Two vlan with one VRF

icekeki0127 · May 12, 2022, 1:58pm

Hello experts,

I would like to know if it works.

Access switch - floor2
e2/2 → vlan 999
e/0/1 → Trunk

SYD01 - Distro
e0/1 → Trunk
VRF name → Public
Interface vlan 254 and 999 belongs to VRF public
OSPF is configured via interface vlan 254

SYD01
f3/0 → Trunk
OSPF is configured via f3/0.254

SYD01-Distro status
SYD01-Distro#show ip ospf neighbor

Neighbor ID     Pri   State           Dead Time   Address         Interface
3.3.3.200         0   FULL/  -        00:00:09    3.3.3.200       Vlan254

Routing table
SYD01-Distro#show ip route vrf public

      3.0.0.0/8 is variably subnetted, 2 subnets, 2 masks
C        3.3.3.0/24 is directly connected, Vlan254
L        3.3.3.254/32 is directly connected, Vlan254
      7.0.0.0/8 is variably subnetted, 2 subnets, 2 masks
C        7.7.7.0/24 is directly connected, Vlan999
L        7.7.7.1/32 is directly connected, Vlan999
      8.0.0.0/8 is variably subnetted, 2 subnets, 2 masks
C        8.8.8.0/24 is directly connected, Vlan999
L        8.8.8.1/32 is directly connected, Vlan999

Forwarding table
SYD01-Distro#show ip cef vrf public
Prefix               Next Hop             Interface
0.0.0.0/0            no route
0.0.0.0/8            drop
0.0.0.0/32           receive
3.3.3.0/24           attached             Vlan254
3.3.3.0/32           receive              Vlan254
3.3.3.200/32         attached             Vlan254
3.3.3.254/32         receive              Vlan254
3.3.3.255/32         receive              Vlan254
7.7.7.0/24           attached             Vlan999
7.7.7.0/32           receive              Vlan999
7.7.7.1/32           receive              Vlan999
7.7.7.7/32           attached             Vlan999
7.7.7.255/32         receive              Vlan999
8.8.8.0/24           attached             Vlan999
8.8.8.0/32           receive              Vlan999
8.8.8.1/32           receive              Vlan999
8.8.8.255/32         receive              Vlan999
127.0.0.0/8          drop
224.0.0.0/4          drop
224.0.0.0/24         receive
240.0.0.0/4          drop
Prefix               Next Hop             Interface


SYD01 status
SYD01#show ip ospf  neighbor

Neighbor ID     Pri   State           Dead Time   Address         Interface
3.3.3.254         0   FULL/  -        00:00:10    3.3.3.254       FastEthernet3/0.254

SYD01#show ip route

      1.0.0.0/8 is variably subnetted, 2 subnets, 2 masks
C        1.1.1.0/24 is directly connected, FastEthernet3/0.10
L        1.1.1.200/32 is directly connected, FastEthernet3/0.10
      2.0.0.0/8 is variably subnetted, 2 subnets, 2 masks
C        2.2.2.0/24 is directly connected, FastEthernet3/0.20
L        2.2.2.200/32 is directly connected, FastEthernet3/0.20
      3.0.0.0/8 is variably subnetted, 2 subnets, 2 masks
C        3.3.3.0/24 is directly connected, FastEthernet3/0.254
L        3.3.3.200/32 is directly connected, FastEthernet3/0.254
      7.0.0.0/24 is subnetted, 1 subnets
O        7.7.7.0 [110/2] via 3.3.3.254, 00:19:45, FastEthernet3/0.254
      8.0.0.0/24 is subnetted, 1 subnets
O        8.8.8.0 [110/2] via 3.3.3.254, 00:19:45, FastEthernet3/0.254
      100.0.0.0/8 is variably subnetted, 2 subnets, 2 masks
C        100.100.100.0/24 is directly connected, GigabitEthernet0/0
L        100.100.100.1/32 is directly connected, GigabitEthernet0/0
S     200.200.200.0/24 [1/0] via 100.100.100.2

When I ping from PC3 (7.7.7.7) to 3.200.200.200 , packets do not go though the SYD01-Distro.
Is it possible to configure this?

Many thanks!!
DY

lagapidis · May 21, 2022, 9:47am

Hello DY

First of all, there is no 3.200.200.200 address in your topology, so I assume you meant 3.3.3.200.

Now for PC 3, the default gateway should be 7.7.7.1 which is the IP address assigned to VLAN999 within the Distro switch. But I see in the config that you’ve configured VLAN 999 with two IP addresses. Is there an error in one of the configs because if you issue the following commands:

ip address 7.7.7.1 255.255.255.0
ip address 8.8.8.1 255.255.255.0

on an interface, the second command will replace the first. But I also see that you have the same config with the secondary keyword which is correct. Just check there to be sure the command is correct. In any case, you have a single VRF in the distro switch so you should be OK there.

Other than that I don’t initially see any problems with your configuration. You can do some troubleshooting to see where the ping fails. See if it reaches the destination, and maybe it can’t make its way back. When you determine where in the path the packet is dropped, it will be easier to determine the reason for the failure.

Also, take a look at this lesson on VRFs and the configuration of OSPF, it may be useful.

I hope this has been helpful!

Laz

icekeki0127 · May 21, 2022, 3:33pm

Hello Lazaros,

Sorry for making you all confused and,
Many thanks for your reply and I really really really appreciate it.
Frankly speaking, I had been waiting for any responses for few days and I understood that I could not provide you all with enough information and that was why.

Anyway, I figured it out 2days ago after I tried to find out what the problem was for the past few days.,

In the long run , you are right, there was no any wrong configuration or something else.
I am using GNS3 at the moment and I really really want to let you all people who are using GNS now, please do not rely on it.

Previous version : i86bi-linux-l2-adventerprisek9-15.1a
Current version : i86bi-linux-l2-adventerprisek9-15.2d

15.2d did not work but 15.1a does work , some options are not supported with the latest version ,so
Please please do not depend on it.

Many thank!!
DY

lagapidis · May 23, 2022, 11:14am

Hello DY

Thanks for giving us an update! Yes, unfortunately, there are cases where GNS3 does cause some problems. It’s good to know where this occurs, and having you share with us your experience makes it helpful for all those reading these threads in the future.

Thanks for sharing your findings!

Laz