VLAN and VRF ??

sameat · March 24, 2007, 6:02pm

hi,

Anybody using VRF?

Common Scenario:

Customer sharing network 192.168.1.0/24 and gw 192.168.1.1

Vlan 1 need Internet and also need to talk with vlan 3
Cust 1 -> 192.168.1.1/24 gw 192.168.1.1
Cust 2 -> 192.168.1.2/24 gw 192.168.1.1

Vlan 2 no need Internet ie no use of gateway either…
Cust 3 -> 192.168.1.3/24 gw 192.168.1.1
Cust 4 -> 192.168.1.4/24 gw 192.168.1.1

Vlan 3 need to talk only with VLAN1
Cust 5 -> 192.168.1.5/24 gw 192.168.1.1
Cust 6 -> 192.168.1.6/24 gw 192.168.1.1

The problem I cannot keep the 192.168.1.1 interface of my router on both vlan nor I can connect it to the trunk port and create 2 vlan interface and share common overlapping address.

Is VRF in Vlanned Canopy network is a solution to do intervlan routing using overlapping IP address on different VLAN? Does it work to overcome problem?

vj1 · March 24, 2007, 9:00pm

yes you can use VRF, but CRF has got nothing to do with Canopy nor do you need anything from canopy…

we use a CISCO 2811, but the important thing is that you will need IOS 12.4, we have 12.2 running on 7600’s although they do VRF it is limited cos I take it you will also want to NAT the customers.

You can’t NAT in side a VRF on 12.2 (i haven’t figured it out yet) but you can in 12.4

Basically using VRF setup sub interfaces and then config int vlan <num> on that sub interface, assign IP, natting rules, DHCP -scope, then create another sub interface and assign a diff vlan on it and you can assign the same IP range.

Obviously the vlan you are assigning will correspond to the VLAN configured on the Canopy kit.

you will need to create a trunk port on the router, it can be same port you use to create your VRF sub interfaces but depending on traffic I would recommend using a diff int

I have been doing this for about 6 months… i put a post up before

sameat · March 25, 2007, 7:34am

Thanks for the info.

Yes i read your previous post mentioning VRF, after i started off this topic , I overlooked .

Howz the performance of Cisco 2811 ?
In my network , I have 2 Linux (Dell PE-420)gateway each handling over 25Mb of traffic and doing firewalling and b/w mangement etc.

Have you ever tried VRF in linux box?

sameat · March 25, 2007, 7:35am

and also what is this CRF stuff ? haven’t googled it yet :lol:

vj1 · March 25, 2007, 4:57pm

sorry CRF = VRF that was a typo…

2811 is working fine for me… depends on your topology, I only need to use VRF for certain circumstances, hence I have about 20 VRF’s on a 2811 and it seems fine, I have a secondary router setup in HSRP to take over should the primary fail…

all depends on what the load on the router is and what you are getting it to do