Cisco Switches :: Internet Routing With SG300-20 And Domain Controller
Nov 27, 2011
I am trying to set up the SG300-52 and am struggling, I have a domain controller with IP address 192.168.0.1 I have a broadband router that is has a dynamc ip address. I have set up vlan1 aand vlan2
Vlan1 is getting its ip address from the domain which is 192.168.0.110
vlan2 is getting its ip from the broadband router.
I have setup Domain Name System in the Ip configuration tab
on Vlan1 I have a connected a dumb switch this connects all the computers in the local network. What I cannot get to work is the internet vlan.
who has setup up vlan routing with domain controller
View 6 Replies
ADVERTISEMENT
May 2, 2013
I have a Nexus 7000 Core Switch , and i need to allow the domain controller ip 10.x.x.x for DHCP relay on switch.
View 2 Replies
View Related
Dec 29, 2011
SG300-10 mode:layer 3
dns server:192.168.2.11
vlan1 192.168.2.0 ip:192.168.2.254 0.0.0.0 next hop 192.168.2.3
vlan2 192.168.50.0 ip:192.168.50.254
dns server table:192.168.2.11 (active)
Router(192.168.2.3) dst.address 192.168.50.0/24 gw:192.168.2.254
No internet
pc:
ip:192.168.50.10 192.168.2.10
gw:192.168.50.254 192.168.2.254
dns:192.168.50.254 192.168.2.254
If dns = 192.168.2.3 >> yes internet
I think there is something wrong with the DNS setting on the SG300?Or I do something wrong?
View 2 Replies
View Related
Aug 29, 2011
These are our first switches and seems like GUI is lot different than the online. Out intervlan routing is o not working. I am absolutely sure that I setup the switch in L3 mode since it allows me to create mutiple interfaces. I am hoping that this GUI issue is related to interVLAN routing.
Below is the blog I started for InterVlan issue [URL]
This is the link for online simulator and what I see in its IP tab. I know this switch is not SG300. [URL]
This is what I see on our switch.
Our switch version
switchd64684#show version
SW version 1.1.0.73 ( date 19-Jun-2011 time 18:10:49 )
Boot version 1.0.0.4 ( date 08-Apr-2010 time 16:37:57 )
HW version V01
View 1 Replies
View Related
May 26, 2011
1) I have a Cisco SG300-28P. I plan to add a SG300-52. Would it be possible to manage the new switch through the SG300-28P web browser ?
2) There are 2 fans in the POE model SG300-28P. How many fans are they in the non POE switch SG300-52 ?
View 2 Replies
View Related
Mar 31, 2012
We have recently purchased a SG300 to break up our network which most consists of virtual machines via Bridged networking on network machines. I have created successfully Vlans and the physical machines are capable of communicating across the different subnets that I have created via the SG300 however the Virtual machines can no longer be reached.
View 2 Replies
View Related
Apr 11, 2013
First of all, is there a document on the SG300 that explains everything in plain english?Here is what I am trying to do...I have a Charter Communications connection to the internet through their modem.This modem has a static IP.I would like to make this internet connection the source for the SG300 and all the other ports be DHCP.I was told when I purchased it that being a layer 3 device.
View 3 Replies
View Related
Feb 8, 2012
Can I connect a single Cat5e cable between two SG300-28 and link them? If so what must I configure?
View 1 Replies
View Related
Jul 25, 2012
I have SG300-28P that I am using as layer-3 switch. Recently I ran in to SG300-52 switch and even though loading same firmware doesn't give me option to do layer-3 switching. For SG-300 I see options in GUI to create vlan interfaces under IP information section, while SG300-52 has IP information option only under the management section.let me know if these are 2 different hardware types and L3 is not possible on SG300-52. If its possible to enable L3 switching on SG300-52?
View 2 Replies
View Related
Jun 6, 2012
I have a connection on IP 192.168.1.21, Subnet 255.255.255.0 - this is on the default VLAN1 on the switch. I need to route this to IP 10.0.3.101, Subnet 255.255.252.0 - which is set up on VLAN2 on the switch. I have set the switch to Layer 3 via console.
how I setup this route? I am use the Browser based interface.
View 15 Replies
View Related
Aug 28, 2011
I setup switch in layer 3 mode. I have a access port in vlan 10 and a access port in vlan 20. I am able to ping form vlan 10 client to vlan20 default gateway (192.168.20.1) I am able to ping form vlan 20 client to vlan10 default gateway (192.168.10.1) However, I am unable to ping from vlan 10 to vlan 20 client. If both the ports are in same vlan, then clients are able to ping each other. Proxy Arp in enabled.
vlan 10 client ip info
192.168.10.10
255.255.254.
[Code].....
View 12 Replies
View Related
Oct 17, 2012
I have an issue with correctly configuring sg300 layer 3 switch behind ASA 5505 (incl Security Plus License) The setup is as follows:
CISCO SG300 is configured as a Layer 3 Switch
Native VLAN 1: ip address 192.168.1.254, default route (inside interface ASA 192.168.1.1)
Extra VLANs on Switch defined
VLAN 100 with 192.168.100.0/24, default gateway 192.168.100.254
VLAN 110 with 192.168.110.0/24, default gateway 192.168.110.254
VLAN 120 with 172.16.0.0/16, default gateway 172.16.10.254
From the different VLANS(100,110,120) I am able to connect to all devices in the other VLANS (except for Native VLAN 1; it's not pingable)From switch cli I can ping my firewall (192.168.1.1) and all other vlan gateways and vlan devices (VLAN1,100,110,120) From asa cli I can only ping my switch port (192.168.1.254), but no other devices in the other VLANs.
What do I need to change or setup in the switch or asa configuration in order for the other vlans to access the Internet through the ASA. I will not use the ASA as intervlan routing device, because the switch is doing htis for meI tried changing the asa int e0/1 into trunkport (uplink port on switch also), to allow all vlans, but as soon as I do that I cannot ping to 192.168.1.254 from ASA cli anymore.
View 2 Replies
View Related
May 12, 2013
I have a project I am working on that will require routing over a MetroE circuit to connect a few sites together back to HQ. Although, I know this can be accomplished several ways, I have come up with a solution that I think will work, but would like you all's input as to whether this is adequate and if my thoughts on how to properly "organize" the network are right.
I have been working with the SG300 line in Layer 3 mode and have not had any issues in a test setup I have here in the office. Basically my thought is to have a single VLAN/subnet allocated for each physical site. That will handle the basic interoffice connectivity etc. I also have a need to prioritize voice/video traffic throughout the entire network. My plan was to create an additional VLAN/subnet to house the teleconferencing equipment. Thats pretty much the jist of the setup. My only question is how to properly prioritize the voice/video VLAN.
View 3 Replies
View Related
Feb 8, 2013
What does "ip routing" do on the CLI on the SG300? When I do this, I see it enables ip forwarding, but there is no mention of this in the CLI manual. I'm just trying to figure out what I would use this for, and if I should leave it enabled, or disable it. I have several different SG300 switches in L3 mode, and they are set up in a multi-vlan environment...
View 2 Replies
View Related
Apr 25, 2011
I'm trying to get the following running.
I have 4 Subnets
VLAN 1 172.20.0.0/16 with the default GW 172.20.200.254
VLAN 10 192.168.10.0/24 with the default GW 192.168.10.2
VLAN 59 192.168.59.0/24 with the default GW 192.168.59.254
VLAN 130 192.168.130.0/24 with the default GW 192.168.130.254
[Code]....
With absolutly the same settings I did this with an HP E4200-12G L3 Switch (which is now doing the job) so there is no routing mistake in the other components.For me it looks like, the SG300 doesn't like to be NOT the default gateway.
View 7 Replies
View Related
Dec 11, 2012
A brief background on the setup: I recently switched out my switch. It was a Cisco 3750 10/100 switch and I wanted to upgrade to Gig. The cost of a Gig+POE 3750 is too much to bite so I opted for the SG300. My router is a Cisco 891. Here is the setup:
Cisco 891:
two SVI's: vlan1 and vlan 100
Vlan1 = 10.0.1.1/24
[Code].....
With the 891+3750, I was able to add "ip pim sparse-dense-mode" on all the SVI's and hosts could join any multicast group, irregardless of which vlan the host was a member of.
Now I've changed switches, and I dont get the same love. I have the PIM statement on both SVI's on the 891, but Im unsure of what I need to configure on the SG300. I have enabled "Bridge multicast filtering" + "IGMP snooping". What can I do to get similar functionality using the SG300 + 891? I assume this is my lack of understanding IGMP in general, but was able to get away with it using the PIM statements on the 891+3750 stack.
View 4 Replies
View Related
Apr 18, 2011
Some tips and trick on how to configure and sg300 for intervlan routing.
I already have the switch set up for layer 3 I already set up multiple vlans and each vlan has a ip interface setup with the desired subnet I see the local routes set up in the static routing page.
I cannot seem to get from one subnet/vlan (I am using one subnet for each VLAN) to the next.
View 6 Replies
View Related
Jan 20, 2013
I have a SG300-28P that is our Main VLAN Switch. Though the VLANs that I have on it are there mostly because of our Edge Router and our AP541Ns.We have the Following VLANs defined (Subnets Changed to conseal Piblic IPs) [code]
VLAN200 and VLAN201 come into Our Edge Router and out on a Single GE Port via VLAN Tagged to thje SG300.The SG 300 Splits them out to Untagged Ports and they are connected to Two Firewalls, each with a IP in the 200 and 201 Subnets. The AP510 has the VLAN200, VLAN192 and VLA101 tagged Subnets sent to it. The AP521 has three SSID, each associated with a Paticular VLAN.
This all works fine, though there are a few hidden flaws. Since all of the VLANs are present, both Internal and Public IPs, one could craft packets form one network and use the SG300 as its gateway to the other subnet and Gain Access. How can I isolate the Subnets, so that I can still use the SG300 as a Default Gateway for the 10.1.0.0/16 Network Make it so if someone from the 10.1.0.0/16 netwok accesses the 201.201.201.0/24 Subnet it uses the SG300's 0.0.0.0 0.0.0.0 default router (the Firewall IP) and not the VLAN InterfaceIf somone in the 201, 200, 192 Subnets uses the SG300 as a Gateway and tries to access a 10.1.0.0/16 address it gets blocked.
View 1 Replies
View Related
Mar 17, 2012
configure my new SG300-28P. When I have started the switch, I have specified a new password and enabled telnet in order to setup the switch in Layer 3 mode.
After a restart, the switch took its IP address from a DHCP server. When I try to set a static IP address (192.168.2.1), I receive the following error message: Duplicated IP interface on the same subnet.
The IP address 192.168.2.1 is not used by any device within the network. For information, the message doesn't appear when the switch is in Layer 2 mode.
why I can't change the IP address of default vlan in Layer 3 mode ? All I can do is set the IP address to static or dynamic.
For test purpose, I have added 2 vlans. But I wasn't able to route traffic between vlan. how to configure the switch to route traffic between vlan?
find below details informations about my VLANs.
- Default (VLAN ID 1)
IP Address : 192.168.2.1
Subnet : 255.255.255.0
[Code].....
View 3 Replies
View Related
Oct 22, 2011
I've seen lots of posts from people having problems routing traffic between two vlans with some complicated examples. Any simple step-by-step example for an SG300 switch (in layer 3 mode) to configure two vlans and sending traffic between the two vlans without an external router?
-VLAN1 10.10.10.0
-VLAN2 10.10.20.0
I've tried to do this through the GUI and can't seem to make it work. I'm missing something in the GUI.
View 6 Replies
View Related
Oct 28, 2012
I just purchased a SG300-10 switch and loaded the newest 1.27 firmware on it. Setup my VLANS and trunks but I have this weird issue. My setup:
I have the SG300-10 as my main switch and changed it over to L3 so it can be my main core in my small network. On port 1, vlan 200 is setup as my native PVID untagged and I have it set to trunk vlan's 210(LAN network), 220 (management vlan) tagged over to a Dell powerconnect 5224 24port switch. On port 1 of the Dell switch, I have it setup as a trunk there as well with the same setup (native PVID vlan set to 200 untagged, trunking 210 and 220 tagged).
View 12 Replies
View Related
Feb 26, 2013
My organization wishes to host a LAN gaming event. The setup I have in mind involves a 24-port switch for connecting all the player computers and having that switch connected to a smaller "core" switch which has the the game server and router connected to it. I'd like to know if I can set things up as follows...
SG200-26 with ports 1-24 on seperate VLANs so they cannot talk to eachother. I'd then like ports 25 and 26 to be an aggregated (for bandwidth and redundancy) trunk port to carry all 24 VLANs plus an additional management VLAN (ex. VLAN 100) that will be used for accessing the switch. I'd like those aggregated trunk ports to connect to an SG300-10 "core" switch which will be connected to the game server and to a router for internet access.
I'd like the ability to have two network connections from the game server to the switch, one on the management VLAN and one on a different VLAN (ex. VLAN 50) that will be accessed by the players (ports 1-24 on the SG200-26). The core switch needs the ability to perform restricted inter-VLAN routing, in that it doesn't allow VLANs 1-24 to talk to eachother but they can talk to the server's VLAN but only through specific service ports (ex. port 12345, 12346). Is this possible?
Furthermore how would I configure the SG300-10 to allow VLANs 1-24 to talk to VLAN 50, but not themselves or VLAN 100. As well, I'll probably have the router on it's own VLAN (ex. VLAN 60) and allow VLANs 1-24 to access it but only through HTTP port 80 for web access.
View 9 Replies
View Related
Feb 16, 2012
We relocated several servers to our DMZ and, without a domain controller in the DMZ (we plan to put a RODC in the DMZ later when we mvoe to Windows Server 2008), i punch through the standard recommended TCP ports. ports 88,135, 389, 53, etc.) to the internal network located DC. I am double hopping to the DC (I hope thast doesn't matter) as the DMZ located web server communicates to another IP address in the same DMZ network and then I NAT that address to the internal IP address of the DC. Everything seems to be working for the servers we moved to the DMZ but i think i don't have all the necessary TCP/UDP ports punched through because we have found that logging into the DMZ servers is taking an extended amount of time, sitting on the “applying settings” screen. For 2-34 minutes. Also, we noticed that our applciations fols have to now add the fully qualified domain names when making calls to servers that just needed the domain name. When i open the access-list up completely without opening specific TCP/UDP ports, the issue is resolved.
View 4 Replies
View Related
Nov 18, 2012
In my office we are using two networks , one is 16.x.x.x and another on is 15.x.x.x . 16.x.x.x having the domain controller. 15.x.x.x is only connected with Workgroup. my question is it possible to add 15.x.x.x network system into 16.x.x.x network . I tried to add but it gave error message "Domain Controller can not be contacted". Generally we cant add it into the domain i know that. is there anyway to connect the 15.x.x.x systems into 16.x.x.x domain using router in the network.
View 1 Replies
View Related
Jun 19, 2011
Type: Error
EventID: 1054
Description: Windows cannot obtain the domain controller name for your computer network. The specified domain either does not exist or could not be contacted. Group Policy processing aborted.
Dad's work laptop (XP) will no longer connect to any wifi at all. I removed the Intel PRO/set wireless utility so it would default to windows, enabled the Wireless Zero Config. It will acknowledge the network, attempt to get an IP address from the network for 1 minute, then it rotates down to the next network SSID in queue (I have 3 SSID's in our house). When it reaches the end, it just goes back to the "Windows is not connected to any wireless networks" message.
View 2 Replies
View Related
Mar 1, 2011
In 2004 I had a small home network of an NT4 domain controller with a 98 client and an XP client and an NT4 workstation laptop.ll was fine with the NT4 server providing a central store and print queue for a networked laser.Over time the laptop has been replaced with a Win7 (which will access the files but really doesn't the NT4 domain.) The Win98 has died and now finally the NT4 sever has gone too.I intend to revert now to a workgroup type set-up and forget about domains (I don't need it really) My problem is if I remove my XP machine from the domain I loose all the program menu, shortcuts desktop etc. which are stored under the domain user name login.Can I retrieve these or at least look at them so I can set up the local XP administrator account with all my familiar stuff.
View 3 Replies
View Related
Jul 5, 2012
I hav windows server 2003 w/ 3 clients on my home network.2 of these machines link w/ server when i formatted & try to link 3rd machine it says "A domain controller for the domain fits.local could not be contacted" this problem I have 2003 server + isa server 2004 + exchange server 2003 installed in one core i3 machine..........
View 9 Replies
View Related
Feb 10, 2011
I am having trouble adding a computer to the Domain Controller. I have a cable modem running into a di-524 router. The router has DHCP and DNS relay disabled. I set the LAN IP Address of the router to 192.168.2.1. The router is connected to a switch with 10 pc's and a server running 2003. The server has an IP Address of 192.168.2.2. I setup a DHCP server inside 2003 with a scope of 192.168.2.100-192.168.2.199. Under scope options the router is set to 192.168.2.1 and DNS Servers is set to 192.168.2.2 (the ip address of the domain controller). When I try to add the computer it cannot contact the domain controller. Is there something wrong with my DHCP config or DNS?
View 3 Replies
View Related
Nov 30, 2011
I am currently planning a Active directory deployment. It will most likely be a new forest, but the domain could become part of a existing forest. I have about 45 Computers with about 85 users. At one time there is about 42 users logging in as there is two shifts. The logons will be done all at once. Do you think two domain controllers will be able to handle the load?
View 9 Replies
View Related
Apr 11, 2012
o create a domain host
View 2 Replies
View Related
Nov 22, 2012
How has file server been affected by promoting your server to a domain controller? and what are file sever actually do?
View 3 Replies
View Related
Sep 12, 2011
Within ACS 5.2, does any know of a way to see which specific domain controller a request is sent to?
View 1 Replies
View Related
Sep 5, 2012
I try to join an ACS v. 5.3 to the domain. For my acs in Location A, I can join without problems using my account. When I try to join the ACS in location B to the same domain with the same account, it doesnt work.I looked at the debug log files for the ad client, and noticed, that the ACS in location B goes to a certain Domain Controller. However, I would have expected the ACS to contact another DC, which is located on the same location as the ACS ... this doesnt happen.
My question: How does the ACS determine what DC to contact ? Is it possible to force the AC to join by connecting a certain DC ?
View 2 Replies
View Related
