HPE Community
Switching and Routing
1753773 Members
5170 Online
108799 Solutions
New Discussion юеВ

2910 - ssh Lan/VPN

 
GetItRight
Advisor

тАО10-19-2020 11:40 PM

тАО10-19-2020 11:40 PM

2910 - ssh Lan/VPN

I have a 2910 24 gb switch

I can putty from the server on the local lan to the switch, but I cannot putty from any other location (eg;vpn)

I can connect to all the other hp 3500/2510 switches via vpn, except this one.

Here's the bottom of a "show config".

ip default-gateway 192.168.5.1
ip routing
vlan 1
name "DEFAULT_VLAN"
untagged 1-24
ip address 192.168.5.230 255.255.255.0
exit
logging 10.10.1.26
logging facility local3
web-management ssl
ip route 0.0.0.0 0.0.0.0 10.15.1.231
snmp-server community "ANS-POE-SHRM-01" unrestricted
snmp-server contact "Bret Stern" location "Berkeley"
no autorun
password manager

 

Can ip route be the culprit...we have no 10..subnets?

 

0 Kudos
4 REPLIES 4
Ivan_B
HPE Pro

тАО10-20-2020 12:16 AM

тАО10-20-2020 12:16 AM

Re: 2910 - ssh Lan/VPN

Hi @GetItRight !

"ip route 0.0.0.0 0.0.0.0 10.15.1.231" - any reason why next-hop is different from the default gateway? I would modify the default route nex-hop target to "ip route 0.0.0.0 0.0.0.0 192.168.5.1" Just don't forget to delete the old record, otherwise you may get two next-hops, which is bad idea in your case. 

 

I am an HPE employee

Accept or Kudo

0 Kudos
GetItRight
Advisor

тАО10-20-2020 10:54 PM

тАО10-20-2020 10:54 PM

Re: 2910 - ssh Lan/VPN

Appreciate the notes

Looking for the routing table holding ip route 0.0.0.0 0.0.0.0 10.15.1.231

BKY-SHRM-POE(config)# show ip route

Destination Gateway VLAN Type Sub-Type Metric Dist.
------------------ --------------- ---- --------- ---------- ---------- -----
127.0.0.0/8 reject static 0 0
127.0.0.1/32 lo0 connected 1 0
192.168.5.0/24 DEFAULT_VLAN 1 connected 1 0

My first question is where do I find: ip route 0.0.0.0 0.0.0.0 10.15.1.231

can I just enter ip route 0.0.0.0 0.0.0.0 192.168.5.1  to set the default static route, or can I remove it altogether; would it then use the switch gateway as the route to my lan?

 

 

0 Kudos
GetItRight
Advisor

тАО10-20-2020 11:23 PM

тАО10-20-2020 11:23 PM

Re: 2910 - ssh Lan/VPN

I can now access the switch from anywhere on our vpn.

I entered

config

entered ip route 0.0.0.0/0 192.168.5.1

entered no ip route 0.0.0.0/0 10.15.1.231

write memory

Now show config tail reads

logging 10.10.1.26
logging facility local3
web-management ssl
ip route 0.0.0.0 0.0.0.0 192.168.5.1
snmp-server community "ANS-POE-SHRM-01" unrestricted
snmp-server contact "Bret Stern" location "Berkeley"
no autorun
password manager

 

0 Kudos
Ivan_B
HPE Pro

тАО10-21-2020 01:07 AM

тАО10-21-2020 01:07 AM

Re: 2910 - ssh Lan/VPN

The reason your previous default route was not installed in the routing table is simple - the next hop 10.15.1.231 declared in that route was not reachable and next hop reachability is one of pre-requisites for a route to be installed.

I am glad now it's working with the correct next hop!

 

I am an HPE employee

Accept or Kudo

0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.