HPE Community
HPE Aruba Networking & ProVision-based
1832964 Members
2729 Online
110048 Solutions
New Discussion

Re: E2610 basic layer 3 vlan routing issue

 
d2haveQ
New Member

‎12-15-2011 10:51 AM

‎12-15-2011 10:51 AM

E2610 basic layer 3 vlan routing issue

Hi

 

some vlan routing issue here

 

vlan 1

ip address 192.168.1.2 255.255.255.0

 

vlan80

ip address 10.0.99.254255.255.255.0

 

ip routing is turn on

 

ip route 0.0.0.0 0.0.0.0 192.168.1.1

 

ok, now

vlan 1 192.168.1.0 network can ping to vlan80  10.0.99.0 network

vlan 80 10.0.99.0 network can ping to vlan 1  192.168.1.0 network

vlan 1 192.168.1.0 network can go to internet through default route gateway which is 192.168.1.2

 

my question is

vlan 80 unable to go to internet through 192.168.1.2

1 - should there any other config required for my vlan80 network to be able route to firewall 192.168.1.2 to surf internet?

2 - can the vlan 80 network first route to vlan 1 network, then from there route out to 192.168.1.2 to outside network?

3 - what should i do? the issue simpy vlan 80 cannot surft net, my firewall have other interal port, should i create another gateway for vlan 80 network? if yes what command to put to direct vlan80 network through another firewall gateway?

0 Kudos
3 REPLIES 3
BGraham_1
Frequent Advisor

‎12-16-2011 07:18 AM

‎12-16-2011 07:18 AM

Re: E2610 basic layer 3 vlan routing issue

1 - Your switch config should work.

 

2 - If I understand you correctly, the 2610 would need to be able to do Network Address Translation, which it cannot.

 

3 - I would verify that your firewall allows traffic from the 10.0.99.254.0/24 network. It will also need to NAT these addresses. By default, the firewall should translate the addresses from it's inside network. If other networks are being routed through the firewall, additional setup is usually required.

 

 

I hope this helps.

0 Kudos
MarJ
Advisor

‎12-17-2011 03:25 AM

‎12-17-2011 03:25 AM

Re: E2610 basic layer 3 vlan routing issue

HI

 

if Your firewall is nating internet connection as 192.168.1.0 network, you are unable to go outside gateway 192.168.1.2 with ip address of network 10.0.99.0 becouse your internet gateway dosnt know that network.

You have to nat that network to go outside.

 

0 Kudos
Mark Wibaux
Trusted Contributor

‎12-18-2011 02:37 PM

‎12-18-2011 02:37 PM

Re: E2610 basic layer 3 vlan routing issue

The most likely scenario is that your router has no idea how to get to the 10.0.99.0/24 network.

 

Have you put a route in the Internet router it that tells it to get to this network via 192.168.1.2?

0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.