Options
A dummies guide to setting up routers as hosts?
I'm wanting to setup some routers as hosts. I did attempt it but not sure if I did it right.
I had two 3560 switches trunking to each other. SwitchA had VLAN1 ip address 192.168.0.2/24. SwitchB has VLAN1 192.168.0.3
I connected SwitchA to router(R1) but had router acting as router on a stick with its fa0/0 on 192.168.0.1. I then created sub interfaces fa0/0.10 (192.168.10.1) , fa0/0.20 (192.168.20.1) , fa0/0.30 (192.168.30.1). Checked 802.1Q in place.
I disabled ip routing on the switches.
I then had R3 (to act as host) connect to SwitchA and R5 (acting as host) Connected to SwitchB. I put the ports in vlans 10 and 20 and also did a ip route 0.0.0.0 0.0.0.0 192.168.10.1 on R3
And 0.0.0.0 0.0.0.0 192.168.20.1 on R5.
I was able to ping between the host routers. I then attempted to setup protected ports on the switchports connected to the routers in the hope it would prevent them pinging each other. It didn't work as they could still reach each other.
Can anyone tell me please what i have done wrong? i'm renting equipment online so its all routers and multilayer switches.
Is using routers as hosts a viable thing?
I had two 3560 switches trunking to each other. SwitchA had VLAN1 ip address 192.168.0.2/24. SwitchB has VLAN1 192.168.0.3
I connected SwitchA to router(R1) but had router acting as router on a stick with its fa0/0 on 192.168.0.1. I then created sub interfaces fa0/0.10 (192.168.10.1) , fa0/0.20 (192.168.20.1) , fa0/0.30 (192.168.30.1). Checked 802.1Q in place.
I disabled ip routing on the switches.
I then had R3 (to act as host) connect to SwitchA and R5 (acting as host) Connected to SwitchB. I put the ports in vlans 10 and 20 and also did a ip route 0.0.0.0 0.0.0.0 192.168.10.1 on R3
And 0.0.0.0 0.0.0.0 192.168.20.1 on R5.
I was able to ping between the host routers. I then attempted to setup protected ports on the switchports connected to the routers in the hope it would prevent them pinging each other. It didn't work as they could still reach each other.
Can anyone tell me please what i have done wrong? i'm renting equipment online so its all routers and multilayer switches.
Is using routers as hosts a viable thing?
I'm an Xpert at nothing apart from remembering useless information that nobody else cares about.
Comments
-
Options
Zartanasaurus
Member Posts: 2,008 ■■■■■■■■■□
Protected ports are local to the switch. You can keep two hosts from talking to each other via L2 if they are connected to the same switch. And yes, you can use a router as a host. I usually do a no ip routing and ip default-gateway on the router.Currently reading:
IPSec VPN Design 44%
Mastering VMWare vSphere 5 42.8% -
Options
MrXpert
Member Posts: 586 ■■■□□□□□□□
Wish I could try that but lab time just expired. I live to fight another day i suppose:)
If I use SVIs on the switch like
VLAN 5= 10.5.0.1/16
VLAN10= 10.10.0.1/16
VLAN 15= 10.15.0.1/16
and with R3 in vlan 5 as hosts use ip route 0.0.0.0 0.0.0.0 10.5.0.1 would that work?
or as you said disable ip routing on the routers and use ip default-gateway 10.x.0.1 where x=vlan number
Thank you for your explanation of protected ports i see where i went wrong now.I'm an Xpert at nothing apart from remembering useless information that nobody else cares about.