HPE Community
HPE Aruba Networking & ProVision-based
1833514 Members
8134 Online
110061 Solutions
New Discussion

Re: HP 5412ZL Routing

 
yycsparks
Occasional Visitor

‎11-27-2012 11:32 PM

‎11-27-2012 11:32 PM

HP 5412ZL Routing

We have a requirement that I need some help with

Here is what we have:

 

vlan 1 - 10.10.10.x/24           Switch ip - 10.10.10.1

vlan 100 - 10.10.100.x/24   Switch ip - 10.10.100.2

vlan 110 - 10.10.110.x/24   Switch ip - 10.10.110.2

vlan 112 - 10.10.112.x/24   Switch ip - 10.10.112.2

 

On all vlan's the default gateway is the local switch ip and then we have a firewall on vlan 1 at ip 10.10.10.6 

On the Switch there is a static route of 0.0.0.0 / 0.0.0.0 GW 10.10.10.6

 

What we have added is routers on each vlan for internet that we would like to route to.

vlan 100 - 10.10.100.5

vlan 110 - 10.10.110.5

vlan 112 - 10.10.112.5

 

So desired out come is that client routing for inter-vlan traffic remains on the switch but that for internet traffic each vlan would use the .5 address in the local subnet for internet access. 

 

Thanks for the help.

0 Kudos
6 REPLIES 6
Michael_Breuer
Esteemed Contributor

‎11-28-2012 05:14 AM

‎11-28-2012 05:14 AM

Re: HP 5412ZL Routing

Hello,

 

you should take into consideration that it is not a good network design to have severaly gateways in a client subnet. You may face problems concerning redirects and asymetrical routing.  I would rather put all gateways into one "transfer" network - let's say 10.10.99.0/24 which is a vlan 99 on your 5400 switch.

In such network you can have multiple internet routers on that network  - let's say 10.10.99.100 for VLAN 100, 10.10.99.110 for VLAN 110 and so on. Using policy based routing feature you can use these gateway based on source IP addresses.

 

For example:

Client 10.10.100.123 is using router 10.10.99.100 

Client 10.10.110.123 is using router 10.10.99.110 and so on

 

If you are running K.15.08.XX you can use these route policies:

 

for details see page 4-145  http://bizsupport2.austin.hp.com/bc/docs/support/SupportManual/c03277344/c03277344.pdf 

 

Cheers,

 

Michael

Ingentive Networks - www.ingentive.net

 

Ingentive Networks GmbH
0 Kudos
yycsparks
Occasional Visitor

‎11-28-2012 08:20 AM

‎11-28-2012 08:20 AM

Re: HP 5412ZL Routing

Yeah you look to be correct, Policy Based routing looks to be what I need, the problem is that it looks like the modules need to be version 2.

 

Do you know if all moduels need to be version 2 in the switch with PBR enabled?

 

0 Kudos
BGraham_1
Frequent Advisor

‎11-28-2012 08:38 AM

‎11-28-2012 08:38 AM

Re: HP 5412ZL Routing

You could also set up routes on the firewall for the other VLANs IP ranges back to 10.10.0.1.

That way it will route internally for the internal networks and use the default gateay for anything else.

 

Bob

0 Kudos
paulgear
Esteemed Contributor

‎11-28-2012 03:50 PM

‎11-28-2012 03:50 PM

Re: HP 5412ZL Routing

... where "problems concerning redirects" means: Windows will ignore ICMP redirects even when it shouldn't (i.e. from its own default gateway), which means you have to update firewalls on all your Windows machines.  :-(

Regards,
Paul
0 Kudos
Michael_Breuer
Esteemed Contributor

‎11-29-2012 06:36 AM

‎11-29-2012 06:36 AM

Re: HP 5412ZL Routing

Indeed, PBR (policy based routing) is only supported in a switch using V2 modules only.

Page 3 foot note : http://h20195.www2.hp.com/v2/GetPDF.aspx/4AA2-9182ENW.pdf

 

Cheers,

 

Michael

Ingentive Networks GmbH
0 Kudos
Rich R_1
Advisor

‎12-01-2012 12:14 PM

‎12-01-2012 12:14 PM

Re: HP 5412ZL Routing

+1 for Policy based routes...work great.

0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.