Got it
Huawei Enterprise Support Community
Community Forums Routing & Switching
VLAN 1 does not show up w...

VLAN 1 does not show up when allow-pass

Created: Feb 20, 2020 12:16:32Latest reply: Feb 20, 2020 14:43:28 605 10 0 0 0
  Rewarded HiCoins: 0 (problem resolved)
View the author 1#

Hello everyone


I'm trying to get my head around this. Currently our whole network is built with HPE switches and we're currently swichting to Huawei switches.

The scenario:


FW (sets VLANs per Network) -> Core Switch -> Access Switch -> Huawei Switch


VLAN:

1 to 20 (VLAN 1 is for our Client Network)


What i'm trying to do:

I want to configure the Huawei switch like the current access switch which will be replaced by the Huawei Switch.

HPE Switch:

Trunk2:

    tagged 1-20

    lacp


Huawei Switch:

interface Eth-Trunk2

    port link-type trunk

    port trunk allow-pass vlan 2 to 9

    mode lacp


interface 0/0/13 to 0/0/24

    port link-type access

    undo poe enable


If i connect a client to those ports i cant get an IP from our DHCP. I can't get VLAN 1 working on the Huawei switch and i dont know why?

What happens when a trunk prot with pvid 1 gets a tagged packed with vlan 1?


What have i tried?

[sw-Eth-Trunk2]port trunk allow-pass vlan 1

[sw-Eth-Trunk2]port trunk pvid vlan 50


Thanks for your help!


bearclub

vlanETH Port

Like (0) Dislike (0) Favorite(0) Share Report
Previous: Why ISIS LDP sync causes traffic drop
Next: Mpls mtu doesn't take effect
Featured Answers

Best answer

Recommended answer

(1) (0)
chenhui
Admin Created Feb 20, 2020 13:34:25

@bearclub, please assign the PVID to another VLAN through command below:
[Huawei-Eth-Trunk1]port trunk pvid vlan VLAN-ID
View more
  • x
  • convention:

bearclub
bearclub Created Feb 20, 2020 14:01:12 (0) (0)
@bearclub - okey it work, thank you very much. But how do i know now that VLAN 1 is tagged on this interface? This is what i did but the config does not show me that VLAN 1 is tagged on this interface

[sw-Eth-Trunk2]port tr pv vl 50
[sw-Eth-Trunk2]port tr al vl 1
[sw-Eth-Trunk2]dis this
#
interface Eth-Trunk2
port link-type trunk
port trunk pvid vlan 50
port trunk allow-pass vlan 2 to 20
mode lacp
#
return  
All Answers
(0) (0)
2#
chenhui
chenhui Admin Created Feb 20, 2020 12:21:40

Hi @bearclub,
When a trunk prot with pvid 1 gets a tagged packed with vlan 1, the packet will be dropped.
By the way, trunk port allows the VLAN1 passing through by default, and the default PVID for the trunk port is VLAN 1.
View more
  • x
  • convention:

bearclub
bearclub Created Feb 20, 2020 12:31:13 (0) (0)
Hi @chenhui

So according to your answer this should work right? All the other VLANs work (VoIP, Managment, ...) except VLAN 1.  
(0) (0)
3#
chenhui
chenhui Admin Created Feb 20, 2020 12:41:50

@bearclub, from your HPE configuration, it seems that the VLAN 1 traffic will be transferred with VLAN tag attached, but the Huawei configuration you listed will untag the VLAN 1.
Please confirm if you need the VLAN 1 traffic being transferred with tagged or untagged.
View more
  • x
  • convention:

bearclub
bearclub Created Feb 20, 2020 12:54:48 (0) (0)
@chenhui - yes the HPE switch does and should transfer everything with tags including VLAN 1 - how can i get the huawei switch to accept vlan 1 to 20 with tags?  
(1) (0)
4#
chenhui
chenhui Admin Created Feb 20, 2020 13:34:25

@bearclub, please assign the PVID to another VLAN through command below:
[Huawei-Eth-Trunk1]port trunk pvid vlan VLAN-ID
View more
  • x
  • convention:

bearclub
bearclub Created Feb 20, 2020 14:01:12 (0) (0)
@bearclub - okey it work, thank you very much. But how do i know now that VLAN 1 is tagged on this interface? This is what i did but the config does not show me that VLAN 1 is tagged on this interface

[sw-Eth-Trunk2]port tr pv vl 50
[sw-Eth-Trunk2]port tr al vl 1
[sw-Eth-Trunk2]dis this
#
interface Eth-Trunk2
port link-type trunk
port trunk pvid vlan 50
port trunk allow-pass vlan 2 to 20
mode lacp
#
return  
(0) (0)
5#
bearclub
bearclub Created Feb 20, 2020 14:03:10

@chenhui - Repost with proper formatted text

okey it works, thank you very much!

But how do i know now that VLAN 1 is tagged on this interface? This is what i did but the config does not show me that VLAN 1 is tagged on this interface

[sw-Eth-Trunk2]port tr pv vl 50
[sw-Eth-Trunk2]port tr al vl 1  
[sw-Eth-Trunk2]dis this
#
interface Eth-Trunk2
 port link-type trunk
 port trunk pvid vlan 50
 port trunk allow-pass vlan 2 to 20
 mode lacp
#
return


View more
  • x
  • convention:
(0) (0)
6#
chenhui
chenhui Admin Created Feb 20, 2020 14:17:52

Posted by bearclub at 2020-02-20 14:03 @chenhui - Repost with proper formatted textokey it works, thank you very much!But how do i know now ...
Well, VLAN 1 are allowed passing through by default, and it wouldn't be displayed in the conifguration though the administrator manually assign the command port trunk allow vlan 1. But if you ban the VLAN 1 from the trunk port, the corresponding configuration will be displayed explicitly.
Actually, I'm not sure why designed like this. Maybe, the R&D guys consider the administators know this point.
View more
  • x
  • convention:
(0) (0)
7#
bearclub
bearclub Created Feb 20, 2020 14:34:22

@chenhui - thank you for clearing this up. Looks like we have to migrate vlan 1 to another vlan so its properly manageable/readable. To be honest, even if the administrators know this point i think it should be shown in the config anyways - i think it's easier to check your config, specially when displaying the whole config file. 


But lets have a look maybe i will get used to it ;)


Thanks for your help!


View more
  • x
  • convention:
(0) (0)
8#
chenhui
chenhui Admin Created Feb 20, 2020 14:43:28

Posted by bearclub at 2020-02-20 14:34 @chenhui - thank you for clearing this up. Looks like we have to migrate vlan 1 to another vlan so i ...
My pleasure. :D
View more
  • x
  • convention:
Back to list

Comment

Advanced
B Color Image Link Quote Code Smilies
You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login
Huawei Website Support About Huawei Privacy User Agreement Terms of Use Cookies Cookie Settings
Huawei Enterprise Huawei Carrier Forum Training & Certification

Contact Us: e_online@huawei.com Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

APP

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.