VLAN Trouble between Watchguard and Brocade

[PlenumRated]

Hello, 

 

I can't seem to get online with any of my VLAN's. I can't get a DHCP lease as well. I have attached my config for both the Watchguard and Brocade. (VLAN 1/5 are not used.)

 

Thanks,

 

Matthew

[BrinkGG]

1 minute ago, Matthew45985 said:

Hello, 

 

I can't seem to get online with any of my VLAN's. I can't get a DHCP lease as well. I have attached my config for both the Watchguard and Brocade. (VLAN 1/5 are not used.)

 

Thanks,

 

Matthew

Sending this to a friend who has experience with Watchguard equipment. I personally don't have a lot of experience with setting up VLANs on anything outside of Unifi equipment. 

[mynameisjuan]

Gonna need some more info like what ports you are testing from

[PlenumRated]

Just now, mynameisjuan said:

Gonna need some more info like what ports you are testing from

Ok. My port that goes to the Watchguard is 1/1/1. From ports 1/1/1-24 are VLAN 110. 1/1/1 is configured in Dual Mod.  Ports 1/1/25-1/1/44 is VLAN 120. Then 1/1/45-1/1/48 is VLAN 100. 

[brwainer]

Change 1/1/1 vlan 110 to tagged.

Can you try to update to a newer Ruckus ICX firmware? They got rid of dual mode and generally improved the setup of VLANs.

[mynameisjuan]

9 minutes ago, Matthew45985 said:

Ok. My port that goes to the Watchguard is 1/1/1. From ports 1/1/1-24 are VLAN 110. 1/1/1 is configured in Dual Mod.  Ports 1/1/25-1/1/44 is VLAN 120. Then 1/1/45-1/1/48 is VLAN 100. 

So if you attach a device off say port 1/1/45 you are unable to get a lease? Are you able to reach the gateway if you statically set it int the 10.1.48.0/24 range?

 

Side note, not familiar with Dual mode. I would assume this is like a typical trunk/native

[brwainer]

On the watchguard interface VLAN settings, uncheck VLAN 1. You can’t use VLAN 1 (normally untagged traffic / default vlan on most hardware) on a VLAN interface in watchguard - or at least i’ve never seen it used that way.

 

EDIT: To be clear, you can use VLAN 1 on a VLAN interface, but it normally isn’t selected as tagged, which is what you have done. You have to apply VLAN 1 to the interface as untagged, which is done from the separate selection “Send and receive untagged traffic...” at the bottom of the window.

[PlenumRated]

6 minutes ago, brwainer said:

Change 1/1/1 vlan 110 to tagged.

Can you try to update to a newer Ruckus ICX firmware? They got rid of dual mode and generally improved the setup of VLANs.

Perfect! Thank you. I thought Dual Mode was the "core" vlan and it would assign to the ports assigned with the dual mode. Then other ports would get the other tagged VLANs. 

[brwainer]

7 minutes ago, mynameisjuan said:

So if you attach a device off say port 1/1/45 you are unable to get a lease? Are you able to reach the gateway if you statically set it int the 10.1.48.0/24 range?

 

Side note, not familiar with Dual mode. I would assume this is like a typical trunk/native

Dual mode is something AFAIK unique to Brocade. Its like tagged and untagged at the same time. The port will accept traffic already tagged as 110, and also convert incoming untagged traffic to 110. 

[PlenumRated]

8 minutes ago, mynameisjuan said:

So if you attach a device off say port 1/1/45 you are unable to get a lease? Are you able to reach the gateway if you statically set it int the 10.1.48.0/24 range?

 

Side note, not familiar with Dual mode. I would assume this is like a typical trunk/native

Thank you for the help! I got it to work!