Got it
Huawei Enterprise Support Community
Community Forums Routing & Switching
Helping with Dot1q termin...

Helping with Dot1q termination on sub interface

Created: Nov 15, 2021 09:27:14Latest reply: Nov 17, 2021 01:05:05 163 7 0 0 0
  Rewarded HiCoins: 0 (problem resolved)
View the author 1#

Hi,

Please anyone tell me how to configure on a Sub interface to send out and receive untag frames for my managemnt subnet.


AR (i/f g0/0/8) --->SW(trunk Port, tag vlan 131, native vlan 60 untag)


AR config

i/f gig0/0/8

  und shut

i/f gig0/0/8.60

 dot1q termination vid 60

 ip address 10.10.X.1 /24


i/f gig0/0/8.60

 dot1q termination vid 131

 ip address 10.10.Y.1 /24




Inter VLAN

Like (0) Dislike (0) Favorite(0) Share Report
Previous: answer
Next: [TechNotes] Troubleshooting the Fault that Users Fail to Access Intranet Servers
Featured Answers

Recommended answer

(0) (0)
chenhui
Admin Created Nov 17, 2021 01:05:05

Hi @user_3808562
First of all, it is IMPOSSIBLE to modify the router to send and receive untagged packets on the sub-interface.
So, in your scenario, you can set the switch to tag VLAN 60, rather than sending the VLAN 60 packets untagged.
View more
  • x
  • convention:
All Answers
(0) (0)
2#
jason_hu
jason_hu Admin Created Nov 15, 2021 09:29:27

Hello,
We're working on your problem. Please be patient.
View more
  • x
  • convention:
(0) (0)
3#
jason_hu
jason_hu Admin Created Nov 15, 2021 09:39:31

Hi friend!
You can change the native vlan 60 untag to native vlan 131 untag and it will work.
Hope to help you!
View more
  • x
  • convention:

user_3808562
user_3808562 Created Nov 15, 2021 14:04:10 (0) (0)
your suggestion refer to change configuration on switch?

below the config from my switch
int eth1/0/x
switchport mode trunk
switch port trunk allow vlan 60;131 tag
switch port trunk native vlan 60
=================================
If i turn the vlan 60 in untag frame the i/f gig0/0/8.60 of AR61xx discard the packet without tag. Sub interface requires vid 60.


i/f gig0/0/8.60

dot1q termination vid 60

ip address 10.10.X.1 /24



i/f gig0/0/8.60

dot1q termination  
(0) (0)
4#
E.DR_91
E.DR_91 MVE Author Created Nov 15, 2021 10:40:50

The configuration could look as follows:

interface FastEthernet0/10

switchport trunk encapsulation dot1q ! Necessary only on 3550 and higher Catalysts

switchport trunk native vlan 100 ! Here I assume that the mgmt VLAN is 100

switchport mode trunk


Few switches do not support user settable encapsulation and come with default encap.


you can verify this by below command


#sh interfaces Fa1/0/1 capabilities | inc encap
  Trunk encap. type:     802.1Q


If 802.1q is already there then you can type rest of the commands suggested by peter.


Regards



Best regards,

View more
  • x
  • convention:

user_3808562
user_3808562 Created Nov 15, 2021 14:16:04 (0) (0)
First of all, thank for your response!
According to your suggestion, if i set vlan 60 as native, the switch will forward packet to Huawei router untaged, and the router will discard them becouse the sub interfaces check vlan id on frame before procced to layer 3 forwding.
I want the i/f gig0/0/8.60 to accept untag frames from vlan60
i/f gig0/0/8
und shut
i/f gig0/0/8.60
dot1q termination vid 60
ip address 10.10.X.1 /24
i/f gig0/0/8.60
dot1q termination vid 131
ip address 10.10 
(0) (0)
5#
E.DR_91
E.DR_91 MVE Author Created Nov 15, 2021 10:42:58

Procedure
Configure SwitchA.
# Create a VLAN.

<HUAWEI> system-view
[HUAWEI] sysname SwitchA
[SwitchA] vlan batch 30
# Add an interface to the VLAN.

[SwitchA] interface gigabitethernet 0/0/2
[SwitchA-GigabitEthernet0/0/2] port link-type trunk
[SwitchA-GigabitEthernet0/0/2] port trunk allow-pass vlan 30
[SwitchA-GigabitEthernet0/0/2] quit
# Assign an IP address to a VLANIF interface.

[SwitchA] interface vlanif 30
[SwitchA-Vlanif30] ip address 10.10.30.1 24
[SwitchA-Vlanif30] quit
# Create and configure GE0/0/1.1.

[SwitchA] vcmp role silent
[SwitchA] interface gigabitethernet0/0/1
[SwitchA-GigabitEthernet0/0/1] port link-type hybrid
[SwitchA-GigabitEthernet0/0/1] quit
[SwitchA] interface gigabitethernet 0/0/1.1
[SwitchA-GigabitEthernet0/0/1.1] dot1q termination vid 10
[SwitchA-GigabitEthernet0/0/1.1] ip address 10.10.10.1 24
[SwitchA-GigabitEthernet0/0/1.1] arp broadcast enable
[SwitchA-GigabitEthernet0/0/1.1] quit
# Configure basic OSPF functions.

[SwitchA] router id 1.1.1.1
[SwitchA] ospf
[SwitchA-ospf-1] area 0
[SwitchA-ospf-1-area-0.0.0.0] network 10.10.10.0 0.0.0.255
[SwitchA-ospf-1-area-0.0.0.0] network 10.10.30.0 0.0.0.255
[SwitchA-ospf-1-area-0.0.0.0] return
Configure SwitchB.
# Create a VLAN.

<HUAWEI> system-view
[HUAWEI] sysname SwitchB
[SwitchB] vlan batch 30
# Add an interface to the VLAN.

[SwitchB] interface gigabitethernet 0/0/1
[SwitchB-GigabitEthernet0/0/1] port link-type trunk
[SwitchB-GigabitEthernet0/0/1] port trunk allow-pass vlan 30
[SwitchB-GigabitEthernet0/0/1] quit
# Assign an IP address to a VLANIF interface.

[SwitchB] interface vlanif 30
[SwitchB-Vlanif30] ip address 10.10.30.2 24
[SwitchB-Vlanif30] quit
# Create and configure GE0/0/2.1.

[SwitchB] vcmp role silent
[SwitchB] interface gigabitethernet0/0/2
[SwitchB-GigabitEthernet0/0/2] port link-type hybrid
[SwitchB-GigabitEthernet0/0/2] quit
[SwitchB] interface gigabitethernet 0/0/2.1
[SwitchB-GigabitEthernet0/0/2.1] dot1q termination vid 20
[SwitchB-GigabitEthernet0/0/2.1] ip address 10.10.20.1 24
[SwitchB-GigabitEthernet0/0/2.1] arp broadcast enable
[SwitchB-GigabitEthernet0/0/2.1] quit
# Configure basic OSPF functions.

[SwitchB] router id 2.2.2.2
[SwitchB] ospf
[SwitchB-ospf-1] area 0
[SwitchB-ospf-1-area-0.0.0.0] network 10.10.20.0 0.0.0.255
[SwitchB-ospf-1-area-0.0.0.0] network 10.10.30.0 0.0.0.255
[SwitchB-ospf-1-area-0.0.0.0] return
Verify the configuration.
On the PCs residing on the Layer 2 network connected to SwitchA, set the default gateway address to 10.10.10.1/24, which is the IP address of GE0/0/1.1. The switch connected to SwitchA allows VLAN 10.

On the PCs residing on the Layer 2 network connected to SwitchB, set the default gateway address to 10.10.20.1/24, which is the IP address of GE0/0/2.1. The switch connected to SwitchA allows VLAN 20.

After the configuration is complete, PCs on the two Layer 2 networks are isolated at Layer 2 and interwork at Layer 3.

Configuration Files
SwitchA configuration file

#
sysname SwitchA
#
router id 1.1.1.1
#
vcmp role silent
#
vlan batch 30
#
interface Vlanif30
ip address 10.10.30.1 255.255.255.0
#
interface GigabitEthernet0/0/1
port link-type hybrid
#
interface GigabitEthernet0/0/1.1
dot1q termination vid 10
ip address 10.10.10.1 255.255.255.0
arp broadcast enable
#
interface GigabitEthernet0/0/2
port link-type trunk
port trunk allow-pass vlan 30
#
ospf 1
area 0.0.0.0
network 10.10.10.0 0.0.0.255
network 10.10.30.0 0.0.0.255
#
return
SwitchB configuration file

#
sysname SwitchB
#
router id 2.2.2.2
#
vcmp role silent
#
vlan batch 30
#
interface Vlanif30
ip address 10.10.30.2 255.255.255.0
#
interface GigabitEthernet0/0/1
port link-type trunk
port trunk allow-pass vlan 30
#
interface GigabitEthernet0/0/2
port link-type hybrid
#
interface GigabitEthernet0/0/2.1
dot1q termination vid 20
ip address 10.10.20.1 255.255.255.0
arp broadcast enable
#
ospf 1
area 0.0.0.0
network 10.10.20.0 0.0.0.255
network 10.10.30.0 0.0.0.255
#
return
View more
  • x
  • convention:
(0) (0)
6#
chenhui
chenhui Admin Created Nov 17, 2021 01:05:05

Hi @user_3808562
First of all, it is IMPOSSIBLE to modify the router to send and receive untagged packets on the sub-interface.
So, in your scenario, you can set the switch to tag VLAN 60, rather than sending the VLAN 60 packets untagged.
View more
  • x
  • convention:
Back to list

Comment

Advanced
B Color Image Link Quote Code Smilies
You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login
Huawei Website Support About Huawei Privacy User Agreement Terms of Use Cookies Cookie Settings
Huawei Enterprise Huawei Carrier Forum Training & Certification

Contact Us: e_online@huawei.com Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

APP

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.