
Maximum VLANs to support : 256
Primary VLAN : DEFAULT_VLAN
Management VLAN :
VLAN ID Name | Status Voice Jumbo
------- -------------------------------- + ---------- ----- -----
1 DEFAULT_VLAN | Port-based No No
20 WAP | Port-based No No
100 VLAN100 | Port-based No No
156 VLAN156 | Port-based No No
HP-2920-24G-PoEP(config)# show run
Running configuration:
; J9727A Configuration Editor; Created on release #WB.15.12.0015
; Ver #05:18.41.ff.35.0d:9b
hostname "HP-2920-24G-PoEP"
module 1 type j9727a
ip default-gateway 192.168.4.104
snmp-server community "public" unrestricted
oobm
ip address dhcp-bootp
exit
vlan 1
name "DEFAULT_VLAN"
untagged 1-24,A1-A2,B1-B2
ip address dhcp-bootp
exit
vlan 20
name "WAP"
no ip address
exit
vlan 100
name "VLAN100"
tagged 12,15-16
no ip address
ip helper-address 192.168.4.1
ip helper-address 192.168.3.215
exit
vlan 156
name "VLAN156"
no ip address
exit
HP-2920-24G-PoEP(config)#
HP-2920-24G-PoEP(config)#
HP-2920-24G-PoEP(config)#
HP-2920-24G-PoEP(config)# show lldp info remote-device
LLDP Remote Devices Information
LocalPort | ChassisId PortId PortDescr SysName
--------- + ------------------------- ------ --------- ----------------------
2 | 88 15 44 5f 17 c0 0 eth0 AP-6B
2 | 8815445f17c0 Port 0
6 | 88 15 44 5f 56 d0 0 eth0 AP-1B
6 | 8815445f56d0 Port 0
8 | 192.168.4.40 00 ... LAN Port NEC IP Phone
8 | 192.168.4.136 00 ... LAN Port NEC IP Phone
8 | 192.168.4.118 00 ... LAN Port NEC IP Phone
10 | APd46d.50eb.b39c Gig...
10 | f4 cf e2 66 9c 50 Gi0 Gigabi... APd46d.50eb.b39c.sp...
12 | 00 18 0a 79 fc e5 0 eth0 AP-4A
12 | 00180a79fce5 Port 0
15 | c4 34 6b 91 3f c0 22 22 9301 SOUTHWEST
16 | b0 5a da 29 d6 00 6 6 HP-2920-24G-PoEP
HP-2920-24G-PoEP(config)# show run
Running configuration:
; J9727A Configuration Editor; Created on release #WB.15.12.0015
; Ver #05:18.41.ff.35.0d:9b
hostname "HP-2920-24G-PoEP"
module 1 type j9727a
ip default-gateway 192.168.4.104
snmp-server community "public" unrestricted
oobm
ip address dhcp-bootp
exit
vlan 1
name "DEFAULT_VLAN"
untagged 1-24,A1-A2,B1-B2
ip address dhcp-bootp
exit
vlan 20
name "WAP"
no ip address
exit
vlan 100
name "VLAN100"
tagged 12,15-16
no ip address
ip helper-address 192.168.4.1
ip helper-address 192.168.3.215
exit
vlan 156
name "VLAN156"
no ip address
exit
HP-2920-24G-PoEP(config)#
HP-2920-24G-PoEP(config)#
HP-2920-24G-PoEP(config)# show lldp info remote-device
LLDP Remote Devices Information
LocalPort | ChassisId PortId PortDescr SysName
--------- + ------------------------- ------ --------- ----------------------
2 | 88 15 44 5f 17 c0 0 eth0 AP-6B
2 | 8815445f17c0 Port 0
6 | 88 15 44 5f 56 d0 0 eth0 AP-1B
6 | 8815445f56d0 Port 0
8 | 192.168.4.40 00 ... LAN Port NEC IP Phone
8 | 192.168.4.136 00 ... LAN Port NEC IP Phone
8 | 192.168.4.118 00 ... LAN Port NEC IP Phone
10 | APd46d.50eb.b39c Gig...
10 | f4 cf e2 66 9c 50 Gi0 Gigabi... APd46d.50eb.b39c.sp...
12 | 00 18 0a 79 fc e5 0 eth0 AP-4A
12 | 00180a79fce5 Port 0
15 | c4 34 6b 91 3f c0 22 22 9301 SOUTHWEST
16 | b0 5a da 29 d6 00 6 6 HP-2920-24G-PoEP
HP-2920-24G-PoEP(config)# show lldp info remote-device 16
LLDP Remote Device Information Detail
Local Port : 16
ChassisType : mac-address
ChassisId : b0 5a da 29 d6 00
PortType : local
PortId : 6
SysName : HP-2920-24G-PoEP
System Descr : HP J9727A 2920-24G-PoE+ Switch, revision WB.15.16.0004, R...
PortDescr : 6
Pvid : 1
System Capabilities Supported : bridge, router
System Capabilities Enabled : bridge
Remote Management Address
Type : ipv4
Address : 192.168.4.37
Poe Plus Information Detail
Poe Device Type : Type2 PSE
Power Source : Unknown
Power Priority : Unknown
Requested Power Value : 0 Watts
Actual Power Value : 0 Watts
HP-2920-24G-PoEP(config)#
HP-2920-24G-PoEP(config)# show lldp info remote-device
LLDP Remote Devices Information
LocalPort | ChassisId PortId PortDescr SysName
--------- + ------------------------- ------ --------- ----------------------
2 | 88 15 44 5f 17 c0 0 eth0 AP-6B
2 | 8815445f17c0 Port 0
6 | 88 15 44 5f 56 d0 0 eth0 AP-1B
6 | 8815445f56d0 Port 0
8 | 192.168.4.40 00 ... LAN Port NEC IP Phone
8 | 192.168.4.136 00 ... LAN Port NEC IP Phone
8 | 192.168.4.118 00 ... LAN Port NEC IP Phone
10 | APd46d.50eb.b39c Gig...
10 | f4 cf e2 66 9c 50 Gi0 Gigabi... APd46d.50eb.b39c.sp...
12 | 00 18 0a 79 fc e5 0 eth0 AP-4A
12 | 00180a79fce5 Port 0
15 | c4 34 6b 91 3f c0 22 22 9301 SOUTHWEST
16 | b0 5a da 29 d6 00 6 6 HP-2920-24G-PoEP
HP-2920-24G-PoEP(config)#
HP-2920-24G-PoEP(config)# show lldp info remote-device 12
LLDP Remote Device Information Detail
Local Port : 12
ChassisType : mac-address
ChassisId : 00 18 0a 79 fc e5
PortType : inte...
PortId : 0
SysName : AP-4A
System Descr : Meraki MR18 Cloud Managed AP
PortDescr : eth0
Pvid :
System Capabilities Supported : wlan-access-point
System Capabilities Enabled : wlan-access-point
Remote Management Address
------------------------------------------------------------------------------
Local Port : 12
ChassisType : local
ChassisId : 00180a79fce5
PortType : local
PortId : Port 0
SysName :
System Descr : 1Meraki MR18 Cloud M
PortDescr :
Pvid :
System Capabilities Supported : bridge, router
System Capabilities Enabled : bridge, router
Remote Management Address
Type : ipv4
Address : 192.168.4.34
HP-2920-24G-PoEP(config)#
HP-2920-24G-PoEP(config)# show run
Running configuration:
; J9727A Configuration Editor; Created on release #WB.15.12.0015
; Ver #05:18.41.ff.35.0d:9b
hostname "HP-2920-24G-PoEP"
module 1 type j9727a
ip default-gateway 192.168.4.104
snmp-server community "public" unrestricted
oobm
ip address dhcp-bootp
exit
vlan 1
name "DEFAULT_VLAN"
untagged 1-24,A1-A2,B1-B2
ip address dhcp-bootp
exit
vlan 20
name "WAP"
no ip address
exit
vlan 100
name "VLAN100"
tagged 12,15-16
no ip address
ip helper-address 192.168.4.1
ip helper-address 192.168.3.215
exit
vlan 156
name "VLAN156"
no ip address
exit
HP-2920-24G-PoEP(config)#
HP-2920-24G-PoEP(config)#
HP-2920-24G-PoEP(config)#
show run
Running configuration:
; J9727A Configuration Editor; Created on release #WB.15.12.0015
; Ver #05:18.41.ff.35.0d:9b
hostname "HP-2920-24G-PoEP"
module 1 type j9727a
ip default-gateway 192.168.4.104
snmp-server community "public" unrestricted
oobm
ip address dhcp-bootp
exit
vlan 1
name "DEFAULT_VLAN"
untagged 1-24,A1-A2,B1-B2
ip address dhcp-bootp
exit
vlan 20
name "WAP"
no ip address
exit
vlan 100
name "VLAN100"
tagged 12,15-16
no ip address
ip helper-address 192.168.4.1
ip helper-address 192.168.3.215
exit
vlan 156
name "VLAN156"
no ip address
exit
HP-2920-24G-PoEP(config)#
HP-2920-24G-PoEP(config)#
HP-2920-24G-PoEP(config)#
HP-2920-24G-PoEP(config)#
HP-2920-24G-PoEP(config)#
HP-2920-24G-PoEP(config)#
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
09-25-2016 11:14 AM
09-25-2016 11:14 AM
Re: ACL/route issue on HP 2920
On L3 switch, create ACL to allow DHCP , and block all inter-VLAN traffic