VLAN ip add... 1

[dvtestguy]

I'm trying to add a video server on my network, and assigned VLAN 730 on my router and switch so that the video traffic wouldn't affect any others in the network. My question is...Would I need to add "int vlan 730" > "ip add 10.115.73.1 255.255.255.240" to my switch, or some static route?

Switch config:
description Video Server
switchport
switchport access vlan 730
switchport trunk encapsulation dot1q
switchport mode access
switchport nonegotiate
no cdp enable
spanning-tree portfast trunk


Router config:
ip dhcp pool vlan730
network 10.115.73.0 255.255.255.240
dns-server 10.15.12.9 10.10.1.10
default-router 10.115.73.1
end
!
interface GigabitEthernet5/0/0.730
encapsulation dot1Q 730
ip address 10.115.73.1 255.255.255.240
ip access-group 100 in
ip nat inside

 

[vipergg]

No you don't have to add anything to the switch , a switch is a layer 2 device only . The only reason you need a address is to remotely manage the switch , it has nothing to do with moving packets . The routing is done by the router and you are trunking your vlan across the uplink from the switch. I don't think your switch config is correct though , you need to change the line switchport mode access to switchport mode trunk .

 

[ciscofreak1241]

ok, so you want to place all of your video traffic in a single broadcast domain. I'm assuming you have a software-based Catalyst switch and Cisco IOS router? And not a Catalyst Switch running in Hybrid mode. You don't need to place any routing on your switch for vlan730. Consider it being in a single subnet. The routing happens on the router. Just make sure you add that 10.115.73.x network in your routing protocol, if that is configured.

In terms of the config, you create the vlan and place it in that vlan; on the switch. Then it is best to configure your dot1q trunk from another switch port to the router. This allows better scalability if there are other VLANs you want to trunk & route for Inter-VLAN routing, if needed.

This is something to consider:

Switch Config:

vlan database
vlan 730 name video-server-network


interface X Y
description "Video Server"
switchport
switchport access vlan 730
switchport host
switchport mode access
no cdp enable
spanning-tree portfast
no shutdown


interface X Y
description "uplink to router"
switchport
switchport trunk encapsulation dot1q
switchport mode trunk
switchport nonegotiate
no cdp enable



Router config:
ip dhcp pool vlan730
network 10.115.73.0 255.255.255.240
dns-server 10.15.12.9 10.10.1.10
default-router 10.115.73.1

interface GigabitEthernet5/0/0.730
encapsulation dot1Q 730
ip address 10.115.73.1 255.255.255.240
ip access-group 100 in
ip nat inside


!--- if your using a routing protocol, like EIGRP
router eigrp 1
network 10.115.73.0 0.0.0.15
passive-interface GigabitEthernet5/0/0.730



Besides that, are you using multicast to stream to your users (or customers)? If you, you might want to consider that since that can cause other problems than just placing your video devices in there own broadcast domain. Just something to consider?

cf

 

[dvtestguy]

I do have a trunk-uplink from my 6506 switch to the 7513 router. I'd like to be able to keep it inside a single broadcast within the VLAN 730, and not affect other in the network. Should the PC/Video Server IP address be added anywhere, and what default GW would I use? Thanks...

 

[ciscofreak1241]

Your default gateway for vlan730 network should be 10.115.73.1. Your video server may be 10.115.73.5 /28 with it's default gateway going to 10.115.73.1.

Your video server is in VLAN730, which resides on network 10.115.73.0 /28. Where will the client PCs be located that will access the video server for streaming? Will it be on the VLAN730 network or a different network?

cf

 

[dvtestguy]

The PC is set for DHCP, but guessing I'll need a hard-coded address? This is where I'm stuck...I have two NICS, and not sure what to configure the PC IP as?

The 6506 and 7513 are on a 10.15.12.x network, and the 7513 is setup for NAT 10.115.x.x for inside and 10.15.12.x for outside.

The 7513 is uplinked to the 6506 allowing all vlans except vlan 8 and 12.

 

[ciscofreak1241]

Ok, so your PCs are in the same VLAN as the video server (vlan730).

Your dhcp configuration is fine, so don't worry about that. Just make sure to configure an exclusion for your dhcp pool for what is or will be statically configured. For example, to eliminate 3 of the IP's from being dynamically assigned configure the following:

ip dhcp excluded-address 10.115.73.1 10.115.73.3

Besides that, just choose one of NICs on the PCs, make sure there are configured to accept DHCP, and that is all you need. They should be able to get an IP and to be able to ping your default gateway. Maybe beyond that to your 10.115.12.x network.

cf

 

[dvtestguy]

So it looks like I'll only need to connect the NIC port to the switch port where I've configured the vlan? Do I need to have any default GW configured on the int on the switch or router?

Also, how would I avoid the video from broadcasting over the network?

 

[ciscofreak1241]

Routers don't forward broadcast by default, so that broadcast is contained within that vlan unless you have multiple switches that are also trunked together. Then we are talking about spanning tree, trunking, and other layer 2 traffic, but I'm assuming it's not the case right?

If you are concerned about controlling broadcast then there is the option of configuring storm-control on specific ports, but I would only recommend that if there are multiple switches involve. If not configured correctly in terms of percentage it can be bad.

You don't need a default gw on the switch unless you want to access the switch from another network. Is your router using static routes or a routing protocol (e.g. EIGRP, OSPF, etc)? How will the PC users access the video server? I'm getting the impression that the PC users will broadcast out to the video server. Please confirm and clarify?

cf

 

[dvtestguy]

I have two switches...a 6506 acting as a PE, trunked to a 3550 acting as a CE, and a 7513 trunked to the 6506 providing edge routing simulating internet core entry and provider service access. This router assimilates all VLANs and allows routing in between them. The router also acts as a DHCP server. The main admin GW happen to be smaller 2621.

2621 GW ---- 7513 DHCP/NAT --- 6506 PE ---- 3550 CE

I'm trying to keep the video traffic inside the 7513, and want other PC's to access the video server from the 10.15.12.x network, where the 7513/6506 sit in.

My sever has two NICS...one set as DHCP and the other as 1.1.1.1...Do I need to change any of this, if so, what do I need to further configure my switch ot router?

 

[dvtestguy]

I think I solved it? I did a "ip route 1.1.1.1 255.255.255.0 10.115.73.2" which happened to be my new DHCP address on NIC Eth0....Eth1 was addressed for 1.1.1.1

My only problem now is if the video server will broadcast the network? I'm hoping not considering I've address the port to use VLAN 7xx.

 

[ciscofreak1241]

well you don't need the second NIC unless that is for another purpose. that NIC card should be disabled with no addressing on those machines if they are not in use.

Your video server will only create broadcast in it's broadcast domain of VLAN730. That broadcast beyond the router is not forwarded unless you what it to.

So, your cat3550 is trunked to the 6506. Does it also know about VLAN730 or do you have some trunking level security on your trunks?

So, you have the 10.15.12.x network and the 10.15.73.x network configured on the c7513? So, there is another switch connected to the 10.15.12.x network? Beyond broadcast, you may want to consider a multicast configuration with your video server. I'm not sure on how many conversations will exist between the video server and the users, but video traffic alone could hurt you if you are not careful.

So consider components involving multicast, QoS, bandwidth, hardware (& its limitations) and other software-related solutions to work with your multimedia. I was in the internet multimedia world (the network-side) for 2 years and these issues were fairly common including painful. Something to think about.

cf

 

[dvtestguy]

Right, the second nic 1.1.1.1 isn't connected to anything.

Great post(s) with very helpul info. Thanks guys!