“The resource assets in this website may include abbreviated and/or legacy terminology for HPE Aruba Networking products. See www.hpe.com for current and complete HPE Aruba Networking product lines and names.”

Do you have queries on HPE Aruba Networking Products? If so,read this

IP Routing - Routing Traffic to Meraki and Routing Traffic to a Fortigate

Good day

I need help with my config, my outline on my device is that we have the following : port 1 is plugged into the fortigate firewall that manages the VLAN

33, 34, and 98 and eth port 2 is going to a Meraki my config is as follows but I am not sure what I am doing wrong (as traffic is not communicating on vlan 35 voice), I tried running a traceroute's and pings to test before deployment but for some reason I think it could be my service policy that could be incorrect. the Maraki GW is 35.1 and the FW GW is 33.3

Running configuration:

; JL262A Configuration Editor; Created on release #WC.16.11.0001
; Ver #14:67.6f.f8.1d.9b.3f.bf.bb.ef.7c.59.fc.6b.fb.9f.fc.ff.ff.37.ef:44
hostname "DSSRSA-CPT-SW1"
module 1 type jl262a
class ipv4 "voip-meraki"
10 match ip 192.168.35.1 0.0.0.0 0.0.0.0 255.255.255.255
exit
policy pbr "route_voip-meraki"
10 class ipv4 "voip-meraki"
action ip next-hop 192.168.35.1
exit
exit
ip route 0.0.0.0 0.0.0.0 192.168.33.3
ip route 192.168.35.0 255.255.255.0 192.168.35.1
interface 1
name "FTG_FW"
exit
interface 2
name "voip_meraki"
exit
snmp-server community "public" unrestricted
snmp-server community "dssrsa-mon" operator unrestricted
snmp-server contact "iconis" location "CPT"
vlan 1
name "DEFAULT_VLAN"
untagged 29-52
tagged 1-28
ip address dhcp-bootp
ipv6 enable
ipv6 address dhcp full
exit
vlan 33
name "dssrsa-cpt-user"
untagged 1,3-23
ip address dhcp-bootp
voice
exit
vlan 34
name "dssrsa-cpt-wlan"
tagged 1,24
ip address dhcp-bootp
exit
vlan 35
name "dssrsa-cpt-voip"
untagged 2
tagged 1,3-23
ip address dhcp-bootp
service-policy "route_voip-meraki" in
exit
vlan 98
name "dssrsa-mgmt"
untagged 24
tagged 1
ip address 10.255.254.2 255.255.255.0
exit
spanning-tree
no tftp server
no autorun
no dhcp config-file-update
no dhcp image-file-update
no dhcp tr69-acs-url
password manager

Could you please help me as I need the VLAN traffic of phones to only communicate with the Meraki

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

IP Routing - Routing Traffic to Meraki and Routing Traffic to a Fortigate

IP Routing - Routing Traffic to Meraki and Routing Traffic to a Fortigate