H3C Dual Layer Configuration
Summary
Dual Layer Networking prepared to ensure LAN’s traffic flow among themselves without reaching Antikor v2.
If any client which in a LAN wants to reach an external address, it shall get service from Antikor v2 otherwise it wants to reach an internal but different LAN, it will suffice to get service from backbone switch.
Network Topology
Configuration
The configurations these are required for the backbone switch shown below:
Spine Switch
#
version 7.1.059, Alpha 7159
#
sysname Spine_Switch
#
irf mac-address persistent timer
irf auto-update enable
undo irf link-delay
irf member 1 priority 1
#
lldp global enable
#
system-working-mode standard
xbar load-single
password-recovery enable
lpu-type f-series
Vlan1
#
Vlan 100 to 102
#
stp global enable
#
interface NULL0
#
interface Vlan-interface100
description Engineer
ip address 10.33.100.1 255.255.255.0
#
interface Vlan-interface101
description Architect
ip address 10.33.101.1 255.255.255.0
#
interface Vlan-interface102
description Administrative
ip address 10.33.102.1 255.255.255.0
#
interface Ethernet1/0/1
description Engineering_Architect
port link-type hybrid
port hybrid vlan 100 to 102 tagged
port hybrid vlan 1 untagged
#
interface GigabitEthernet1/0/1
description Antikor
port link-type hybrid
port hybrid vlan 100 to 102 tagged
port hybrid vlan 1 untagged
#
interface GigabitEthernet1/0/2
#
user-interface aux 0 7
authentication-mode scheme
user-interface vty 0 4
authentication-mode scheme
protocol inbound ssh
#
user-group system
#
return
Faculty of Engineering and Architecture Switch
Note: Depending on demand, more endpoints can be carried as many times as desired.
#
version 7.1.059, Alpha 7159
#
sysname Engineer_Architect
#
irf mac-address persistent timer
irf auto-update enable
undo irf link-delay
irf member 1 priority 1
#
lldp global enable
#
system-working-mode standard
xbar load-single
password-recovery enable
lpu-type f-series
Vlan1
#
Vlan 100 to 102
#
interface NULL0
#
interface Vlan-interface100
description Engineer
ip address 10.33.100.2 255.255.255.0
#
interface Vlan-interface101
description Architect
ip address 10.33.101.2 255.255.255.0
#
interface Vlan-interface102
description Administrative
ip address 10.33.102.2 255.255.255.0
#
interface Ethernet1/0/1
port link-type hybrid
port hybrid vlan 100 to 102 tagged
port hybrid vlan 1 untagged
#
interface Ethernet1/0/2
port access vlan 100
#
interface Ethernet1/0/3
port access vlan 101
#
interface Ethernet1/0/4
port access vlan 102
#
user-group system
#
return
Testing
When we run traceroute from PC 2 to PC 0, we saw that the traffic did not go as far as Antikor v2 and turn around to right destination Network from Backbone Switch.
Please follow Antikor v2 Dual Layer Configurations Manual for required settings on the Antikor v2 side.
Troubleshooting
| Executing Command | Error Message | Solution Proposal |
|---|---|---|
ping 10.2.1.2 |
— Ping statistics for 10.0.0.1 — 5 packets transmitted, 0 packets received, 100.0% packet loss | Check the status of the ports. |
| Review VLAN settings. |
ePati Cyber Security Co.
Mersin Üniversitesi Çiftlikköy Kampüsü
Teknopark İdari Binası Kat:4 No: 411
Posta Kodu: 33343
Yenişehir / Mersin / TURKEY
Web: www.epati.com.tr
e-Mail: info@epati.com.tr
Tel: +90 324 361 02 33
Fax: +90 324 361 02 39