HPE Community
LAN Routing
1752815 Members
5762 Online
108789 Solutions
New Discussion

VLAN Noob

 
SOLVED
Go to solution
PeterM-DK
Occasional Advisor

‎08-24-2021 12:33 AM - last edited on ‎08-24-2021 06:15 AM by

‎08-24-2021 12:33 AM - last edited on ‎08-24-2021 06:15 AM by

VLAN Noob

Hi

Im really poor at this and need some help

Having a Zyxel Router, using LAN1 with default VLAN, VLAN10 and VLAN20 on one cable

LAN1 DHCP 192.168.1.x, VLAN10 DHCP 192.168.100.x, VLAN20 DHCP 192.168.10.x

And connecting a 2620-48 

Port1 to Zyxel 

Port 2-12 is for AP's with Guest/Employee Wifi

Port13-24 for Employee LAN,

Port 25-36 for Guest LAN

Port 37-48 for Test LAN

Switch setting

VLAN1 port 1-24 untag, 25-48 Forbidden

VLAN10 port 1-12 tagged, port 13-24 forbidden, port 24-36 untagged, port 37-48 forbidden

VLAN20 port 1-12 tagged, port 13-36 forbidden, port 37-48 untagged

When connecting a laptop to

port 2-12 getting IP 192.168.1.x

port 13-24 getting IP 192.168.1.x

port 25-36 no IP

port 37-48 no IP

Where am I doing wrong ?

Regards

Peter

0 Kudos
10 REPLIES 10
akg7
HPE Pro

‎08-24-2021 12:39 AM - edited ‎08-24-2021 12:41 AM

‎08-24-2021 12:39 AM - edited ‎08-24-2021 12:41 AM

Re: VLAN Noob

Hello @PeterM-DK ,

 

What is router product number 'JXXXXX'?

 

On which switch port Zyxel Router is connecting?

In Aruba Tagged==Trunk Port and Untagged --Access port.

Thanks!

Note: While I am an HPE Employee, all of my comments (whether noted or not), are my own and are not any official representation of the companyAccept or Kudo
0 Kudos
PeterM-DK
Occasional Advisor

‎08-24-2021 12:43 AM

‎08-24-2021 12:43 AM

Re: VLAN Noob

The switch is J9626A

And router is connected to port 1 on switch

/Peter

0 Kudos
Ivan_B
HPE Pro

‎08-24-2021 12:43 AM

‎08-24-2021 12:43 AM

Re: VLAN Noob

Hi @PeterM-DK !

Not sure what did you do wrong since you didn't explain what you want to achieve. Also the relation between 'Employee LAN' (and other networks you describe) and VLANs is not clear.

When connecting a laptop to

port 2-12 getting IP 192.168.1.x
port 13-24 getting IP 192.168.1.x

That works as it should, because you have VLAN1 untagged on those ports:
VLAN1 port 1-24 untag, 25-48 Forbidden

port 25-36 no IP
port 37-48 no IP

Your laptop doesn't expect tagged traffic and doesn't tag its own traffic, so since there are no untagged VLANs on those ports, there is no communication allowed with your laptop.

 

 

I am an HPE employee

Accept or Kudo

0 Kudos
PeterM-DK
Occasional Advisor

‎08-24-2021 12:48 AM

‎08-24-2021 12:48 AM

Re: VLAN Noob

Ok, think You are getting me the right way.

Will try to untag port.

Will be back and thanks

 

0 Kudos
PeterM-DK
Occasional Advisor

‎08-24-2021 12:56 AM

‎08-24-2021 12:56 AM

Re: VLAN Noob

I might have given you wrong information

Port 25-36 is VLAN10 untagged, others forbidden

Port 37-48 is VLAN20 untagged, others forbidden

I want to connet AccessPoints to to ports 2-12, seperated into guest ( VLAN 10 )  and employee ( default VLAN )

 

0 Kudos
akg7
HPE Pro

‎08-24-2021 01:25 AM

‎08-24-2021 01:25 AM

Re: VLAN Noob

Hello @PeterM-DK ,

Laptops/Hosts conencting to port should be untagged.

Is this switch acting as DHCP server or client?

Can you share below commands output:

show run vlan 10

show run vlan 20

show dhcp-server

show dhcp-relay

 

Thanks!

Note: While I am an HPE Employee, all of my comments (whether noted or not), are my own and are not any official representation of the companyAccept or Kudo
0 Kudos
PeterM-DK
Occasional Advisor

‎08-24-2021 02:16 AM

‎08-24-2021 02:16 AM

Re: VLAN Noob

Zyxel router is DHCOP server

LAN1 ( default VLAN)  192.168.1.x

VLAN10 192.168.100.x

VLAN20 192.168.10.x

 

 

HP-2620-48# show run vlan 10

Running configuration:

vlan 10
name "vlan10"
tagged 1-12
untagged 25-36
forbid 13-24,37-48
no ip address
exit

 

HP-2620-48# show run vlan 20

Running configuration:

vlan 20
name "vlan20"
tagged 1-12
untagged 37-48
forbid 13-36
no ip address
exit

 

HP-2620-48# show dhcp-server

Configuration and Status - DHCP Server

DHCP Server Enabled : No
DHCPv4 Operational Status : Disabled
Traps Enabled : Yes
Persistent Lease Database : No
Conflict Logging Enabled : No
DHCP VLAN Interfaces :

HP-2620-48# show dhcp-relay

Status and Counters - DHCP Relay

DHCP Relay Agent : Enabled
DHCP Request Hop Count Increment : Enabled
Option 82 : Disabled
Response validation : Disabled
Option 82 handle policy : replace
Remote ID : mac

DHCP Relay Statistics:

Client Requests Server Responses

Valid Dropped Valid Dropped
---------- ---------- ---------- ----------
0 0 0 0

DHCP Relay Option 82 Statistics:

Client Requests Server Responses

Valid Dropped Valid Dropped
---------- ---------- ---------- ----------
0 0 0 0

 

 

 

0 Kudos
akg7
HPE Pro

‎08-24-2021 02:31 AM

‎08-24-2021 02:31 AM

Solution

Re: VLAN Noob

Hello @PeterM-DK ,

 

I believe you need to assign 'ip helper-address <server ip>'  under lvan 10 and vlan 20.

Thanks!

Note: While I am an HPE Employee, all of my comments (whether noted or not), are my own and are not any official representation of the companyAccept or Kudo
PeterM-DK
Occasional Advisor

‎08-24-2021 03:00 AM

‎08-24-2021 03:00 AM

Re: VLAN Noob

Hi again

Im getting closer, but my Windows PC never get the IP-address

Router log tells me 

DHCP server offered 192.168.10.100 to PEM-W11-II(80:6D:97:17:B5:8B)

DHCP server offered 192.168.100.100 to PEM-W11-II(80:6D:97:17:B5:8B)

 

 

 

 

 

0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.