Hey all,
Having an issue when migrating from cisco 6900 series to our new Aruba 6300m series switches. I have the PA in a HA pair, so I moved one over to my Aruba switches, then flipped it over. Most of my traffic works except one of the interfaces has has multiple tagged vlans for some DMZ stuff (guest wifi is what I am testing here). Tried a few various configs on the aruba and not able to have this work.
Cisco config that does work:
interface GigabitEthernet10/39
description GigabitEthernet10/39-rta.pal3020.02.e1/5.trunk
switchport
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 25,152,154,160,161
switchport mode trunk
spanning-tree portfast edge trunk
Aruba:
interface 9/1/18
no shutdown
description paloalto.firewall.dmz.eth5
no routing
vlan trunk native 1
vlan trunk allowed 25,152,154,160-161
Palo Alto ethernet 1/5:
ethernet1/5 {
layer2 {
lldp {
enable no;
}
units {
ethernet1/5.152 {
tag 152;
}
ethernet1/5.154 {
tag 154;
comment "VZW Backup";
}
ethernet1/5.161 {
tag 161;
}
ethernet1/5.160 {
tag 160;
}
ethernet1/5.25 {
tag 25;
}
I have also tried changing the trunk native vlan 152 tag to test and was not able to get connected to the guest wifi. The interface for the guest wifi and dhcp service comes from the PA.
Any help is appreciated!
No comments:
Post a Comment