Hoping someone can help me out. Have a switch switch0 on an ER-X that I each VLAN is tagged as needed and works with vlan-aware is enabled but I can't route between VLANs. I disable vlan-aware and I'm able to route between VLANs. With vlan-aware enabled I can ping both VLANs from the ER-X but not from a device on VLAN 1 to device on VLAN 11 or vice versa. I disable vlan-aware and this issue goes away.
There's a managed switch on eth3 which I can ping devices on both VLANs without any issues so the VLAN tagging is working.
ubnt@rt# ping 10.249.16.6 PING 10.249.16.6 (10.249.16.6) 56(84) bytes of data. 64 bytes from 10.249.16.6: icmp_req=1 ttl=64 time=1.78 ms 64 bytes from 10.249.16.6: icmp_req=2 ttl=64 time=1.43 ms ^C --- 10.249.16.6 ping statistics --- 2 packets transmitted, 2 received, 0% packet loss, time 1000ms rtt min/avg/max/mdev = 1.437/1.608/1.780/0.176 ms [edit] ubnt@rt# ping 10.249.17.53 PING 10.249.17.53 (10.249.17.53) 56(84) bytes of data. 64 bytes from 10.249.17.53: icmp_req=1 ttl=64 time=4.79 ms 64 bytes from 10.249.17.53: icmp_req=2 ttl=64 time=1.27 ms 64 bytes from 10.249.17.53: icmp_req=3 ttl=64 time=1.48 ms ^C --- 10.249.17.53 ping statistics --- 3 packets transmitted, 3 received, 0% packet loss, time 2001ms rtt min/avg/max/mdev = 1.274/2.518/4.799/1.615 ms
Here's my switch0 config with vlan-aware enabled:
switch switch0 {
address 10.249.16.1/24
description Local
ip {
}
mtu 1500
switch-port {
interface eth2 {
vlan {
vid 1
}
}
interface eth3 {
vlan {
vid 11
vid 1
}
}
interface eth4 {
vlan {
vid 1
}
}
vlan-aware enable
}
vif 11 {
address 10.249.17.1/24
description "Security VLAN"
ip {
}
}
}