Quote:
Originally Posted by PaulyPaul  I work for a Data networking group, and we are working closely with the voice group to install a voip network at a new site.
The voice group has given us a 5510 to set up separate vlans with subnets. and forwarding is enabled. From these vlans the voice people will do all their mojo and voip magic.
We will not have visibility to the 5510 switch from the voice network so we are going to set up a single port on a management vlan, and put that port on our data network.
unfortunately with forwarding enabled we are experiencing icmp leakage into our data network. But no leakage from the data to the voice network.
Is there a way to block forwarding on a single port or vlan without setting up an ACL.
Thanks
Paul |
Paul,
I'm a little confused about what exactly you are trying to accomplish? Let's start with a few questions.
How many VLANs are on the switch. Of those VLANs how many have IP interfaces assigned to them? Do you currently have a E-LAN, T-LAN, and C-LAN defined? Do you have 1 or more VLANs dedicated to Data traffic?
The ERS55xx products, can either have a management IP address, when functioning with L2 VLANs, or you can use the IP interface assigned to a particular VLAN to manage the switch. You do not need to assign a dedicated MGMT VLAN when you already have IP interfaces assigned to the switch. That is mainly used when you are just using the device as L2, and have no other means of accessing it.
Most people would opt not to place an IP interface on the VLAN they choose to have as the "E-LAN" so as to eleminate or remove any unneeded broadcast/multicast or even unicast traffic to the PBX backplane.
05-26-2005, 01:17 PM 
Linear Mode
