Unsolved
1 Rookie
•
26 Posts
0
392
December 18th, 2020 09:00
General vs trunk
All of our edge switches come into our core N4064F with multipl VLans existing. From the core we have one port to our firewall out to the public net. The port to the firewall is set as General, ingress filtering enabled and belongs to 2 Vlans. One Vlan is set to tagged and the other un-tagged. Firewall port isn't doing any Vlan tagging etc. I don't understand how this is working. For one with ingress filtering shouldn't all of the incoming packets to the core switch port be dropped that are not a part of the 2 Vlans it's a member of?
Second, how are all of our other Vlans traversing the core port to firewall that are not a part of the two Vlans the core port is a member of? It's set as general and not trunk.
0 events found
DiegoLopez
6 Operator
•
2.7K Posts
0
December 21st, 2020 05:00
Hello @djhurt1,
I am not sure if I understood your question propperly, but as I understand you mentioned that you don't know why the untagged traffic works on a port-channel mode general. But this is normal operation, if you want to have vlans and control the traffic you need to have trunks. Normally, trunk works with native vlan (you can search on Google: "why Native VLAN exists on a Trunk?").
Check also this Dell Community post where the same topic is explained: When to use General ports vs Trunk ports
Regards.