Multiple VLANs across 2 Cisco SG Series Switches

randal · 24 Jun 2014 at 20:04

Wondering if I can pick the brains of a Cisco expert or two...

I've inherited a bit of a hempen homespun solution at work that needs a bit of reconfiguring to say the least. Situation is as follows:

Two SG-500s in L2 mode, one upstairs and one downstairs. Connected via gig uplinks.

Two networks running over this, with a VM(!) bridging a third in:

Office LAN (contains servers too) - 10.x.x.x (standalone for all intents, DHCP from AD infra)
Phones - VoIP 192.x.x.x (DHCP helper needed from below)
Server Network 169.x.x.x (contains phone control host)

The network downstairs is going to have all 3 VLAN'd, have just about got my head around that. Did a port audit today, and I need to have a rejig to sort the messy rack out but I'm more or less happy with configuring everything and making it nice and organised.

What I'm not so sure about is presenting the 10.x.x.x & 192.x.x.x networks to the upstairs switch, which is just phones and desktops.

All machines are NAT, and connect to the Internet directly and not via a proxy. I'm considering changing this at a later date though.

If needs be I could make the following changes:

Repurpose old office/server LAN into pure server LAN - 10.x.x.x
Create two new VLANs for desktops:
Downstairs LAN - 10.0.1.x
Upstairs LAN - 10.0.2.x
Phones - VoIP 192.x.x.x (DHCP helper needed from below)
Server Network 169.x.x.x (contains phone control host)

However at this point I'd be happy to just have the existing networks presented as per the first option, all 3 downstairs and the office/phone LANs upstairs. I read something about trunking ports between the two switches to extend the VLAN from the downstairs master upstairs - am I thinking along the right lines...? Is this feasible, or am I way off?

Cheers in advance!

mad_allan · 25 Jun 2014 at 08:08

If it was me, I would set up a trunk port between upstairs and downstairs. It's the easiest way for you to do this.

randal · 25 Jun 2014 at 09:19

Aye, it's looking that way.

I've just realised I have no management on the 2nd upstairs switch either, was never configured by the looks of things (sigh) so I'm off to the cupboard with a console cable.

Nymins · 25 Jun 2014 at 09:23

Trunk ports, enable VTP server on the one with the vlans and then enable VTP client on the other one. Should replicate the vlans across the two providing you use the same vtp domain.

randal · 25 Jun 2014 at 09:26

I read about the VTP stuff last night, sounds ideal.

Presumably I'm going to need an outage to reboot the switch at some point of this reconfig work?

Cheers for the responses fellas, good to know I'm heading in the right direction.

Nymins · 25 Jun 2014 at 09:55

Shouldn't need to really. May take a moment for VTP to update the VLANs on the other switch, but it should do it live (at least it has done for me in sims). Sometimes have switched between Transparent mode and Client mode on the second switch to try and "kick" it into action. Probably does nothing, but sometimes I found it updated quicker flipping between the two.

randal · 25 Jun 2014 at 11:02

Annoyingly I'm not getting very far on the second switch. Console connection only gives me:

Code:

Unknown parameter
May be one from the following list:

debug             help

Grr.

Nymins · 25 Jun 2014 at 11:17

Could try resetting the switch to its default settings. Could be a master/slave issue if the switches were setup in a stack.

randal · 25 Jun 2014 at 11:28

Yarp, right again Nymins.

Got in through the Web UI on the master switch to see the other switch in stack mode. Unfortunately to enable L3 I'm going to have to reboot the pair of them by the looks of it.

Only one stack port set up though, and I found port 1 on either switch connected too... daft.

Will be addressing that. Looks like I'm there, just need an outage window now.

Cheers again!