Wireless Access

Reply
MVP
Posts: 395
Registered: ‎05-09-2013

Cisco + Aruba Infrastructure - Can't Ping Devices

[ Edited ]

Cisco Switch
- vlan 1 "management" - ip address 192.168.1.254 255.255.255.0
- vlan 2 "students"
- vlan 3 "staff"
- default gateway 192.168.1.1
- int fa 0/1 - switchport mode access - switchport access vlan 1
- int fa 0/2 - switchport mode access - switchport access vlan 2 
- int fa 0/3 - switchport mode access - switchport access vlan 3 (Device 2)
- int fa 0/23 - switchport mode trunk - switchport trunk allowed vlan all - switchport trunk native vlan 1 (Aruba Switch to ge 0/0/23)
- int fa 0/24 - switchport mode trunk - switchport trunk allowed vlan all - switchport trunk native vlan 1 (Cisco Router)

 

Cisco Router
- vlan 1 "management"
- vlan 2 "students"
- vlan 3 "staff"
- int fa 0/0 - no shutdown
- int fa 0/0.1 - ip address 192.168.1.1 255.255.255.0 - Encapsulation Dot1q 1 native
- int fa 0/0.2 - ip address 192.168.2.1 255.255.255.0 - Encapsulation Dot1q 2
- int fa 0/0.3 - ip address 192.168.3.1 255.255.255.0 - Encapsulation Dot1q 3

 

Aruba Switch
- vlan 1 "management" - ip address 192.168.1.253 255.255.255.0
- vlan 2 "students"
- vlan 3 "staff"
- ip default-gateway 192.168.1.1
- int ge 0/0/0 - switchport mode access - switchport access vlan 1
- int ge 0/0/1 - switchport mode access - switchport access vlan 2 (Device 1)
- int ge 0/0/2 - switchport mode access - switchport access vlan 3
- int ge 0/0/23 - switchport mode trunk - switchport trunk allowed vlan all - switchport trunk native vlan 1 (Cisco Switch to fa 0/23)


Device 1 is on VLAN 2 (192.168.2.25) - plugged into Aruba switch (port ge 0/0/1)
Device 2 is on VLAN 3 (192.168.3.25) - plugged into Cisco switch (port fa 0/3)

 

Pings:
- from device 1 I cannot ping device 2 or Aruba switch
- from device 1 I can ping all three router interfaces and cisco switch
- from device 2 I cannot ping device 1 or Aruba switch
- from deviec 2 I can ping all three router interfaces and cisco switch


Not sure why I can't ping from device 1 to device 2, device 2 to device 1 or from either device to Aruba switch?


Thank you.

Michael Haring | AIS Consultant
Architecture and Implementation Solutions
Optiv Security Inc. | www.optiv.com
Guru Elite
Posts: 8,759
Registered: ‎09-08-2010

Re: Cisco + Aruba Infrastructure - Can't Ping Devices

Are your ports trusted on the Aruba side?

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
MVP
Posts: 395
Registered: ‎05-09-2013

Re: Cisco + Aruba Infrastructure - Can't Ping Devices

[ Edited ]

Yes ports are trusted, device 1 is directly connected to Aruba switch with access vlan 2 (device ip 192.168.2.25) and I cannot ping the device from the switch. I can ping the gateways and cisco switch however from the Aruba. 

 

Aruba switch is in vlan 1 (192.168.1.253)


Thank you.

Michael Haring | AIS Consultant
Architecture and Implementation Solutions
Optiv Security Inc. | www.optiv.com
MVP
Posts: 4,307
Registered: ‎07-20-2011

Re: Cisco + Aruba Infrastructure - Can't Ping Devices

 

Try checking the show spanning-tree summary and see if theres anything blocked on the Cisco side of things

Thank you

Victor Fabian
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
MVP
Posts: 395
Registered: ‎05-09-2013

Re: Cisco + Aruba Infrastructure - Can't Ping Devices

Checked spanning-tree and nothing is being blocked on the Cisco devices or on the Aruba.


Thank you.

Michael Haring | AIS Consultant
Architecture and Implementation Solutions
Optiv Security Inc. | www.optiv.com
MVP
Posts: 4,307
Registered: ‎07-20-2011

Re: Cisco + Aruba Infrastructure - Can't Ping Devices

Can you do a show IP route on both sides
Thank you

Victor Fabian
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
Search Airheads
Showing results for 
Search instead for 
Did you mean: