I really felt what you suggested that having a buddy to discuss about this is the best thing to learn. Unfortunately, under my circumstances, I couldnt have one. This time, your passion and motivation is more than enough to pump me up. Wish you and your entire family the best!
Thanks for CBT-Nuggets, Mr.Keith and Mr.Jeremy. i dont even pass thies exams but still working with Switches, Routers even different vendors such HP, Huawei just like you says "Lost of similarity" Unforgetable two heros on my life
Super awesome, simple and with a great simple scenario to understand the SVIs. I can't thank you enough Keith for all the great knowledge and information you are sharing LIVE in a whole new different and excellent way to present, very organized, and love all the background soundtracks. Thanks again!
I realy enjoyed when you start talking about your past stories and experiences , its valuable knowledge , thank you my friend for everything you doing for us , and keep telling us about your past experiences as network engineer ...this is very helpful for me as network engineer .
As with all your amazing informative content the channel is growing its going to be real big & busy for you in no time, best part of your channel is you read our comments and reply to everyone which is super special for us, wondering after reaching numbers would you forget your die hard fans like me ;) I am just overwhelmed getting revert from my Idol :) Hope you understand the feeling behind, lots of love & respect Keith.
Thank you for that Gulab! I like to carve out a couple hours a week, to review comments, take in the feedback, and interact with others who are taking time to benefit from the content here. It is one of top 10 favorite activities. All made possible because of people like you!!! Glad you are here.
Hi Keith!, please explain how can we get the logical VLAN Interfaces 10,20,30 as UP/UP without assigning the "Physical" VLANs to any port. (Minute 9:23), The answer will be really appreciated. I'm trying to create a management VLAN and the result is always the same: VLAN "X" --> UP/DOWN
Hey lol, I'm a little delayed to your channel and playlist and so far I'm loving it. Its a great person to person way of explaining things in technical terms/scenarios without the normal no comma or breathe taken technical videos you find whether on Lynda and other places. This got me thinking though, some of us are already in the field and getting recertified after a long time or wanting another perspective for the exact same training being done elsewhere, have you ever thought about doing the core exam for the CCNP in a playlist for those who want to take it to the next level and from there decide w/ area of focus exam to take after it?
Keith I'm working on a packet trace topology for this video. I also made a rough draft of your master topology, ei ospf, hsrp, etc. I'm in the process of covering everything I need to know about l3 switching for the ccna, but I'm beginning to wonder about how to most effectively prepare for the exam. Without crippling me with options i wanted your input about efficiently improving my own practical ability, while systematically covering all new material for the new ccna. While I wait I will try to make the topology you've laid out work in packet tracer. Thanks in advance.
Thank you for the question Nanimo Nada. As far as being ready, I would suggest referring to the blueprint, and checking if you are able to meet the requirements. If they say "configure" you should be at that level. If they say "describe" that would be less than the level of configure, but still at a level of understanding. The exam is extremely fair, and stays true to the blueprint requirements.
Hi Keith, appreciated if you can show these with the second topology having two core switches (both switches in redundant mode) . In that case where will be configuring the default gateway ip address? and also we need to configure interface VLAN ip address in both the switches for VLAN10, VLAN20 and VLAN 777.
Hi Keith is it possible to talk about 3 tier architecture and VTP soon? And also just expound as to why we should use inter-vlan routing as opposed to ROAST? I think these are topics that would good. Thanks again
Thank you for the question Bob_Om. I have videos on both ROAS and MLS inter-vlan routing here on RUclips. On the VTP, it may be a bit beyond the current CCNA focus, that I have here on the channel at the moment.
could your topology work without trunking? just with the clients, a multi-switch and a router? or do i have to add trunks which means having 2 additional L2 switches?
Hey Keith, something that I am confused about is the IPs for the VLANs. Are those IPs not actually assigned to an SVI and are only assigned the the PC's within the VLAN? Then when the PC wants to send traffic via it's default gateway the SW is able to ARP with the Routers sub interface in order to send that traffic?
Thank you for the question @davidspalding1375. For an SVI to work for VLAN 10, there needs to be a VLAN 10 first, otherwise the SVI (logical L3 interface) for VLAN 10 won't ever come up and be usable by the MLS. Presuming VLAN 10 exists, interface VLAN 10 exists and has an IP in the same subnets of other devices in VLAN 10. Regarding your question, the IPs used in VLAN 10 are on the PCs as well as on an SVI (as if it was just another device, connected to VLAN 10). If using a sub-interface on a router, to support VLAN 10, the same logic exists, except the router is doing trunking between it and the switch, to include the 802.1Q tag that identifies a frame as belonging to VLAN 10. Hope that is useful, and happy studies.
Keith, I don't remember this being explained in this video but on a multi-layer switch, I am struggling to understand the difference between bringing up a SVI interface and assigning an iP address logically vs going in the interface , running "no switchport" command and assigning an iP address. Can you explain the differences and use cases for each? Or if you have a resource you know of I could check that would be super awesome! Thanks for all you do!
Thank you for the question Nate D. If we say "no switchport" on a physical port, that port is just like a physical (external connecting) L3 interface on a typical router. If we create a Switched Virtual Interface (SVI), it doesn't have any physical characteristics. It is a logical L3 interface that live (hovers if you will) in the VLAN it belongs to. Any device in that VLAN can use that IP as a default gateway. Let me know if that helps. Feel free to join my Discord sever. Lots of people there helping each other out. Each Saturday at 10am Pacific I hold my "Office Hour" where learners can ask questions about the topics they are studying. Mostly focusing on Cisco CCNA 200-301 topics. Feel free to join us there live if you are available. Here is the link ogit.online/Join_OGIT_on_Discord Thanks again Nate D.!
How do you then intergrade packet filtering between VLANs if routing is done on L3 switch? Otherwise, what's the point of using VLANs in the first place?
One question if anyone can help me, but first let me give you the background. I'm in my freshman year and enrolled in a routing and switching course. So my question is as Keith said in the video that in the traditional method we would've to have a router to connect two different vlans for communication. But we are still using a separate device switch (switch 3 )in the example for connecting vlans. Can't we just set up virtual interfaces on both the switches (SW1 and SW2). Would that work? The point is we are still using a separate device (I'm thinking money wise)
Thank you Mehrose Nasir. Feel free to join my Discord sever. Lots of people there helping each other out. Each Saturday at 10am Pacific I hold my "Office Hour" where learners can ask questions about the topics they are studying. Mostly focusing on Cisco CCNA 200-301 topics. Feel free to join us there live if you are available. Here is the link ogit.online/Join_OGIT_on_Discord Thanks again Mehrose Nasir!
i have one query that is in svi multiple vlan runs, suppose one vlan like 113, one user inserts gateway ip in pcs ip address. result is under particular vlan all user will be down. is there are any mitigation process. thanks
Thank you Saeed Rahat. Feel free to join my Discord sever. Lots of people there helping each other out. Each Saturday at 10am Pacific I hold my "Office Hour" where learners can ask questions about the topics they are studying. Mostly focusing on Cisco CCNA 200-301 topics. Feel free to join us there live if you are available. Here is the link ogit.online/Join_OGIT_on_Discord Thanks again Saeed Rahat!
Hi Keith I gotta say I love your videos, they have helped me a lot. I was wondering if I could ask you a quick question that's been on my mind for weeks. I would like to know your thoughts on having a palo alto firewall (no router, palo to modem) attached to a SG-550x and using the SG as an L3 switch. Thing is I have like 8 vlans and I would like to know if you would use the switch with ACLs to block inter-VLAN communication (since I don't want for them to speak to each other) and block on the palo or you would keep using the SG with ACLs (which are becoming a pain you know where). I don't see much content of VLANs blocked by ACLs. Love your way of teaching and everything you do for everyone try to keep on learning. Greetings from Argentina and have a great year!
@@KeithBarker I understand, my question was more directed towards the switch. would you say it would be better the l3 approach with ip routing or leave it on l2 and go for subinterfaces? Thank you so much again for taking the time to answer and for everything you do on this channel.
Thank you for the question Esmatullah Saidy! If the VLAN doesn't exist, or if there are no ports associated with that VLAN (trunks or access ports), those would be reasons the L3 logical VLAN interface may not be up. Also, if the interface is administratively down, that would cause it also. :) Thanks for the question, and for your participation.
Good morning Keith, can please create a tutorial for the meraki product base on recommended standard network. Also the warm spare configuration for mx100. Please!
Thank you Wilson Unu for the topic recommendation. I will keep that on my radar and see about working that in to a future video. Thanks again for the input, and for being here.
Hi Keith, thanks for all your hardwork putting these videos for us. I watched one of your old videos inter-VLAN routing and you configured a switch using "IP routing" command here: ruclips.net/video/Wl_-tdnCUEE/видео.html ...On this video you did not use it. Is this command obsolete? Thank you
Thank you for the question guitarbrix. On some multi-layer switches, IP routing is off by default. That was often the case with the older generation of multi-layer switches. With current IOS, ip routing is normally enabled by default. Thanks again for the question, and happy studies!
Keith you are the best, hands down.
You are an invaluable asset to the community.
Thank you Feron Rolle! I appreciate your kind comments.
I really felt what you suggested that having a buddy to discuss about this is the best thing to learn. Unfortunately, under my circumstances, I couldnt have one. This time, your passion and motivation is more than enough to pump me up. Wish you and your entire family the best!
You can do it! Thank you Ave.
Thanks for CBT-Nuggets, Mr.Keith and Mr.Jeremy. i dont even pass thies exams but still working with Switches, Routers even different vendors such HP, Huawei just like you says "Lost of similarity" Unforgetable two heros on my life
Thank you @TheMrinshaf!
@13:33
Kieth : " I did a project for the government...."
US Government : **clearsthroat**
Kieth : " I forgot what I was teaching"
Best instructer i know. Thanks Keith... Been following you for long.
Thank you Lucian Johr!
Super awesome, simple and with a great simple scenario to understand the SVIs. I can't thank you enough Keith for all the great knowledge and information you are sharing LIVE in a whole new different and excellent way to present, very organized, and love all the background soundtracks. Thanks again!
Thank you Jair Bolivar! I appreciate your being here, your kind words, and your positive outlook! Way to be, and thank you again!
Dude... I can't tell you how much I enjoy your trainings, enthusiasm etc... Thank you so much!
Glad you enjoy it!
I realy enjoyed when you start talking about your past stories and experiences , its valuable knowledge , thank you my friend for everything you doing for us , and keep telling us about your past experiences as network engineer ...this is very helpful for me as network engineer .
Thanks for listening
I'm currently in the CCNA2 course and god thank you for your videos!
Happy to do it, thanks for the feedback D O O M.
Stay well Keith thanks
Thank you zoltron30!
Not only informative but enjoyable as well, Thank you for sharing this video!
Glad you enjoyed it!
As with all your amazing informative content the channel is growing its going to be real big & busy for you in no time, best part of your channel is you read our comments and reply to everyone which is super special for us, wondering after reaching numbers would you forget your die hard fans like me ;) I am just overwhelmed getting revert from my Idol :) Hope you understand the feeling behind, lots of love & respect Keith.
Thank you for that Gulab! I like to carve out a couple hours a week, to review comments, take in the feedback, and interact with others who are taking time to benefit from the content here. It is one of top 10 favorite activities. All made possible because of people like you!!! Glad you are here.
Super mega 👏 Awesome!!!!! Thanks again Keith.
Thank you Buenos
Wow OSPF network types, thanks a lot Keith..
You got it Thilak S!
You can really tell when someone loves what they do
Thank you DuragFit!
Hi Keith!, please explain how can we get the logical VLAN Interfaces 10,20,30 as UP/UP without assigning the "Physical" VLANs to any port. (Minute 9:23), The answer will be really appreciated. I'm trying to create a management VLAN and the result is always the same: VLAN "X" --> UP/DOWN
I'm waiting for your comments friends
Hey lol, I'm a little delayed to your channel and playlist and so far I'm loving it. Its a great person to person way of explaining things in technical terms/scenarios without the normal no comma or breathe taken technical videos you find whether on Lynda and other places. This got me thinking though, some of us are already in the field and getting recertified after a long time or wanting another perspective for the exact same training being done elsewhere, have you ever thought about doing the core exam for the CCNP in a playlist for those who want to take it to the next level and from there decide w/ area of focus exam to take after it?
thenks you so much you helpt me alot man i have no words for this
Happy to do it, thanks for the feedback @user-rk4bx8ut2i.
Great video... This will help us to grow in networking.. Thanks............
Happy to do it, thanks for the feedback Suraj Rajendra Pandey.
Great video, as always. Thanks keith!
Thank you Ferds Networking! Glad you are here.
Keith I'm working on a packet trace topology for this video. I also made a rough draft of your master topology, ei ospf, hsrp, etc.
I'm in the process of covering everything I need to know about l3 switching for the ccna, but I'm beginning to wonder about how to most effectively prepare for the exam. Without crippling me with options i wanted your input about efficiently improving my own practical ability, while systematically covering all new material for the new ccna. While I wait I will try to make the topology you've laid out work in packet tracer.
Thanks in advance.
Thank you for the question Nanimo Nada. As far as being ready, I would suggest referring to the blueprint, and checking if you are able to meet the requirements. If they say "configure" you should be at that level. If they say "describe" that would be less than the level of configure, but still at a level of understanding. The exam is extremely fair, and stays true to the blueprint requirements.
Keith you are the best
Thank you Kaushal Beladiya!
Hi Keith, appreciated if you can show these with the second topology having two core switches (both switches in redundant mode)
. In that case where will be configuring the default gateway ip address? and also we need to configure interface VLAN ip address in both the switches for VLAN10, VLAN20 and VLAN 777.
Love your work and your videos, can you make a video on Private vlans, what it is and where to use and how to configure ?
Thank you NARENDRA ACHANTA!
www.youtube.com/@KeithBarker/search?query=private%20vlans
@@KeithBarker Thank you so much, haven't gone that back to find out you have already done it
Hi Keith is it possible to talk about 3 tier architecture and VTP soon? And also just expound as to why we should use inter-vlan routing as opposed to ROAST? I think these are topics that would good. Thanks again
Thank you for the question Bob_Om. I have videos on both ROAS and MLS inter-vlan routing here on RUclips. On the VTP, it may be a bit beyond the current CCNA focus, that I have here on the channel at the moment.
Default gateway is important in this layer 3 technique or not
could your topology work without trunking? just with the clients, a multi-switch and a router? or do i have to add trunks which means having 2 additional L2 switches?
Hey Keith, something that I am confused about is the IPs for the VLANs. Are those IPs not actually assigned to an SVI and are only assigned the the PC's within the VLAN? Then when the PC wants to send traffic via it's default gateway the SW is able to ARP with the Routers sub interface in order to send that traffic?
Thank you for the question @davidspalding1375.
For an SVI to work for VLAN 10, there needs to be a VLAN 10 first, otherwise the SVI (logical L3 interface) for VLAN 10 won't ever come up and be usable by the MLS.
Presuming VLAN 10 exists, interface VLAN 10 exists and has an IP in the same subnets of other devices in VLAN 10. Regarding your question, the IPs used in VLAN 10 are on the PCs as well as on an SVI (as if it was just another device, connected to VLAN 10).
If using a sub-interface on a router, to support VLAN 10, the same logic exists, except the router is doing trunking between it and the switch, to include the 802.1Q tag that identifies a frame as belonging to VLAN 10.
Hope that is useful, and happy studies.
And what about ips on the same subnet but on different vlan? Thanks
13:35 a yucca.. 29 palms!
Keith, I don't remember this being explained in this video but on a multi-layer switch, I am struggling to understand the difference between bringing up a SVI interface and assigning an iP address logically vs going in the interface , running "no switchport" command and assigning an iP address. Can you explain the differences and use cases for each? Or if you have a resource you know of I could check that would be super awesome! Thanks for all you do!
Thank you for the question Nate D.
If we say "no switchport" on a physical port, that port is just like a physical (external connecting) L3 interface on a typical router.
If we create a Switched Virtual Interface (SVI), it doesn't have any physical characteristics. It is a logical L3 interface that live (hovers if you will) in the VLAN it belongs to. Any device in that VLAN can use that IP as a default gateway.
Let me know if that helps. Feel free to join my Discord sever. Lots of people there helping each other out. Each Saturday at 10am Pacific I hold my "Office Hour" where learners can ask questions about the topics they are studying. Mostly focusing on Cisco CCNA 200-301 topics. Feel free to join us there live if you are available. Here is the link ogit.online/Join_OGIT_on_Discord
Thanks again Nate D.!
Very informative. Thanks.
Glad it was helpful!
How do you then intergrade packet filtering between VLANs if routing is done on L3 switch?
Otherwise, what's the point of using VLANs in the first place?
Keith u look Eminem in that cap and hood 👍👍
Do we have to configure default gateaway on multilayer switch ?
Because on Layer 2 switch (Roas) the default gateway was set to native vlan ip
Thanks for the video!!
What's the ending song name?
Hi keith ! SVI can be created in a Sw Layer 2 to give an IP address reachable on regular switch so you can log in and configure from putty with ssh?
One question if anyone can help me, but first let me give you the background. I'm in my freshman year and enrolled in a routing and switching course. So my question is as Keith said in the video that in the traditional method we would've to have a router to connect two different vlans for communication. But we are still using a separate device switch (switch 3 )in the example for connecting vlans. Can't we just set up virtual interfaces on both the switches (SW1 and SW2). Would that work? The point is we are still using a separate device (I'm thinking money wise)
Thank you Mehrose Nasir. Feel free to join my Discord sever. Lots of people there helping each other out. Each Saturday at 10am Pacific I hold my "Office Hour" where learners can ask questions about the topics they are studying. Mostly focusing on Cisco CCNA 200-301 topics. Feel free to join us there live if you are available. Here is the link ogit.online/Join_OGIT_on_Discord
Thanks again Mehrose Nasir!
did you previously create the vlans on the multilayer switch before creating the svis?
Thank you for the question Zenna. Yes. For the SVIs to be of any use, the Layer 2 VLANs also must exist.
@@KeithBarker Thanks Keith!
i have one query that is in svi multiple vlan runs, suppose one vlan like 113, one user inserts gateway ip in pcs ip address. result is under particular vlan all user will be down. is there are any mitigation process. thanks
Thank you Saeed Rahat. Feel free to join my Discord sever. Lots of people there helping each other out. Each Saturday at 10am Pacific I hold my "Office Hour" where learners can ask questions about the topics they are studying. Mostly focusing on Cisco CCNA 200-301 topics. Feel free to join us there live if you are available. Here is the link ogit.online/Join_OGIT_on_Discord
Thanks again Saeed Rahat!
Hi Keith I gotta say I love your videos, they have helped me a lot. I was wondering if I could ask you a quick question that's been on my mind for weeks. I would like to know your thoughts on having a palo alto firewall (no router, palo to modem) attached to a SG-550x and using the SG as an L3 switch. Thing is I have like 8 vlans and I would like to know if you would use the switch with ACLs to block inter-VLAN communication (since I don't want for them to speak to each other) and block on the palo or you would keep using the SG with ACLs (which are becoming a pain you know where). I don't see much content of VLANs blocked by ACLs. Love your way of teaching and everything you do for everyone try to keep on learning. Greetings from Argentina and have a great year!
Thank you for the question sanmv. I haven't been on a Palo device for a couple of years, so at the moment I am rusty on that.
@@KeithBarker I understand, my question was more directed towards the switch. would you say it would be better the l3 approach with ip routing or leave it on l2 and go for subinterfaces? Thank you so much again for taking the time to answer and for everything you do on this channel.
@25.45 Do we need to specify : "No Switchport" as we are giving an IP address to the Port ?
oh that's fine as its virtual port
@@MrCool4s yep, thats correct. SVIs are layer 3 ports. So no switchport is not needed.
could you please help me any dumb question and answer for ccna exam
When does an SVI comes up, as it does not in some cases?
Thank you for the question Esmatullah Saidy! If the VLAN doesn't exist, or if there are no ports associated with that VLAN (trunks or access ports), those would be reasons the L3 logical VLAN interface may not be up. Also, if the interface is administratively down, that would cause it also. :) Thanks for the question, and for your participation.
@@KeithBarker Thank you Keith, you saved my day.
Good morning Keith, can please create a tutorial for the meraki product base on recommended standard network. Also the warm spare configuration for mx100. Please!
Thank you Wilson Unu for the topic recommendation. I will keep that on my radar and see about working that in to a future video. Thanks again for the input, and for being here.
@@KeithBarker thanks you very much. I promise I will subscribing to Cbt nuggets for this topic. Please Keith. Thanks
Ur awesome! Thanks!!
You are!
Legend
I like your dolls.
Thanks!
Videos not in order
That is correct. Use the videos in the playlist as resources to help with what you are using for your main study material.
Could you help me ,free course
Hi Keith, thanks for all your hardwork putting these videos for us. I watched one of your old videos inter-VLAN routing and you configured a switch using "IP routing" command here: ruclips.net/video/Wl_-tdnCUEE/видео.html ...On this video you did not use it. Is this command obsolete? Thank you
Thank you for the question guitarbrix. On some multi-layer switches, IP routing is off by default. That was often the case with the older generation of multi-layer switches. With current IOS, ip routing is normally enabled by default.
Thanks again for the question, and happy studies!
@@KeithBarker Ok that make sense. Thank you so much for your reply. I really appreciate it. Have a good day