Cisco Catalyst and Juniper SRX240 – VLAN Routing Guide

cisco-catalystjuniper-srx

I think my understanding of Trunking is off. I have two cisco switches under two vlans, connected to a single SRX240. I have connectivity to the SRX from the switch but not anywhere past it. The switch can ping 192.168.8.4 under vlan 89 but cannot ping 192.168.16.2 under vlan 16.

THE SRX CONFIGS

interfaces {
ge-0/0/0 {
    unit 0 {
        description "Eric's Connection";
        family ethernet-switching {
            port-mode access;
            vlan {
                members Group-16;
            }
        }
    }
}
ge-0/0/1 {
    unit 0 {
        description "JSS's Connection";
        family ethernet-switching {
            port-mode access;
            vlan {
                members JSS-89;
            }
        }
    }
}
ge-0/0/2 {
    unit 0 {
        family ethernet-switching {
            vlan {
                members vlan-trust;
            }
        }
    }
}
ge-0/0/3 {
    unit 0 {
        family ethernet-switching {
            vlan {
                members vlan-trust;
            }
        }
    }
}
ge-0/0/4 {
    unit 0 {
        family ethernet-switching {
            vlan {
                members vlan-trust;
            }
        }
    }
}
vlan {
    unit 0 {
        family inet {
            address 192.168.1.1/24;
        }
    }
    unit 16 {
        family inet {
            address 192.168.16.2/24;
        }
    }
    unit 89 {
        family inet {
            address 192.168.8.4/24;
        }
    }
}

}

THE SWITCH CONFIGS

 interface FastEthernet1/0/1
 switchport access vlan 89
 switchport trunk encapsulation dot1q
 switchport mode trunk
!
interface FastEthernet1/0/2
 switchport access vlan 89
 switchport mode access
!
interface FastEthernet1/0/3
!
interface FastEthernet1/0/4
!
interface FastEthernet1/0/5
!
interface FastEthernet1/0/6
!
interface FastEthernet1/0/7
 switchport access vlan 89
 switchport mode access
!
interface FastEthernet1/0/8
 switchport access vlan 89
 switchport mode access
!
interface FastEthernet1/0/9
!
interface FastEthernet1/0/10
 switchport access vlan 89
 switchport mode access
!
interface FastEthernet1/0/11
!
interface FastEthernet1/0/12
 switchport access vlan 89
 switchport mode access
!
interface FastEthernet1/0/13
!
interface FastEthernet1/0/14
!
interface FastEthernet1/0/15
!
interface Vlan1
 no ip address
 shutdown
!
interface Vlan89
 ip address 192.168.8.3 255.255.255.0
!
ip classless
ip http server
ip http secure-server
!

FE1/0/10 is the connection to the SRX.

Any guidance would be great.

Thanks.

Best Answer

Both the switches will need a default gateway to reach IP addresses on other subnets. Configure the 192.168.8.4 as the default gateway IP on 1 switch 

ip default gateway 192.168.8.4

and 192.168.16.2 as the default gateway on the other.

Related Topic