Switches, Hubs, and Modems
cancel
Showing results for 
Search instead for 
Did you mean: 

Inter vlan routing vs default routing.

IK_2
Occasional Visitor

Inter vlan routing vs default routing.

Hello,

I have a procurve switch 3500yl-48G and I need to enable inter vlan routing AND default GW.
My lab is as follows:
- my PC is on vlan 1
- in procurve, both vlan 1 and vlan 100 exist and both vlans have an IP.
- I have a firewall in vlan 1.

So, when I have both "ip routing" and "ip route 0.0.0.0 0.0.0.0 IP_of_FW" I have internet on my PC, but I cannot ping the vlan 100 IP on the procurve.
When I take out the "ip route 0.0.0.0 0.0.0.0 IP_of_FW", of course I do not have internet, but I can ping the vlan 100 IP on the procurve.

How can I have both working? I do not want to use the FW to do the routing between the vlans... Also, I have tried the ip default-gateway command, with no luck.

Thank you.
7 REPLIES
Mohieddin Kharnoub
Honored Contributor

Re: Inter vlan routing vs default routing.

Hi

Your setup is excellent, but you missed to add a route back from the Firewall to Vlan100, because just think about it, how the firewall knows about Vlan100 and its not directly connected to it.

add a static route to your firewall with these parameters:

route to network (Vlan100 IP address)
Mask (Vlan100 mask)
Gateway (Vlan1 IP address on your 3500 switch)

Good Luck !!!
Science for Everyone
IK_2
Occasional Visitor

Re: Inter vlan routing vs default routing.

Thank you for your reply, but I do not want to do this ping pong for a known vlan IP by the procurve.
I am used to cisco and there the directly connected networks take preference over the default gw.
How can I do the same with procurve?

Dmitry G. Spitsyn
Trusted Contributor

Re: Inter vlan routing vs default routing.

Hi !

Your procurve 3500yl works as a router, using STATIC routing table in this case.
It has no chance to notify your firewall about routes to ip addresses of it's own vlans (vlan 1 and vlan 100 in this case).
The only way to do that is to configure the routes manually on your firewall (as Mohiedin wrote). Otherwise the firewall will not be able to return inbound traffic into vlan 100 on your procurve 3500yl.
Default gateway is required for hosts (or Level 2 managed switches).
Routers use default routes.

Good luck,
Dmitry
IK_2
Occasional Visitor

Re: Inter vlan routing vs default routing.

From what I understand, procurves need another routing devise to work as routers...
My problem is the physical distance between the procurve and the FW...
Anyhow. I will try to leave with this and not to use "ip route 0.0.0.0 0.0.0.0 IP_of_FW". Only static routes...

Thank you for your replies.
Dmitry G. Spitsyn
Trusted Contributor

Re: Inter vlan routing vs default routing.

Hi, IK !

I think there is some misunderstanding.
Your 3500yl CAN WORK as a dynamic router.
You should enable and configure an appropriate routing protocol on it.
It supports both RIP and OSPF.

Good luck,
Dmitry
IK_2
Occasional Visitor

Re: Inter vlan routing vs default routing.

I guess this will work, but I would prefer to implement statisc routes...
Anyway, I will use proxy servers for internet browsing...

Thank you.
IK_2
Occasional Visitor

Re: Inter vlan routing vs default routing.

So. no solution to my case... only workarround.

Thank you all for your replies!