Business Community > Switches > TL-SG3428MP and VLAN mapping
< Switches

TL-SG3428MP and VLAN mapping

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

TL-SG3428MP and VLAN mapping

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
TL-SG3428MP and VLAN mapping
TL-SG3428MP and VLAN mapping
2022-05-17 17:37:18 - last edited 2022-05-25 19:02:40
Model: TL-SG3428MP  
Hardware Version: V4
Firmware Version: 4.0.0 Build 20210903 Rel.56410

I have next test stand

 

PC with vlan20 interface ------> ( port 3 ---- TL-SG3428 ---- port 1 ) <---- UPLINK  switch

 

Next config

#
vlan 15
        name "test15"

#
vlan 25
        name "MGMT"

#
dot1q-tunnel
dot1q-tunnel mapping

#
interface gigabitEthernet 1/0/1
  description "uplink"
  switchport general allowed vlan 15,25 tagged
  no switchport general allowed vlan 1
  switchport dot1q-tunnel mode nni

#                                     
interface gigabitEthernet 1/0/3
  description "pc_test"
  switchport general allowed vlan 15 tagged

  no switchport general allowed vlan 1
  switchport dot1q-tunnel mode uni

  switchport dot1q-tunnel replace 20 15 "rep20_to15"

#
monitor session 1 source interface gigabitEthernet 1/0/1 both
monitor session 1 destination interface gigabitEthernet 1/0/24

 

(monitor session for Wireshark on another PC)

I see next situation:
When packet direction from PC to UPLINK
PC vlan20  ----> packet with tag 20 -----> TL-SG3428 replaced tag from 20 to 15 ----> packet with TAG 15 going to UPLINK ----->

When packet direction from UPLINK to PC

UPLINK switch -----> packet with TAG 15 -----> TL-SG3428 didn't replace tag 15 to 20 -----> packet still with TAG 15  going to PC ------>

What have I done wrong?

 

SW#show int swi g 1/0/3
 Port Gi1/0/3:
 PVID: 1
 Acceptable frame type: All
 Ingress Checking: Enable
 Member in LAG: N/A
 Link Type: General
 Member in VLAN:
 Vlan      Name                Egress-rule
 ----      -----------         -----------
 15        test15              Tagged

 

SW#show mac address-table interface g 1/0/3

                    MAC Address Table                    
------------------------------------------------------------  
MAC                VLAN    Port     Type            Aging    
---                ----    ----     ----            -----    
00:e0:4c:68:01:87  1       Gi1/0/3  dynamic         aging    
00:e0:4c:68:01:87  15      Gi1/0/3  dynamic         aging    

Total MAC Addresses for this criterion: 2

 

SW#show dot1q-tunnel
 VLAN-VPN Mode:      Enabled
 Mapping Mode:       Enabled

 

SW#show dot1q-tunnel interface
 Port      Type      Tpid      Use Inner Priority  Miss Drop           LAG
 -------   -------   -------   ------------------  ------------------  ---
 Gi1/0/1   NNI       0x8100    Disable             Disable             N/A
 Gi1/0/2   NONE      0x8100    Disable             Disable             N/A
 Gi1/0/3   UNI       0x8100    Disable             Disable             N/A
 Gi1/0/4   NONE      0x8100    Disable             Disable             N/A
 Gi1/0/5   NONE      0x8100    Disable             Disable             N/A

 

SW#show dot1q-tunnel mapping
 Port                C-VLAN   SP-VLAN   Action      Name
 --------------      ------   -------   ---------   -----------
 Gi1/0/3             20       15        replace     rep20_to15

 

  0      
 
  0      
 
#1
Options
4 Reply
Re:TL-SG3428MP and VLAN mapping
2022-05-18 10:29:40

  @Mr_John Not sure if I understand you correctly. But from your cinfig I did see some thing strange.

 

1. I believe you are using VLAN VPN however VLAN VPN is not "replace" the VLAN Tag. It's actually "add" a Tag to the existing tagged package. 

 

So your packet should be like this:

PC vlan20  ----> packet with tag 20 -----> TL-SG3428 ADD tag 15 to the packet (the packet with Tag 15 and inside the packet there is another Tag 20)----> packet with TAG 15 going to UPLINK

 

2. That means from Uplink to test PC packet should also contains two Tags. Outside VLAN 15 and inside VLAN20. If this packet doesn't have VLAN20 inside, the port won't able to transfer it correctly

 

3. The CLI command you used may not correct. I checked the CG, to set up TPID the command is (config-if)#switchport dot1q-tunnel tpid or switchport dot1q-tunnel mapping

 

You may refer to the CG. There is no "dot1q-tunnel replace" command for tplink switch

  0  
  0  
#2
Options
Re:TL-SG3428MP and VLAN mapping
2022-05-19 13:09:23

  @Somnus 

thank you for your replay

 

But in my case the main goal is

- CHANGE TAG 20 (from PC customer port) to TAG 15 (for my Service network) for packets from PC to Uplink

- CHANGE TAG 15 (from my Service network) to TAG 20 (for PC customer port) for packets from Uplink to PC

 

I have tested QinQ functional for add second tag and it is working fine and correct

And  I have read documentation, but in docs I didn't see about "replace" command (may be it is undocumented functional)

 

I tried to config like in documentation (as you mentioned) in part  about Flexible VLAN VPN but it doesn't  work correct.

I will write about it a little bit later.

  0  
  0  
#3
Options
Re:TL-SG3428MP and VLAN mapping
2022-05-23 06:58:19 - last edited 2022-05-25 19:02:40

Dear @Mr_John,

 

Mr_John wrote

But in my case the main goal is

- CHANGE TAG 20 (from PC customer port) to TAG 15 (for my Service network) for packets from PC to Uplink

- CHANGE TAG 15 (from my Service network) to TAG 20 (for PC customer port) for packets from Uplink to PC

 

I have tested QinQ functional for add second tag and it is working fine and correct

And  I have read documentation, but in docs I didn't see about "replace" command (may be it is undocumented functional)

 

Try adding the following config and check if it works for your case:

 

interface gigabitEthernet 1/0/3
  description "pc_test"
  switchport general allowed vlan 15 tagged
  no switchport general allowed vlan 1
  switchport dot1q-tunnel mode uni
  switchport dot1q-tunnel replace 20 15 "rep20_to15"

  switchport dot1q-tunnel replace 15 20 "rep15_to20"

>> Omada EAP Firmware Trial Available Here << *Try filtering posts on each forum by Label of [Early Access]*
  0  
  0  
#4
Options
Re:TL-SG3428MP and VLAN mapping
2022-05-25 19:08:37

  @Fae 

sorry , but I checked it again this config and it does not work correct ((

 

  0  
  0  
#6
Options

Information

Helpful: 0

Views: 624

Replies: 4

Related Articles
TL-SG3428MP firmware update make switch unmanageable
702 0
TP-Link TL-SG3428MP Cant adopt by controller
427 0
ACL between VLAN and Routed Port on TL-SG3428XMP 2.0
533 0
Static IP for TL-SG3428MP on Omada Software controller
815 0
Accesing Device diagnostic/cable test on TL-SG3428MP v5.0 switch after adopted
364 0
TL-SG3428XMP power consumption
216 0
About Us
Press
Copyright © TP-LINK CORPORATION PTE. LTD. All rights reserved.