NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
Vlan routing M5300 / GS724T
Hello,
I'm planning to split my network in multiples Vlans. I want to use my M5300 to do the vlan routing but i encounter an issue, i can't ping my vlan interface.
I'm doing test on M5300 (11.0.0.23) and a GS724Tv3 (5.4.2.25)
The vlans are set on the GS724T and the M5300 deal with the routing
GS724T :
Vlan 1:
Untagged : 16-23 pvid 1 16-24
Vlan 110:
Untagged : 1-13 pvid 110 1-13
Vlan 150:
Untagged : 14,15 pvid 150 14,15
All vlans are tagged on port 24
PC1 and PC2 cant ping each other in the same vlan 110,150
If PC is on vlan 1 ports i can reach the rest of my network.
M5300:
Routing is enable
Vlans 1,110,150 tagged on 1/0/43 (comes from GS724T)
Port is set on Trunk, PVID is 1,110,150 on 1/0/43
Routing settings
| Port | Description | VLAN ID | IP Address Configuration Method | IP Address | Subnet Mask | Routing Mode | Administrative Mode | Link Speed Data Rate | OSPF Admin Mode | Forward Net Directed Broadcasts | Active State | MAC Address | Encapsulation Type | Proxy Arp | Local Proxy Arp | Bandwidth | ICMP Destination Unreachables | ICMP Redirects | IP MTU | Link State | Routing Interface Status |
| vlan 110 | 110 | Manual | 192.168.11.1 | 255.255.255.248 | Enable | Enable | 10 Mbps Half Duplex | Disable | Disable | Active | 20:0C:C8:3E:59:15 | Ethernet | Enable | Disable | 10000 | Enable | Disable | 1500 | Link Up | Up | |
| vlan 1 | 1 | None | 0.0.0.0 | 0.0.0.0 | Enable | Enable | 10 Mbps Half Duplex | Disable | Disable | Active | 20:0C:C8:3E:59:15 | Ethernet | Enable | Disable | 10000 | Enable | Disable | 1500 | Link Up | Down | |
| vlan 150 | 150 | Manual | 192.168.15.1 | 255.255.255.128 | Enable | Enable | 10 Mbps Half Duplex | Disable | Disable | ||||||||||||
Routing Mode Enable
ICMP Echo Replies Disable
ICMP Redirects Disable
I dunno the role of icmp replies/redirects so i tried enable and disable.
I can see the route in the routing table :
Learned Routes :
| Network Address | Subnet Mask | Protocol | Route Type | Next Hop Interface | Next Hop Address | Preference | Metric |
| 192.168.11.0 | 255.255.255.248 | Local | Connected | vlan 110 | 192.168.11.1 | 0 | 1 |
| 192.168.15.0 | 255.255.255.128 | Local | Connected | vlan 150 | 192.168.15.1 | 0 | 1 |
Vlan 110,150 PCs can ping each other but cant reach Vlan Interface.
Vlan 1 PCs works normally
If I try to ping from Vlan 1 to Vlan 110,150 all my pings go through the firewall and leave my network.
Any ideas?
Excuse my poor English/grammar/..., this isn't my primary language.
Thx
Hi,Arnaud_D
Welcome to NETGEAR community!
I have read your post , and I think there somethig settings below may be helpfully to you:
1.Disable vlan routing on GS724T. GS724T is a smart switch which is mainly process L2 traffic,and in your topo it also not
necessary for GS724T to process routing.
2.I saw in your description there is no ip address for vlan 1, so I guess may be your M5300 connect to firewall through a
l2 port. Suggest to and a ip adderss which is at same subnet of your firewall address.
3.Additionally, you need t to check in you firewall if there are routes to 192.168.11.1/255.255.255.248 and 192.168.15.1/255.255.255.128
If no,please add.
hope it helps
Regards,
Carl_z
Netgear Employee
3 Replies
Replies have been turned off for this discussion
Hi Arnaud_D,
Welcome to the community! :)
Let me share the article below and kindly use it as a guide:
VLAN Routing on NETGEAR Smart Switches
Hope it helps.
Regards,
DaneA
NETGEAR Community Team
Hi,Arnaud_D
Welcome to NETGEAR community!
I have read your post , and I think there somethig settings below may be helpfully to you:
1.Disable vlan routing on GS724T. GS724T is a smart switch which is mainly process L2 traffic,and in your topo it also not
necessary for GS724T to process routing.
2.I saw in your description there is no ip address for vlan 1, so I guess may be your M5300 connect to firewall through a
l2 port. Suggest to and a ip adderss which is at same subnet of your firewall address.
3.Additionally, you need t to check in you firewall if there are routes to 192.168.11.1/255.255.255.248 and 192.168.15.1/255.255.255.128
If no,please add.
hope it helps
Regards,
Carl_z
Netgear EmployeeHi Carl,
Thank you for your answer,
The vlan routing isn't available on my GS724T (v3 if i remember).
The M5300 is directly connected to the firewall and the firewall is in vlan 1. I dont understand what you suggested to do with the IP of vlan 1.
I need a route in my firewall even if I dont want to go to the Internet, the M5300 isnt the one who do vlan routing? I dont need any route if the subnet is directly connected?
--
I have set my firewall to do vlan routing instead of L3 Switch, I can ping vlan 11 interface from vlan 1, but I still cant go through the M5300 with vlan 11 ( i used this http://kb.netgear.com/app/answers/detail/a_id/11673/~/how-do-i-setup-a-vlan-trunk-link-between-two-netgear-switches%3F?cid=wmt_netgear_organic)
I think the problem is the vlan conf of M5300, i surely did a mistake somewhere
Thanks
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
