VLAN to VLAN routing on Nortel 3510-24 L3 switch

[studioj]

I'm trying to migrate a LAN environment from what started as a single small business LAN, then became 2 separate LANs, one public for FTP etc and one private (each served by its own T1) and now needs to have access between the two LANs to share resources while maintaining the individual T1 connections. The hardware available to create the connectivity between LANs is a Nortel 3510-24 L3 switch. This switch has 2 port-based VLANs set up on it, one for each LAN. LAN 1 has address space 192.168.1.0/255 and LAN 2 has address space 10.0.0.1/255. I understand what a VLAN/subnet is but I don't understand how to create routes between VLANs on this HW. Can anyone provide some guidance?

 

[VinceWhirlwind]

I've only used 5500, 8300 & 8600 Nortel switches at L3, but I'm sure the basic principle is the same:

- Each LAN is connected to your L3 switch either on a port which is "untagall" & in the correct VLAN, or "tagall" or "untagpvidonly" and a member of the correct VLAN.

- On the L3 switch, both VLANs exist, and for each a VLAN interface is created with an IP address.

Option 1:
- The IP address is the default GW for its VLAN - The L3 switch will then automatically route between the two VLANs, but you will need some other routes configured to send traffic out the appropriate GWs.

Option 2:
- Your default GW stays where it is but you configure routes on each device pointing at the L3 switch to get to the other subnet.

- MAKE SURE you configure an access list to protect your "internal" LAN from your "public" one. Ideally, you should have a firewall separating them. Be careful, your job could be at risk if you join these two LANs insecurely.

 

[andy88]

Global mode
"ip routing" - to enable routing globally on the switch.

Add an ip address on each vlan and make it the default gateway for all devices in the vlan.

Conf mode
interface vlan 1
ip address 192.168.0.254 255.255.255.0