Got It. Really appreciate the help. Set interface to vlan 35 and all works. I had a misunderstanding on how it interfaced with xen/xcp-ng servers. Thanks Again!
Original Message:
Sent: Aug 09, 2023 01:59 AM
From: IanNightingale
Subject: HPE5500 and HPE5700 uplink?
Hi, I suspect the issue here isn't the vlan config between switches. You can confirm vlan connectivity between switches by using "display mac-add vlan 35". If you see lots of MAC's from the upstream switch (after 2 minutes) the L2 connectivity is complete.
On the attached config there are L3 interfaces for vlans 1 & 3. Can you create one for vlan35 with a static IP. When you do that and attempt to ping the gateway what is the result?
What do you get when you type "display arp"?
For the end devices you have tagged vlan 35. Are you certain those devices can handle tagged vlans? I have IP phones that can but that is the only device I know of on my network that handles 802.1q tagged frames.
If you change the config for one device to be untagged vlan35 does it work?
Original Message:
Sent: Aug 08, 2023 02:10 PM
From: jerryroy1
Subject: HPE5500 and HPE5700 uplink?
1G Switch stack config attached.
Original Message:
Sent: Aug 08, 2023 01:33 PM
From: jerryroy1
Subject: HPE5500 and HPE5700 uplink?
I have created the interfaces and it continues to receive an IP from DHCP server on DMZ. When I set IP address static for the interface in the vlan35 subnet 10.10.2.220, I can never ping vlan35 gw 10.10.2.1 gateway. Here is the interface config for the link between the 1 gig stack and the 10g stack.
1G 5500 Stack Trunk interface:
interface Ten-GigabitEthernet3/0/29
port link-mode bridge
description Gluster02 DMZ 10G left
port link-type trunk
port trunk permit vlan all
10G 5700 Stack Trunk interface:
interface Ten-GigabitEthernet2/0/33
description link to 1G DMZ3 IF-3/0/29
port link-type trunk
port trunk permit vlan all
Once there is a trunk between switch stacks, do all switches in the stack recognize the Vlan35?
I will attach one gig switch config.
Original Message:
Sent: Aug 08, 2023 03:21 AM
From: IanNightingale
Subject: HPE5500 and HPE5700 uplink?
Hi, there isn't enough information to help here but I recommend starting with layer1 (cables connected) then layer2 (can the switches see each other, LLDP etc). Can the switch with the devices connected see the MAC address of the gateway?
You could remove the devices from the troubleshooting by putting an IP address on the local switch in the VLAN 35 interface.
Check that the other end of g2/0/33 has vlan35 tagged and not set as native (untagged).
Original Message:
Sent: Aug 07, 2023 05:06 PM
From: jerryroy1
Subject: HPE5500 and HPE5700 uplink?
I believe this is it (below) after following the cables. Shouldn't all devices with vlan35 tagged in this 5700 stack be able to reach the vlan35 gateway of 10.10.2.1?
interface Ten-GigabitEthernet2/0/33
description link to 1G DMZ3 IF-3/0/29
port link-type trunk
port trunk permit vlan all
Original Message:
Sent: Aug 07, 2023 04:12 PM
From: jerryroy1
Subject: HPE5500 and HPE5700 uplink?
We have stacks of 5500's and 5700's
I have a Vlan 35 on the 5500 stack that I also want on the 5700 stack. How can I identify or confirm it is accessible? I have tagged hosts on the 5700's with vlan 35 but None can reach other devices in vlan35 on the 5500 stack. How can I identify I have uplink ports between the stacks and they are carrying vlan35?
See attached display current (If it is a mess, I am sorry)
login as: bssadmin
******************************************************************************
* Copyright (c) 2010-2017 Hewlett Packard Enterprise Development LP *
* Without the owner's prior written consent, *
* no decompiling or reverse-engineering shall be allowed. *
******************************************************************************
<DMZ-10G - JG898A>displ
<DMZ-10G - JG898A>display curr
<DMZ-10G - JG898A>display current-configuration
#
version 7.1.045, Release 2432P05
#
sysname DMZ-10G - JG898A
#
clock timezone PacificTime minus 08:00:00
clock summer-time FDT 02:00:00 March second Sunday 02:00:00 November first Sunday 01:00:00
clock protocol ntp
#
irf mac-address persistent timer
irf auto-update enable
undo irf link-delay
irf member 1 priority 30
irf member 2 priority 28
irf mode normal
#
lldp global enable
#
system-working-mode StandardBridge
fan prefer-direction slot 1 port-to-power
fan prefer-direction slot 2 port-to-power
password-recovery enable
#
vlan 1
#
vlan 2
description CenturyLink outside-CL Vlan2
#
vlan 3
description Cox outside-CX Vlan3
#
vlan 4 to 4094
#
irf-port 1/1
port group interface FortyGigE1/0/41
#
irf-port 2/2
port group interface FortyGigE2/0/42
#
stp global enable
#
interface NULL0
#
interface Vlan-interface3
#
interface FortyGigE1/0/42
#
interface FortyGigE2/0/41
#
interface FortyGigE1/0/41
description to DMZ10G-2/0/42
#
interface FortyGigE2/0/42
description to DMZ10G-1/0/41
#
interface M-GigabitEthernet0/0/0
ip address 192.168.50.247 255.255.254.0
#
interface Ten-GigabitEthernet1/0/1
port link-type hybrid
port hybrid vlan 35 tagged
port hybrid vlan 1 untagged
#
interface Ten-GigabitEthernet1/0/2
#
interface Ten-GigabitEthernet1/0/3
#
interface Ten-GigabitEthernet1/0/4
description Xen09 UAT Vlan35 Ten-GigabitEthernet1/0/4 Interface
port link-type hybrid
port hybrid vlan 35 tagged
port hybrid vlan 1 untagged
#
interface Ten-GigabitEthernet1/0/5
port link-type hybrid
port hybrid vlan 1 untagged
#
interface Ten-GigabitEthernet1/0/6
port link-type hybrid
port hybrid vlan 35 tagged
port hybrid vlan 1 untagged
#
interface Ten-GigabitEthernet1/0/7
#
interface Ten-GigabitEthernet1/0/8
#
interface Ten-GigabitEthernet1/0/9
description Ten-GigabitEthernet1/0/9 Interface - DB10 slot 1 - Port 1
#
interface Ten-GigabitEthernet1/0/10
#
interface Ten-GigabitEthernet1/0/11
#
interface Ten-GigabitEthernet1/0/12
#
interface Ten-GigabitEthernet1/0/13
#
interface Ten-GigabitEthernet1/0/14
#
interface Ten-GigabitEthernet1/0/15
#
interface Ten-GigabitEthernet1/0/16
#
interface Ten-GigabitEthernet1/0/17
#
interface Ten-GigabitEthernet1/0/18
#
interface Ten-GigabitEthernet1/0/19
#
interface Ten-GigabitEthernet1/0/20
#
interface Ten-GigabitEthernet1/0/21
#
interface Ten-GigabitEthernet1/0/22
#
interface Ten-GigabitEthernet1/0/23
#
interface Ten-GigabitEthernet1/0/24
#
interface Ten-GigabitEthernet1/0/25
#
interface Ten-GigabitEthernet1/0/26
#
interface Ten-GigabitEthernet1/0/27
port access vlan 3
#
interface Ten-GigabitEthernet1/0/28
port access vlan 3
#
interface Ten-GigabitEthernet1/0/29
#
interface Ten-GigabitEthernet1/0/30
port access vlan 2
#
interface Ten-GigabitEthernet1/0/31
description CenturyLink - Connected to PROD ASA5525 Primary outside-CL Port 0
port access vlan 2
speed 1000
duplex full
#
interface Ten-GigabitEthernet1/0/32
description CenturyLink outside reserved
port access vlan 2
#
interface Ten-GigabitEthernet1/0/33
#
interface Ten-GigabitEthernet1/0/34
#
interface Ten-GigabitEthernet1/0/35
#
interface Ten-GigabitEthernet1/0/36
#
interface Ten-GigabitEthernet1/0/37
#
interface Ten-GigabitEthernet1/0/38
#
interface Ten-GigabitEthernet1/0/39
#
interface Ten-GigabitEthernet1/0/40
#
interface Ten-GigabitEthernet2/0/1
description xen14
#
interface Ten-GigabitEthernet2/0/2
description xen19
#
interface Ten-GigabitEthernet2/0/3
description bkup04
#
interface Ten-GigabitEthernet2/0/4
description xen18
#
interface Ten-GigabitEthernet2/0/5
#
interface Ten-GigabitEthernet2/0/6
#
interface Ten-GigabitEthernet2/0/7
#
interface Ten-GigabitEthernet2/0/8
#
interface Ten-GigabitEthernet2/0/9
description Ten-GigabitEthernet2/0/9 Interface - DB10 slot 1 - Port 2
#
interface Ten-GigabitEthernet2/0/10
description Xen02 UAT Vlan35 Ten-GigabitEthernet2/0/10 Interface
port link-type hybrid
port hybrid vlan 35 tagged
port hybrid vlan 1 untagged
#
interface Ten-GigabitEthernet2/0/11
port link-type hybrid
port hybrid vlan 35 tagged
port hybrid vlan 1 untagged
#
interface Ten-GigabitEthernet2/0/12
#
interface Ten-GigabitEthernet2/0/13
#
interface Ten-GigabitEthernet2/0/14
#
interface Ten-GigabitEthernet2/0/15
description Ten-GigabitEthernet2/0/15 Interface Last01 AWS Gateway
#
interface Ten-GigabitEthernet2/0/16
#
interface Ten-GigabitEthernet2/0/17
#
interface Ten-GigabitEthernet2/0/18
#
interface Ten-GigabitEthernet2/0/19
#
interface Ten-GigabitEthernet2/0/20
#
interface Ten-GigabitEthernet2/0/21
#
interface Ten-GigabitEthernet2/0/22
#
interface Ten-GigabitEthernet2/0/23
#
interface Ten-GigabitEthernet2/0/24
#
interface Ten-GigabitEthernet2/0/25
#
interface Ten-GigabitEthernet2/0/26
#
interface Ten-GigabitEthernet2/0/27
port access vlan 3
#
interface Ten-GigabitEthernet2/0/28
port access vlan 3
#
interface Ten-GigabitEthernet2/0/29
#
interface Ten-GigabitEthernet2/0/30
description Xen04 UAT Vlan35 Ten-GigabitEthernet2/0/30 Interface
port link-type hybrid
undo port hybrid vlan 1
port hybrid vlan 35 tagged
port hybrid vlan 2 untagged
port hybrid pvid vlan 2
#
interface Ten-GigabitEthernet2/0/31
description CenturyLink - Connected to PROD ASA5525 Secondary outside-CL Port 0
port access vlan 2
speed 1000
duplex full
#
interface Ten-GigabitEthernet2/0/32
description Connection from ISP Router - CenturyLink
port access vlan 2
speed 1000
duplex full
#
interface Ten-GigabitEthernet2/0/33
description link to 1G DMZ3 IF-3/0/29
port link-type trunk
port trunk permit vlan all
#
interface Ten-GigabitEthernet2/0/34
description Xen20 eth1
#
interface Ten-GigabitEthernet2/0/35
description GoldenGate01
#
interface Ten-GigabitEthernet2/0/36
#
interface Ten-GigabitEthernet2/0/37
#
interface Ten-GigabitEthernet2/0/38
#
interface Ten-GigabitEthernet2/0/39
#
interface Ten-GigabitEthernet2/0/40
#
scheduler logfile size 16
#
line class aux
authentication-mode scheme
user-role network-admin
#
line class vty
authentication-mode scheme
user-role network-operator
protocol inbound ssh
#
line aux 0 1
user-role network-admin
#
line vty 0 63
user-role network-operator
#
snmp-agent
snmp-agent local-engineid 800063A2804CAEA348FF7800000001
snmp-agent sys-info contact ****
snmp-agent sys-info version v3
#
ssh server enable
#
ntp-service enable
ntp-service source M-GigabitEthernet0/0/0
ntp-service refclock-master 127.127.1.1 10
ntp-service unicast-peer 216.239.35.0 vpn-instance undefined
ntp-service unicast-server 44.190.6.254 vpn-instance undefined
#
radius scheme system
user-name-format without-domain
#
domain system
#
domain default enable system
#
role name level-0
description Predefined level-0 role
#
role name level-1
description Predefined level-1 role
#
role name level-2
description Predefined level-2 role
#
role name level-3
description Predefined level-3 role
#
role name level-4
description Predefined level-4 role
#
role name level-5
description Predefined level-5 role
#
role name level-6
description Predefined level-6 role
#
role name level-7
description Predefined level-7 role
#
role name level-8
description Predefined level-8 role
#
role name level-9
description Predefined level-9 role
#
role name level-10
description Predefined level-10 role
#
role name level-11
description Predefined level-11 role
#
role name level-12
description Predefined level-12 role
#
role name level-13
description Predefined level-13 role
#
role name level-14
description Predefined level-14 role
#
user-group system
#
local-user bssadmin class manage
password hash *
service-type ssh terminal http https
authorization-attribute user-role level-15
authorization-attribute user-role network-operator
#
ip https enable
web idle-timeout 30
webui log enable
#
return
<DMZ-10G - JG898A>