Wired Intelligent Edge

Hi, I have 2 Aruba 2930F switches, configured as VSF (Switch 1 Commander, Switch 2 Standby) using 1 vsf link with 2 ports.

I've setup two trunk groups like this:

trunk 1/22,2/22 trk1 lacp
trunk 1/21,2/21 trk2 lacp

Then I configured vlan tagging on certain ports, in the same way on both switches. And finally I setup the vlans that coul be passed through trunks:

interface trk1 tagged vlan 10,20,30,40

However, I can't get my vlan up. I don't have connection of my vlan ports through my trunk groups.

Could someone tell me what I'm doing wrong?

My running configuration:

Running configuration:

; hpStack_WC Configuration Editor; Created on release #WC.16.05.0007
; Ver #12:08.1d.9b.3f.bf.bb.ef.7c.59.fc.6b.fb.9f.fc.ff.ff.37.ef:ba
hostname "Enlaces-Commander"
vsf
enable domain 9001
member 1
type "JL259A" mac-address 08f1ea-4a4020
priority 255
link 1 1/23-1/24
link 1 name "I-Link1_1"
link 2 name "I-Link1_2"
exit
member 2
type "JL259A" mac-address 548028-6068e0
priority 128
link 1 2/23-2/24
link 1 name "I-Link2_1"
link 2 name "I-Link2_2"
exit
port-speed 1g
exit
trunk 1/22,2/22 trk1 lacp
trunk 1/21,2/21 trk2 lacp
time timezone -3
snmp-server community "public" unrestricted
snmp-server contact "Matias Vilar"
vlan 1
name "DEFAULT_VLAN"
untagged 1/1-1/20,1/25-1/28,2/1-2/20,2/25-2/28,Trk1-Trk2
ip address 10.250.250.18 255.255.255.0
exit
vlan 10
name "VL 10"
tagged 1/1,2/1
no ip address
exit
vlan 20
name "VL 20"
tagged 1/2,2/2
no ip address
exit
vlan 30
name "VL 30"
tagged 1/3,2/3
no ip address
exit
vlan 40
name "VL 40"
tagged 1/4,2/4
no ip address
exit
vlan 50
name "VL 50"
tagged 1/5,2/5
no ip address
exit
vlan 60
name "VL 60"
tagged 1/6,2/6
no ip address
exit
vlan 70
name "VL 70"
tagged 1/7,2/7
no ip address
exit
vlan 80
name "VL 80"
tagged 1/8,2/8
no ip address
exit
vlan 90
name "VL 90"
tagged 1/9,2/9
no ip address
exit
vlan 100
name "VL 100"
tagged 1/10,2/10
no ip address
exit
vlan 110
name "VL 110"
tagged 1/11,2/11
no ip address
exit
vlan 120
name "VL 120"
tagged 1/12,2/12
no ip address
exit
vlan 130
name "VL 130"
tagged 1/13,2/13
no ip address
exit
vlan 140
name "VL 140"
tagged 1/14,2/14
no ip address
exit
vlan 150
name "VL 150"
tagged 1/15,2/15
no ip address
exit
vlan 160
name "VL 160"
tagged 1/16,2/16
no ip address
exit
vlan 170
name "VL 170"
tagged 1/17,2/17
no ip address
exit
vlan 180
name "VL 180"
tagged 1/18,2/18
no ip address
exit
vlan 190
name "VL 190"
tagged 1/19,2/19
no ip address
exit
vlan 200
name "VL 200"
tagged 1/20,2/20
no ip address
exit
spanning-tree Trk1 priority 4
spanning-tree Trk2 priority 4
no tftp server
no autorun
no dhcp config-file-update
no dhcp image-file-update

Thanks 
Cordial greetings
Gabriel 

Hello Gabriel,

are you so kind to post the output of commands listed below?

VLAN status for aggregated interface trk1 (made of 1/22+2/22):

show vlan port trk1 detail

VLAN status for aggregated interface trk2 (made of 1/21+2/21):

show vlan port trk2 detail

As far as I can understand from your Aruba 2930F VSF configuration both aggregated interfaces (trk1 and trk2) were ONLY set to be untagged members of VLAN id 1 (default)...there isn't any reference to other VLAN ids thus your statement:

---

@neok wrote: And finally I setup the vlans that coul be passed through trunks:

interface trk1 tagged vlan 10,20,30,40

However, I can't get my vlan up.

---

seems wrong...there is no tagging on trk1 (and both checks above shall confirm). Redo commands:

interface ethernet trk1 tagged vlan 10,20,30,40
interface ethernet trk2 tagged vlan 10,20,30,40

and then re-check VLAN status for both aggregated trunks (trk1 and trk2)...you should discover that trk1 and trk2 are now tagged members of VLAN ids 10, 20, 30 and 40 (other than being untagged members of VLAN id 1).

I don't understand WHY you tag single interfaces in this way:

1/1-1/20 untagged on VLAN 1

2/1-2/20 untagged on VLAN 1

and, concurrently:

1/1 and 2/1 tagged only on VLAN 10

1/2 and 2/2 tagged only on VLAN 20

1/3 and 2/3 tagged only on VLAN 30

1/4 and 2/4 tagged only on VLAN 40

1/5 and 2/5 tagged only on VLAN 50

1/6 and 2/6 tagged only on VLAN 60

1/7 and 2/7 tagged only on VLAN 70

1/8 and 2/8 tagged only on VLAN 80

1/9 and 2/9 tagged only on VLAN 90

1/10 and 2/10 tagged only on VLAN 100

1/11 and 2/11 tagged only on VLAN 110

1/12 and 2/12 tagged only on VLAN 120

1/13 and 2/13 tagged only on VLAN 130

1/14 and 2/14 tagged only on VLAN 140

1/15 and 2/15 tagged only on VLAN 150

1/16 and 2/16 tagged only on VLAN 160

1/17 and 2/17 tagged only on VLAN 170

1/18 and 2/18 tagged only on VLAN 180

1/19 and 2/19 tagged only on VLAN 190

1/20 and 2/20 tagged only on VLAN 200

what's the final purpose? why this pattern? who is connected to each pair (e.g. on 1/1 and 1/2)?

Sorry @parnassus, I paste a wrong running configuration, my mistake.

This is the correct show running-config output:

; hpStack_WC Configuration Editor; Created on release #WC.16.05.0007
; Ver #12:08.1d.9b.3f.bf.bb.ef.7c.59.fc.6b.fb.9f.fc.ff.ff.37.ef:ba
hostname "Enlaces-Commander"
vsf
enable domain 9001
member 1
type "JL259A" mac-address 08f1ea-4a4020
priority 255
link 1 1/23-1/24
link 1 name "I-Link1_1"
link 2 name "I-Link1_2"
exit
member 2
type "JL259A" mac-address 548028-6068e0
priority 128
link 1 2/23-2/24
link 1 name "I-Link2_1"
link 2 name "I-Link2_2"
exit
port-speed 1g
exit
trunk 1/22,2/22 trk1 lacp
trunk 1/21,2/21 trk2 lacp
time timezone -3
snmp-server community "public" unrestricted
snmp-server contact "neok"
vlan 1
name "DEFAULT_VLAN"
no untagged 1/1-1/20,2/1-2/20
untagged 1/25-1/28,2/25-2/28,Trk1-Trk2
ip address 10.250.250.18 255.255.255.0
exit
vlan 10
name "VL 10"
untagged 1/1,2/1
tagged Trk1-Trk2
no ip address
exit
vlan 20
name "VL 20"
untagged 1/2,2/2
tagged Trk1-Trk2
no ip address
exit
vlan 30
name "VL 30"
untagged 1/3,2/3
tagged Trk1-Trk2
no ip address
exit
vlan 40
name "VL 40"
untagged 1/4,2/4
tagged Trk1-Trk2
no ip address
exit
vlan 50
name "VL 50"
untagged 1/5,2/5
tagged Trk1-Trk2
no ip address
exit
vlan 60
name "VL 60"
untagged 1/6,2/6
tagged Trk1-Trk2
no ip address
exit
vlan 70
name "VL 70"
untagged 1/7,2/7
tagged Trk1-Trk2
no ip address
exit
vlan 80
name "VL 80"
untagged 1/8,2/8
tagged Trk1-Trk2
no ip address
exit
vlan 90
name "VL 90"
untagged 1/9,2/9
tagged Trk1-Trk2
no ip address
exit
vlan 100
name "VL 100"
untagged 1/10,2/10
tagged Trk1-Trk2
no ip address
exit
vlan 110
name "VL 110"
untagged 1/11,2/11
tagged Trk1-Trk2
no ip address
exit
vlan 120
name "VL 120"
untagged 1/12,2/12
tagged Trk1-Trk2
no ip address
exit
vlan 130
name "VL 130"
untagged 1/13,2/13
tagged Trk1-Trk2
no ip address
exit
vlan 140
name "VL 140"
untagged 1/14,2/14
tagged Trk1-Trk2
no ip address
exit
vlan 150
name "VL 150"
untagged 1/15,2/15
tagged Trk1-Trk2
no ip address
exit
vlan 160
name "VL 160"
untagged 1/16,2/16
tagged Trk1-Trk2
no ip address
exit
vlan 170
name "VL 170"
untagged 1/17,2/17
tagged Trk1-Trk2
no ip address
exit
vlan 180
name "VL 180"
untagged 1/18,2/18
tagged Trk1-Trk2
no ip address
exit
vlan 190
name "VL 190"
untagged 1/19,2/19
tagged Trk1-Trk2
no ip address
exit
vlan 200
name "VL 200"
untagged 1/20,2/20
tagged Trk1-Trk2
no ip address
exit
spanning-tree Trk1 priority 4
spanning-tree Trk2 priority 4
no tftp server
no autorun
no dhcp config-file-update
no dhcp image-file-update

I think that my setup not working because I missing 'ethernet' command:

interface trk1 tagged vlan 10,20,30,40
interface trk2 tagged vlan 10,20,30,40

Now I execute:

interface ethernet trk1 tagged vlan 10,20,30,40
interface ethernet trk2 tagged vlan 10,20,30,40

and works like a charm.

The show running-config I send include the last correct command.

My final purpose is that all vlans flow through trk1 and trk2 to a two servers configured in Nic Teaming. In this servers I run virtual firewall appliances.

If you see anything that can be improved in this configuration, please let me know.
Thank you very much for your help.
Best regards

Gabriel