Network Management

 View Only

  • 1.  Need help in LACP setup on Aruba 2530

    Posted Jan 16, 2025 02:59 AM

    Several weeks i'm trying to get LACP to work on the Aruba 2530 without luck. I'm hoping someone here can point me in the right direction. Forgive me if i'm posting this in the wrong section.

    In short, my config is: Modem > Proxmox > Router (OPNsense virtualised)> Switch. 

    Modem has only 1 port connected that goes to my self made router box that has 5 ports (1 native and 4 from the intel i350).

    Intel i350 4-port nic:
    Port A: connected to modem as WAN
    Port B: LAN connected to port 6 on switch
    Port C + D: connected to port 2+4 on switch
    (native nic port: connected to port 5 on switch for the proxmox gui)

    OPNsense has been configured with LAGG lacp protocol for vtnet2 + vtnet3 (Port C+D on intel nic) and assigned to the corresponding VLAN's as parent interface lagg0. 

    On the Aruba 2530 switch I setup: 

    aruba2530(config)# trunk 2,4 trk1 lacp

    What I think I should do is tag the "trk1" to the VLAN ID's that I want to enable it on, but no internet when I set OPNsense to parent interface lagg0. I also tried creating a sinkhole vlan with untagged "trk1" as i've read the trunk on vlan1 could cause network loops. Also it seems I need to tag port "6" (the lan-port on the router end) on the switch on all vlans to be able to have internet connection.

    Running configuration:
     
    ; J9774A Configuration Editor; Created on release #YA.16.11.0021
    ; Ver #14:41.44.00.04.19.02.13.98.82.34.61.18.28.f3.84.9c.63.ff.37.27:05
    hostname "HP-2530-8G-PoEP"
    trunk 2,4 trk1 lacp
    no telnet-server
    no web-management
    web-management ssl
    ip default-gateway 192.168.1.1
    snmp-server community "public"
    vlan 1
       name "DEFAULT_VLAN"
       no untagged 3,8
       untagged 1,5-7,9-10,Trk1
       ip address 192.168.1.2 255.255.255.0
       exit
    vlan 10
       name "DMZ"
       untagged 3
       tagged 6,Trk1
       no ip address
    -- MORE --, next page: Space, next line: Enter, quit: Control-C   exit
    vlan 20
       name "USER"
       untagged 8
       tagged 1,6,Trk1
       no ip address
       exit
    vlan 30
       name "IOT"
       tagged 1,6,Trk1
       no ip address
       exit
    vlan 40
       name "GUEST"
       tagged 1,6,Trk1
       no ip address
       exit
    vlan 50
       name "IPCAM"
       tagged 1,6,Trk1
       no ip address
       exit
    vlan 3999
    -- MORE --, next page: Space, next line: Enter, quit: Control-C   name "SINKHOLE"
       no ip address
       exit
    spanning-tree Trk1 priority 4
    password manager
     
    HP-2530-8G-PoEP# show lacp
                                        LACP
     
               LACP      Trunk     Port                LACP      Admin   Oper
       Port    Enabled   Group     Status    Partner   Status    Key     Key
       -----   -------   -------   -------   -------   -------   ------  ------
       2       Active    Trk1      Up        No        Success   0       54    
       4       Active    Trk1      Up        No        Success   0       54    
     
     
    HP-2530-8G-PoEP# show trunks
     Load Balancing Method:  L3-based (default)
     
      Port   | Name                             Type       | Group Type    
      ------ + -------------------------------- ---------- + ----- --------
      2      |                                  100/1000T  | Trk1  LACP    
      4      |                                  100/1000T  | Trk1  LACP    

    Switch ports:

    Port 1: Wifi access point
    Port 2: lagg
    Port 3: server
    Port 4: lagg
    Port 5: native nic port on router
    Port 6: LAN port on router
    Port 7: a local NAS
    Port 8: workstation

    Is there anything i've overlooked or that I can try to troubleshoot?



  • 2.  RE: Need help in LACP setup on Aruba 2530

    Posted Jan 16, 2025 02:44 PM
    Hello! the Links Aggregation (Port Trunking in ArubaOS-Switch jargon) is good: the logical interface Trk1 is well formed and correctly peering with the corresponding Links Aggregation on the Router (ports C+D on the four ports Intel NIC). Given that, you simply need to transport (matching the VLAN Id(s) membership) VLAN Id(s) - tagged for tagged and, eventually, the one untagged too - over the Trk1 to match what is configured on the peering interfaced of the Router.

    Say your C+D=LAGx on the Router is tagged member of VLAN n, m and o...the the very same should be set on the Trk1 (tag m, n and o...nothing more, nothing less).

    Is it quite obvious that, doing so, the Routing of segments corresponding to VLAN m, n and o will happen (is expected to happen) at Router side...so the switch is just transporting those VLANs=Segments (broadcast domains) up to the Router where the routing/NAT should happen.

    I would avoid (when possible) to have other downlinks back to the Switch...clearly...if you need to have logically separated VLANs...that is the way to go...since a specific VLAN through a specific (not shared) uplink will, in any case, be routed by the Router...and the Switch is only there to provide those VLANs a way to be used by relevant access ports (generally untagged).



    Original Message


  • 3.  RE: Need help in LACP setup on Aruba 2530

    Posted Jan 16, 2025 02:49 PM
    Forgot to add: the output of show vlan ports ethernet trk1 detail CLI command should match the VLANs membership configured on the Router "LAN" facing logical interface representing the LACP driven LAG (the C+D).



    Original Message


  • 4.  RE: Need help in LACP setup on Aruba 2530

    Posted Jan 20, 2025 12:26 PM

    Thanks for the explanation and good to know the switch side is configured correctly. Will dive into it and see if I can manage to get this to work on the opnsense side.


    Original Message


Related Content