Solved

Simple SVI configuration


I have this setup on a cumulus vx:


The steps I used to configure cumulus were:
  1. Configure swp1 with ip address via dhcp
  2. Configure default route via swp1
  3. Configure swp2 and swp3 as access ports to vlan1701
  4. Configure svi vlan1701 with ip address 172.17.1.1/24
Traffic from hosts 1 and 2 is not forwarded out swp1. What am I missing to get this to work?

Thanks in advance!
icon

Best answer by Collin 11 October 2018, 15:03

Your SVI is not a member of the bridge. Add the following to iface vlan1701:

vlan-raw-device bridge


Alternatively, you could go "old school" and change the SVI syntax:

auto bridge.1701
iface bridge.1701
address 172.17.1.1/24
alias default_Gateway

View original

5 replies

Userlevel 5
Do host1 and host2 have a default route pointing to 172.17.1.1?

What does 'cat /etc/network/interfaces' look like?
@Eric Pulvino the hosts do have a default route to 172.17.1.1.

cumulus@cumulus:mgmt-vrf:~$ cat /etc/network/interfaces
# This file describes the network interfaces available on your system
# and how to activate them. For more information, see interfaces(5).

source /etc/network/interfaces.d/*.intf

# The loopback network interface
auto lo
iface lo inet loopback

# The primary network interface
auto eth0
iface eth0
address 192.168.56.2/24
vrf mgmt

auto swp1
iface swp1 inet dhcp
alias to_Internet

auto swp2
iface swp2
alias to_debian01
bridge-access 1701

auto swp3
iface swp3
alias to_debian02
bridge-access 1701

auto swp4
iface swp4
address 10.0.0.2/30

auto bridge
iface bridge
bridge-ports swp2 swp3
bridge-vids 1701
bridge-vlan-aware yes

auto mgmt
iface mgmt
address 127.0.0.1/8
vrf-table auto

auto vlan1701
iface vlan1701
address 172.17.1.1/24
alias default_Gateway
vlan-id 1701
Userlevel 5
The above output looks good.

What does 'net show route` look like?

Does the device connected to swp1 have a return route for 172.17.1.0/24 to handle the response?

If this is in VX, when you run 'sudo tcpdump -enni swp1' on the switch, do you see the traffic from either of the hosts leaving that interface?
Your SVI is not a member of the bridge. Add the following to iface vlan1701:

vlan-raw-device bridge


Alternatively, you could go "old school" and change the SVI syntax:

auto bridge.1701
iface bridge.1701
address 172.17.1.1/24
alias default_Gateway
Userlevel 5
@Collin is right, I didn't even notice!

Reply