Layer 2 and Layer 3 VPN

Jerem · March 26, 2020, 7:23am

Hi,

I tryed to configure Layer2 VLAN between 2 sites in my environnement. Route from layer3 to layer2 failed with 96% loss

Actually i have 20 sites interconnect on Layer3 with pepvpn

sample :
first site is Pep 710 in HA mode - VIP: 192.168.1.1/24
The second site is Pep580 in HA mode - VIP: 192.168.99.1/24

8 VLAN who communicate with layer3 and no problem

I create a similar vlan between the same sites. I use the subnet 192.168.200.0/24

Pep710 - VLAN 850 - 192.168.200.254/24 - Layer2 bridge profile OK - do not override
Pep580 - VLAN 850 - 192.168.200.253/24 - Layer2 bridge profile OK - do not override

I connect a laptop on the first site with ip: 192.168.200.10/24 gw: 192.168.200.254
and laptop on the second side with ip 192.168.200.20/24 gw:192.168.200.254

ping OK into the layer 2 between 192.168.200.10 & 192.168.200.20 - Layer-2 great

but route layer3 failed - i can’t ping from another vlan except on the same site

Any thoughts?

sitloongs · March 26, 2020, 6:29pm

@Jerem

Which device is owning the VLAN 192.168.200.x/24 network ? What is the default gateway for the labtops ?

Beside that, do you have detail network diagram included the VLAN info that can share ? Suspect the issue is more in routing design issue.

Maybe we could follow up the case via support ticket?