Trunk VLANs – How to Trunk VLANs Over Layer 3 EtherChannel

ciscocisco-catalystetherchannellayer3vlan

I am trying to setup a network that includes an EtherChannel link between two Cisco Layer 3 switches (Catalyst 3750). I am using a collapsed core hierarchical network.

collapsed core topology

The picture above is my topology. On my layer 2 access switches (S1, S2, S3) I have several hosts connected right now, on several VLANs.
My issue tho is that a host on for example S2, can't communicate with L3-1 through the EtherChannel between L3-1 and L3-2. I've tried making it a Layer 3 EtherChannel with IP's, and I can ping across, but it's like it wont propagate my tagged VLAN traffic.

Example:

I connect HOST-A to L3-1 on interface GigabitEthernet2/0/1.

I make GigabitEthernet2/0/1 switchport access on VLAN 20.

HOST-B is connected to a switchport access VLAN 20 port on S2.

HOST-B tries to ping L3-2. Succesful.

HOST-B tries to ping across to L3-1 / HOST-A. Not succesful.

PS. I also have HSRP setup on the Layer 3 switches, for all my VLANs. Also I have a Main Windows Server 2016 Domain Controller connected to L3-1 and a Backup connected to L3-2.

Let me know if you need the IP scope.

I appreciate all help! I just want to know what I have to think of/be sure of is working, to make this network communicate. Any help that can guide me to what i can do to get traffic all the way to the WAN, and so that my hosts on S1, S2 and S3 can connect to the internet. Much appreciated.

CONFIGURATION:

L3-1

Port-Channel:

!
interface Port-channel1
 no switchport
 ip address 172.16.0.1 255.255.255.252
!
!
interface GigabitEthernet2/0/19
 no switchport
 no ip address
 channel-group 1 mode desirable
!
interface GigabitEthernet2/0/20
 no switchport
 no ip address
 channel-group 1 mode desirable
!

L3-2 has same configuration on same ports and channel-group. It's IP address is 172.16.0.2 255.255.255.252 instead.

VLAN-config:
show vlan brief in cisco terminal

All links between layer-3 and layer-2 switches are trunks. A snippet from L3-2:
interface overview from layer 3 switch

VLAN-config:
vlan overview on switch

Best Answer

@RoyT. On your links between L3-1 and L3-2, how come you don't use a normal trunked etherchannel? Does the 172.16.0.1 255.255.255.252 have any purpose?

For instance, if you put this configuration on the interlink between L3-1 and L3-2:

interface Port-channel1
 switchport
 switchport trunk encapsulation dot1q
 switchport mode trunk
!
interface GigabitEthernet2/0/19
 switchport
 switchport trunk encapsulation dot1q
 switchport mode trunk
 channel-group 1 mode desirable
!
interface GigabitEthernet2/0/20
 switchport
 switchport trunk encapsulation dot1q
 switchport mode trunk
 channel-group 1 mode desirable
!

Then everything will be able to communicate.

In order to do it:

(config)# int range gi2/0/19-20
(config-if)# no channel-group
(config-if)# switchport
(config-if)# switchport trunk encapsulation dot1q
(config-if)# switchport mode trunk
(config-if)# int po1
(config-if)# no ip address
(config-if)# switchport
(config-if)# switchport trunk encapsulation dot1q
(config-if)# switchport mode trunk
(config-if)# int range gi2/0/19-20
(config-if)# channel-group 1 mode desirable
(config-if)# end
# write memory

Related Solutions

Vlan – Setting up PIM Sparse mode

My questions are:

Should we setup on our core network switch OSPF with a router ID of 1.1.1.1 and then not set any OSPF settings on any other switch?

OSPF is not necessary for this implementation.

Would PIM Sparse Mode only need to be enabled on the core switches or on all of the switches in the network?

Pim-SM needs to be enabled on each L3 interface on which you want to allow the multicast traffic. For example, if you wish to contain the traffic to Vlans 15 and 14, you would have to do the following on your core:

configure
ip multicast
ip igmp
ip pim sparse
interface vlan 14
ip igmp
ip pim
interface vlan 15
ip igmp
ip pim
exit

If you want the traffic to traverse all Vlans, then you will need the appropriate interface configuration under each Vlan. Your L2 switches will need IGMP snooping turned on (ideally on all interfaces via the global configuration).

configure
ip igmp snooping 
bridge multicast filtering

For a very basic multicast setup like this, these should be the only features that you would need.

Switch – Successful Auto/Auto PAgP Port Channel

As per default, etherchannel is running in "silent" mode. So ethch goes up at the first time, but if you try to disable/enable on side maybe ethch doesn't goes up again.

From CISCO CCO : non-silent —(Optional) If your switch is connected to a partner that is PAgP capable, configure the switch port for nonsilent operation when the port is in the auto or desirable mode. If you do not specify non-silent , silent is assumed. The silent setting is for connections to file servers or packet analyzers. This setting allows PAgP to operate, to attach the port to a channel group, and to use the port for transmission.

Best Answer

Related Solutions

Vlan – Setting up PIM Sparse mode

Switch – Successful Auto/Auto PAgP Port Channel

Related Topic