NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
Routing Question
I'm using the XS716T to create a small separate LAN in the company. The XS716T will connect several computers in groups of smaller networks, all isolated within VLAN's configured in the switch Each...
Hi JGrioni,
I am sorry for your issue. To me it looks like return route issue on your firewall, or port configuration (PVID, as CarlZhu indicated) issue on that port the firewall is connecting to.
Port configuration: when the firewall connects to VLAN 1, we need to check the port configuration on the switch. Does it match firewall LAN configuration? I am assuming all packets are tagged by the firewall, so XS716T port should be in Tagged mode, with no PVID.
Return routes: we need to check if firewall is correctly returning traffic to XS716T VLAN 1 and VLAN 2 IP interfaces (return static routes). If not, we need to configure these static routes accordingly on the firewall.
I have a last question: are we sure we want to enable Routing on XS716T? With routing enabled, all VLAN 1 nodes and VLAN 2 nodes can see each other, and ACLs will have to be used for access control and inter-VLAN security. If this is a small separate LAN in the company, maybe that switch should remain Layer 2 only, with routing on the firewall?
Either way we want to help you JGrioni: please give us an updtate. Next time we'll need the XS716T configuration file, as well as the firewall routing table and firewall LAN port configuration.
Regards,
Hi JGrioni,
Welcome to the community! :)
I'm not sure if this will help. However, kindly access the article below and it might be helpful with regard to your concern:
VLAN Routing on new Smart Switches
Regards,
DaneA
NETGEAR Community Team
Yes the article did help.
Although I'm familiar with networking, its terminology and its concepts, I was missing a few key thoughts when configuring the switch. The way the article was written, helped me understand a few concepts differently. I'll be circulating it internally with other folks to solidify some routing and switching concepts.
One thing it helped me with was to understand the concept of Next Hop and how it relates to the Gateway (page 8 indicated that the Gateway was also called the Next Hop Address).
What I'm still not understanding is what is meant in the XS716T User Manual when it says that the Maximum Number Hops is limited to one. Does this mean that the TTL value will only be decremented by 1 when a message goes through the switch if Routing is enabled? It certainly doesn't mean I can only have one gateway, since in my configuration I have placed many gateways to satisfy our routing needs.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
