Layer 2 vs Layer 3 switches












3














I am a bit confused on when I need and should use a layer 2 or layer 3 switch.
In the corporate network we have Aruba 3810 core switches, and all the access switches are HPE 1950 24/48 PoE+.
We have 7 vlans, IT mgmt, workstations, machines, wlan, wlan-guest, wlan-guest2, VoIP.
Most of the the phones are having connected the computers connected to them (built in switch).



I know about routing capabilities of layer 3 switches.
But...
I don't know what happens if I have a layer 2 switch like Aruba 2530 PoE+ connected, what changes and what do I miss. Only the routing between vlans?
If routing has to be enabled for the vlans/devices that are connected on the 2530 it will be done on the core switches or the 1950s?



Thanks in advance!






switch







share|improve this question







New contributor




kmd is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
















  • 1




    You need to provide what you require from this network design, including the topology and what routing protocols it speaks. Read the manuals to find out what features a given model has, or set up a test lab. FYI, networkengineering.stackexchange.com is a SE entirely about data networking.
    – John Mahowald
    6 hours ago
















3














I am a bit confused on when I need and should use a layer 2 or layer 3 switch.
In the corporate network we have Aruba 3810 core switches, and all the access switches are HPE 1950 24/48 PoE+.
We have 7 vlans, IT mgmt, workstations, machines, wlan, wlan-guest, wlan-guest2, VoIP.
Most of the the phones are having connected the computers connected to them (built in switch).



I know about routing capabilities of layer 3 switches.
But...
I don't know what happens if I have a layer 2 switch like Aruba 2530 PoE+ connected, what changes and what do I miss. Only the routing between vlans?
If routing has to be enabled for the vlans/devices that are connected on the 2530 it will be done on the core switches or the 1950s?



Thanks in advance!






switch







share|improve this question







New contributor




kmd is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
















  • 1




    You need to provide what you require from this network design, including the topology and what routing protocols it speaks. Read the manuals to find out what features a given model has, or set up a test lab. FYI, networkengineering.stackexchange.com is a SE entirely about data networking.
    – John Mahowald
    6 hours ago














3












3








3


2





I am a bit confused on when I need and should use a layer 2 or layer 3 switch.
In the corporate network we have Aruba 3810 core switches, and all the access switches are HPE 1950 24/48 PoE+.
We have 7 vlans, IT mgmt, workstations, machines, wlan, wlan-guest, wlan-guest2, VoIP.
Most of the the phones are having connected the computers connected to them (built in switch).



I know about routing capabilities of layer 3 switches.
But...
I don't know what happens if I have a layer 2 switch like Aruba 2530 PoE+ connected, what changes and what do I miss. Only the routing between vlans?
If routing has to be enabled for the vlans/devices that are connected on the 2530 it will be done on the core switches or the 1950s?



Thanks in advance!






switch







share|improve this question







New contributor




kmd is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.











I am a bit confused on when I need and should use a layer 2 or layer 3 switch.
In the corporate network we have Aruba 3810 core switches, and all the access switches are HPE 1950 24/48 PoE+.
We have 7 vlans, IT mgmt, workstations, machines, wlan, wlan-guest, wlan-guest2, VoIP.
Most of the the phones are having connected the computers connected to them (built in switch).



I know about routing capabilities of layer 3 switches.
But...
I don't know what happens if I have a layer 2 switch like Aruba 2530 PoE+ connected, what changes and what do I miss. Only the routing between vlans?
If routing has to be enabled for the vlans/devices that are connected on the 2530 it will be done on the core switches or the 1950s?



Thanks in advance!






switch




switch






share|improve this question







New contributor




kmd is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.











share|improve this question







New contributor




kmd is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.









share|improve this question




share|improve this question






New contributor




kmd is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.









asked 7 hours ago









kmd

161




161




New contributor




kmd is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.





New contributor





kmd is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.






kmd is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.








  • 1




    You need to provide what you require from this network design, including the topology and what routing protocols it speaks. Read the manuals to find out what features a given model has, or set up a test lab. FYI, networkengineering.stackexchange.com is a SE entirely about data networking.
    – John Mahowald
    6 hours ago














  • 1




    You need to provide what you require from this network design, including the topology and what routing protocols it speaks. Read the manuals to find out what features a given model has, or set up a test lab. FYI, networkengineering.stackexchange.com is a SE entirely about data networking.
    – John Mahowald
    6 hours ago








1




1




You need to provide what you require from this network design, including the topology and what routing protocols it speaks. Read the manuals to find out what features a given model has, or set up a test lab. FYI, networkengineering.stackexchange.com is a SE entirely about data networking.
– John Mahowald
6 hours ago




You need to provide what you require from this network design, including the topology and what routing protocols it speaks. Read the manuals to find out what features a given model has, or set up a test lab. FYI, networkengineering.stackexchange.com is a SE entirely about data networking.
– John Mahowald
6 hours ago










1 Answer
1






active

oldest

votes


















4














A layer-2 switch forwards frames solely based on layer-2 information, ie. the destination MAC address of each frame. Forwarding happens exclusively between ports belonging the same VLAN.



A layer-3 switch has the additional ability to forward layer-3 IP packets based on the destination IP of each packet. This forwarding usually happens between different VLANs.



So, if you need a fast, yet simple router a layer-3 switch often is a good solution. If you don't need a router you can just as well use a layer-2 switch.



If you need to control traffic between VLANs most L3 switches support ACLs to filter unwanted traffic. Note that ACLs are usually stateless (unlike most firewalls), so you need to configure rules for both directions.



Edit: As @yagmoth555 has appropriately pointed out, L3 switches can differ significantly in their routing protocol support. Basic L3 switches often support only static routes or sometimes RIP while more advanced switches also support OSPF and other modern protocols. Additionally, there may be differences in the maximum number of routes that can be configured/learned.






share|improve this answer



















  • 1




    A side note to your excellent answer, some layer 3 switch can have a limitated stacks to learn dynamic route if you use it as a router, I had to issue command on some cisco to allow it to use more its memory for such task.
    – yagmoth555
    5 hours ago










  • @yagmoth555 Absolutely - I've edit that into the answer.
    – Zac67
    4 hours ago










  • Another point is that only one switch needs to be layer 3 routing enabled. Is does not make sense to have this enabled on all switches and therefor one layer 3 core switch does everything - the access switches do not need to be layer 3 capable.
    – Andreas Rehm
    3 hours ago











Your Answer








StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "2"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});

function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});


}
});






kmd is a new contributor. Be nice, and check out our Code of Conduct.










draft saved

draft discarded


















StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f947183%2flayer-2-vs-layer-3-switches%23new-answer', 'question_page');
}
);

Post as a guest















Required, but never shown

























1 Answer
1






active

oldest

votes








1 Answer
1






active

oldest

votes









active

oldest

votes






active

oldest

votes









4














A layer-2 switch forwards frames solely based on layer-2 information, ie. the destination MAC address of each frame. Forwarding happens exclusively between ports belonging the same VLAN.



A layer-3 switch has the additional ability to forward layer-3 IP packets based on the destination IP of each packet. This forwarding usually happens between different VLANs.



So, if you need a fast, yet simple router a layer-3 switch often is a good solution. If you don't need a router you can just as well use a layer-2 switch.



If you need to control traffic between VLANs most L3 switches support ACLs to filter unwanted traffic. Note that ACLs are usually stateless (unlike most firewalls), so you need to configure rules for both directions.



Edit: As @yagmoth555 has appropriately pointed out, L3 switches can differ significantly in their routing protocol support. Basic L3 switches often support only static routes or sometimes RIP while more advanced switches also support OSPF and other modern protocols. Additionally, there may be differences in the maximum number of routes that can be configured/learned.






share|improve this answer



















  • 1




    A side note to your excellent answer, some layer 3 switch can have a limitated stacks to learn dynamic route if you use it as a router, I had to issue command on some cisco to allow it to use more its memory for such task.
    – yagmoth555
    5 hours ago










  • @yagmoth555 Absolutely - I've edit that into the answer.
    – Zac67
    4 hours ago










  • Another point is that only one switch needs to be layer 3 routing enabled. Is does not make sense to have this enabled on all switches and therefor one layer 3 core switch does everything - the access switches do not need to be layer 3 capable.
    – Andreas Rehm
    3 hours ago
















4














A layer-2 switch forwards frames solely based on layer-2 information, ie. the destination MAC address of each frame. Forwarding happens exclusively between ports belonging the same VLAN.



A layer-3 switch has the additional ability to forward layer-3 IP packets based on the destination IP of each packet. This forwarding usually happens between different VLANs.



So, if you need a fast, yet simple router a layer-3 switch often is a good solution. If you don't need a router you can just as well use a layer-2 switch.



If you need to control traffic between VLANs most L3 switches support ACLs to filter unwanted traffic. Note that ACLs are usually stateless (unlike most firewalls), so you need to configure rules for both directions.



Edit: As @yagmoth555 has appropriately pointed out, L3 switches can differ significantly in their routing protocol support. Basic L3 switches often support only static routes or sometimes RIP while more advanced switches also support OSPF and other modern protocols. Additionally, there may be differences in the maximum number of routes that can be configured/learned.






share|improve this answer



















  • 1




    A side note to your excellent answer, some layer 3 switch can have a limitated stacks to learn dynamic route if you use it as a router, I had to issue command on some cisco to allow it to use more its memory for such task.
    – yagmoth555
    5 hours ago










  • @yagmoth555 Absolutely - I've edit that into the answer.
    – Zac67
    4 hours ago










  • Another point is that only one switch needs to be layer 3 routing enabled. Is does not make sense to have this enabled on all switches and therefor one layer 3 core switch does everything - the access switches do not need to be layer 3 capable.
    – Andreas Rehm
    3 hours ago














4












4








4






A layer-2 switch forwards frames solely based on layer-2 information, ie. the destination MAC address of each frame. Forwarding happens exclusively between ports belonging the same VLAN.



A layer-3 switch has the additional ability to forward layer-3 IP packets based on the destination IP of each packet. This forwarding usually happens between different VLANs.



So, if you need a fast, yet simple router a layer-3 switch often is a good solution. If you don't need a router you can just as well use a layer-2 switch.



If you need to control traffic between VLANs most L3 switches support ACLs to filter unwanted traffic. Note that ACLs are usually stateless (unlike most firewalls), so you need to configure rules for both directions.



Edit: As @yagmoth555 has appropriately pointed out, L3 switches can differ significantly in their routing protocol support. Basic L3 switches often support only static routes or sometimes RIP while more advanced switches also support OSPF and other modern protocols. Additionally, there may be differences in the maximum number of routes that can be configured/learned.






share|improve this answer














A layer-2 switch forwards frames solely based on layer-2 information, ie. the destination MAC address of each frame. Forwarding happens exclusively between ports belonging the same VLAN.



A layer-3 switch has the additional ability to forward layer-3 IP packets based on the destination IP of each packet. This forwarding usually happens between different VLANs.



So, if you need a fast, yet simple router a layer-3 switch often is a good solution. If you don't need a router you can just as well use a layer-2 switch.



If you need to control traffic between VLANs most L3 switches support ACLs to filter unwanted traffic. Note that ACLs are usually stateless (unlike most firewalls), so you need to configure rules for both directions.



Edit: As @yagmoth555 has appropriately pointed out, L3 switches can differ significantly in their routing protocol support. Basic L3 switches often support only static routes or sometimes RIP while more advanced switches also support OSPF and other modern protocols. Additionally, there may be differences in the maximum number of routes that can be configured/learned.







share|improve this answer














share|improve this answer



share|improve this answer








edited 4 hours ago

























answered 5 hours ago









Zac67

3,7032415




3,7032415








  • 1




    A side note to your excellent answer, some layer 3 switch can have a limitated stacks to learn dynamic route if you use it as a router, I had to issue command on some cisco to allow it to use more its memory for such task.
    – yagmoth555
    5 hours ago










  • @yagmoth555 Absolutely - I've edit that into the answer.
    – Zac67
    4 hours ago










  • Another point is that only one switch needs to be layer 3 routing enabled. Is does not make sense to have this enabled on all switches and therefor one layer 3 core switch does everything - the access switches do not need to be layer 3 capable.
    – Andreas Rehm
    3 hours ago














  • 1




    A side note to your excellent answer, some layer 3 switch can have a limitated stacks to learn dynamic route if you use it as a router, I had to issue command on some cisco to allow it to use more its memory for such task.
    – yagmoth555
    5 hours ago










  • @yagmoth555 Absolutely - I've edit that into the answer.
    – Zac67
    4 hours ago










  • Another point is that only one switch needs to be layer 3 routing enabled. Is does not make sense to have this enabled on all switches and therefor one layer 3 core switch does everything - the access switches do not need to be layer 3 capable.
    – Andreas Rehm
    3 hours ago








1




1




A side note to your excellent answer, some layer 3 switch can have a limitated stacks to learn dynamic route if you use it as a router, I had to issue command on some cisco to allow it to use more its memory for such task.
– yagmoth555
5 hours ago




A side note to your excellent answer, some layer 3 switch can have a limitated stacks to learn dynamic route if you use it as a router, I had to issue command on some cisco to allow it to use more its memory for such task.
– yagmoth555
5 hours ago












@yagmoth555 Absolutely - I've edit that into the answer.
– Zac67
4 hours ago




@yagmoth555 Absolutely - I've edit that into the answer.
– Zac67
4 hours ago












Another point is that only one switch needs to be layer 3 routing enabled. Is does not make sense to have this enabled on all switches and therefor one layer 3 core switch does everything - the access switches do not need to be layer 3 capable.
– Andreas Rehm
3 hours ago




Another point is that only one switch needs to be layer 3 routing enabled. Is does not make sense to have this enabled on all switches and therefor one layer 3 core switch does everything - the access switches do not need to be layer 3 capable.
– Andreas Rehm
3 hours ago










kmd is a new contributor. Be nice, and check out our Code of Conduct.










draft saved

draft discarded


















kmd is a new contributor. Be nice, and check out our Code of Conduct.













kmd is a new contributor. Be nice, and check out our Code of Conduct.












kmd is a new contributor. Be nice, and check out our Code of Conduct.
















Thanks for contributing an answer to Server Fault!


  • Please be sure to answer the question. Provide details and share your research!

But avoid



  • Asking for help, clarification, or responding to other answers.

  • Making statements based on opinion; back them up with references or personal experience.


To learn more, see our tips on writing great answers.





Some of your past answers have not been well-received, and you're in danger of being blocked from answering.


Please pay close attention to the following guidance:


  • Please be sure to answer the question. Provide details and share your research!

But avoid



  • Asking for help, clarification, or responding to other answers.

  • Making statements based on opinion; back them up with references or personal experience.


To learn more, see our tips on writing great answers.




draft saved


draft discarded














StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f947183%2flayer-2-vs-layer-3-switches%23new-answer', 'question_page');
}
);

Post as a guest















Required, but never shown





















































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown

































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown







-

Popular posts from this blog

Understanding the information contained in the Deep Space Network XML data?

Image
up vote 1 down vote favorite NASA's Deep Space Network activity can be viewed conveniently at https://eyes.nasa.gov/dsn/dsn.html but if you would like data in a more raw XML form, it can be accessed as described in this answer Below is a small Python script that reads the XML into a list of dictionaries, and saves it to disk as a JSON. The dictionaries are organized at the higher level by dish, then by spacecraft per dish. Question: What are the most-likely meanings of all the data field contained in the Deep Space Network XML data? This is the example url from the other answer, used in the script below: https://eyes.nasa.gov/dsn/data/1365107113.xml def dictify(r,root=True): # https://stackoverflow.com/questions/2148119/how-to-convert-an-xml-string-to-a-dictionary-in-python/30923963#30923963 if root: ret
Read more

Ross-on-Wye

Image
Ross-on-Wye Welsh: Rhosan ar Wy Town centre, looking north from Market House Ross-on-Wye Ross-on-Wye shown within Herefordshire Population 10,700 (2011) [1] OS grid reference SO597241 Unitary authority Herefordshire Ceremonial county Herefordshire Region West Midlands Country England Sovereign state United Kingdom Post town ROSS-ON-WYE Postcode district HR9 Dialling code 01989 Police West Mercia Fire Hereford and Worcester Ambulance West Midlands EU Parliament West Midlands UK Parliament Hereford and South Herefordshire List of places UK England Herefordshire 51°54′50″N 2°35′13″W  /  51.914°N 2.587°W  / 51.914; -2.587 Coordinates: 51°54′50″N 2°35′13″W  /  51.914°N 2.587°W  / 51.914; -2.587 Ross-on-Wye (Welsh: Rhosan ar Wy [2] ) is a small market town with a population of 10,700 (according to the 2011 census), in south eastern Herefordshire, England, located on the River Wye, and on
Read more

Eastern Orthodox Church

Image
Not to be confused with Oriental Orthodoxy, Eastern Christianity, or Eastern Catholic Churches. "Eastern Orthodoxy", "Orthodox Church", "Orthodox Catholic Church", and "Orthodox Christian Church" redirect here. For other uses, see Orthodox (disambiguation). This article may be too long to read and navigate comfortably . The readable prose size is 132 kilobytes. Please consider splitting content into sub-articles, condensing it, or adding or removing subheadings. ( January 2018 ) Part of a series on the Eastern Orthodox Church Mosaic of Christ Pantocrator, Hagia Sophia Overview Structure Theology (History of theology) Liturgy Church history Holy Mysteries View of salvation View of Mary View of icons Background Crucifixion / Resurrection / Ascension of Jesus Christianity Christian Church Apostolic succession Four Marks of the Church Orthodoxy Organization Autocephaly Patriarchate
Read more