Question about setting up routing on HP A5500 (EI) Series Switch JD377A

Notice: Page may contain affiliate links for which we may earn a small commission through services like Amazon Affiliates or Skimlinks.

NachoCDN

Active Member
Apr 18, 2016
110
90
28
53
first time posting for assistance on the STH forums, so hopefully, i provide enough information to correctly describe the issue. first let me describe what i'm trying to achieve before i describe the problem and attach the switch configuration.

i'm currently using this switch as a part of my homelab to experiment with trunking and passing multiple vlans into a vmware esxi 6.7 environment. i want to be able to pass multiple vlans through to the esxi host and have port groups associated with each vlan on the esxi host. i also would like each of these port groups to be able to get out to my home network (192.168.2.X) and then the internet.

at the moment the uplink for the switch to my home network is going through port 1 on vlan 1. the current configuration of port 1-3,5-23 is the same as follows:


[HP-GigabitEthernet1/0/1]display this
#
interface GigabitEthernet1/0/1
port link-mode bridge
#
return

and more details

GigabitEthernet1/0/1 current state: UP
IP Packet Frame Type: PKTFMT_ETHNT_2, Hardware Address: 20fd-f1e9-df7b
Description: GigabitEthernet1/0/1 Interface
Loopback is not set
Media type is twisted pair
Port hardware type is 1000_BASE_T
1000Mbps-speed mode, full-duplex mode
Link speed type is autonegotiation, link duplex type is autonegotiation
Flow-control is not enabled
The Maximum Frame Length is 9216
Broadcast MAX-ratio: 100%
Unicast MAX-ratio: 100%
Multicast MAX-ratio: 100%
Allow jumbo frame to pass
PVID: 1
Mdi type: auto
Link delay is 0(sec)
Port link-type: access
Tagged VLAN ID : none
Untagged VLAN ID : 1
Port priority: 0

if i plug directly into any of those ports 2-3, 5-23 i immediately get a 192.168.2.X address from the router at 192.168.2.1. what i would like to configure is that on port GigabitEthernet1/0/24, any of the clients connecting to VLANs 20 or 21 and using the associated VLAN Interfaces for those VLANS (10.25.20.1 and 10.25.21.1 respectively) can connect to the 192.168.2.X network. at the moment only VM's which are on VLAN1 can communicate on the 192.168.2.X network since the defaiult PVID on this port is 1.

I've been using the following command reference here but haven't found the solution.

here is relevant port configuration port GigabitEthernet1/0/24:

interface GigabitEthernet1/0/24
port link-mode bridge
port link-type hybrid
port hybrid vlan 1 20 to 21 tagged
#

here is the VLAN 20 configuration

[HP-vlan20]display vlan 20
VLAN ID: 20
VLAN Type: static
Route Interface: configured
IP Address: 10.25.20.1
Subnet Mask: 255.255.255.0
Description: VLAN 0020
Name: VLAN 0020
Tagged Ports:
GigabitEthernet1/0/24
Untagged Ports:
GigabitEthernet1/0/4

here is the VLAN 21 configuration

[HP-vlan20]display vlan 21
VLAN ID: 21
VLAN Type: static
Route Interface: configured
IP Address: 10.25.21.1
Subnet Mask: 255.255.255.0
Description: VLAN 0021
Name: VLAN 0021
Tagged Ports:
GigabitEthernet1/0/24
Untagged Ports: none

The routing table:

Routing Tables: Public
Destinations : 9 Routes : 9

Destination/Mask Proto Pre Cost NextHop Interface

0.0.0.0/0 Static 60 0 192.168.2.1 Vlan1
10.25.20.0/24 Direct 0 0 10.25.20.1 Vlan20
10.25.20.1/32 Direct 0 0 127.0.0.1 InLoop0
10.25.21.0/24 Direct 0 0 10.25.21.1 Vlan21
10.25.21.1/32 Direct 0 0 127.0.0.1 InLoop0
127.0.0.0/8 Direct 0 0 127.0.0.1 InLoop0
127.0.0.1/32 Direct 0 0 127.0.0.1 InLoop0
192.168.2.0/24 Direct 0 0 192.168.2.205 Vlan1
192.168.2.205/32 Direct 0 0 127.0.0.1 InLoop0


And the entire switch running configuration, which i have removed most the similar config for ports which are on vlan 1 and set to bridged.


[HP-vlan20]display current-configuration
#
version 5.20, Release 2208
#
sysname HP
#
irf mac-address persistent timer
irf auto-update enable
undo irf link-delay
#
domain default enable system
#
telnet server enable
#
acl number 2000
rule 1 permit source 192.168.2.16 0
#
vlan 1
#
vlan 20 to 21
#
vlan 271
#
radius scheme system
primary authentication 127.0.0.1 1645
primary accounting 127.0.0.1 1646
user-name-format without-domain
#
domain system
access-limit disable
state active
idle-cut disable
self-service-url disable
#
user-group system
#
local-user admin
password simple admin
authorization-attribute level 3
service-type telnet
local-user iiIwr
local-user test
password simple password
authorization-attribute level 3
service-type telnet
#
interface NULL0

#
interface Vlan-interface1
ip address 192.168.2.205 255.255.255.0
#
interface Vlan-interface20
description Vlan-interface20
ip address 10.25.20.1 255.255.255.0
#
interface Vlan-interface21
ip address 10.25.21.1 255.255.255.0
#
interface GigabitEthernet1/0/1
port link-mode bridge
#
interface GigabitEthernet1/0/2
port link-mode bridge
#
interface GigabitEthernet1/0/4
port link-mode bridge
port link-type trunk

port trunk permit vlan 1 20
port trunk pvid vlan 20
#
#
interface GigabitEthernet1/0/23
port link-mode bridge
#
interface GigabitEthernet1/0/24
port link-mode bridge
port link-type hybrid
port hybrid vlan 1 20 to 21 tagged
#
interface GigabitEthernet1/0/25
port link-mode bridge
shutdown
#

#
interface GigabitEthernet1/0/25
port link-mode bridge
shutdown
#
interface GigabitEthernet1/0/26
port link-mode bridge
shutdown
#
interface GigabitEthernet1/0/27
port link-mode bridge
shutdown
#
interface GigabitEthernet1/0/28
port link-mode bridge
shutdown
#
ip route-static 0.0.0.0 0.0.0.0 192.168.2.1
ip route-static 10.25.20.0 255.255.255.0 192.168.2.1
ip route-static 10.25.20.0 255.255.255.0 192.168.20.1
#
ssh server enable
#
load xml-configuration
#
user-interface aux 0
user-interface vty 0
acl 2000 inbound
user-interface vty 1
acl 2000 inbound
authentication-mode scheme
user-interface vty 2 15
acl 2000 inbound
#

I appreciate any assistance or idea anyone has!!