SOLVED
Hi,
Can you explain issue in detail, are you changing VLNA 10 IP to VLAN 1?
Thanks!
Hi @adeplast !
First you need to change VLAN 10 ip - it must be from the same subnet with your firewall, only then the outgoing interface of the static route will be VLAN 10. Now your firewall 10.84.128.4 is in the range of subnet of VLAN 1, therefore the outgoing interface of the static route is VLAN 1.
I understand it, but here is the thing - if you want VLAN 10 to face your firewall (e.g. VLAN 10 to be outfoing L3 interface for your static route) it MUST be in 110.84.128.0 255.255.248.0 subnet. I already explained it in my previous message - if your static route uses as next-hop 10.84.128.4 address, the outgoing L3 interface will be the L3 interface in the same subnet. Adjacent L3 devices (Firewall and routing switch) should be connected by interfaces from the same IP subnet, this is the rule you cannot override, this is from "Networking 101" course
If your firewall is 10.84.128.4 and IF subnet on the firewall is set to 255.255.255.248, then you can assign any IP to VLAN 10 interface from the range 10.84.128.1 - 10.84.128.6 except 10.84.128.4
"The IP address (or subnet) 10.110.213.18/29 already exists." means that you have other VLAN with this subnet assigned. Which won't work, in one routing table you can have only one L3 interface with particular subnet. You need to rework your IP subnetting scheme if you really need to connect VLAN 10 to the firewall. Either change subnet on the firewall or align your IP configuration on the switch according firewall's settings.