Devices on Multiple VLANs and Equinix Metal IPs

In this scenario:

• No devices are connected to the Internet
• There are no Internet connections
• Devices communicate with each on distinct Layer 2 VLANs
• Devices use private IPs allocated to you by Equinix Metal
• Devices are in a single metro or in multiple metros

You have two (or more) isolated VLAN. All of your devices are on one of the VLANs. Devices receive no private or public IP addresses directly from Equinix Metal, but you are assigned a range of private IPs that you assign to the devices.

Devices can communicate with other devices within the same VLAN via Layer 2 using the private IP addresses, and with devices on other VLANs via layer 3 using the private IP addresses.

Devices cannot communicate with the Internet.

1. For each VLAN you desire, using the Equinix Metal console or API:
   1. Create the VLANs.
   2. Create a Metal Gateway, assigning it the VLAN ID, and the size of the private IP block you wish to create for the VLAN.
   3. Create as many devices as you desire, without a public or private IP address but connected to the VLAN.
   4. For each device, retrieve the port ID for the network port, and assign that network port to the VLAN.
2. On each device:
   1. Assign an IP address of your choosing from the private IP range for that VLAN from the Gateway.
   2. Set the default route of the device to the private IP of the Gateway; this normally is the first available address in the range.

As each VLAN has a Metal Gateway, and the devices have Equinix Metal-assigned private IPs, traffic from devices in one VLAN to devices in the other VLAN will be routed correctly.

Multiple Metros

Since the devices in each VLAN have private IP addresses in a range assigned by Equinix Metal, and since they connect to a Metal Gateway on that VLAN, which, in turn, is connected to the Equinix Metal network, you can use Backend Transfer to connect between the Metal Gateways in each metro and, hence between devices in VLANs in different metros.