Cisco Switches :: SG 300-52 VLAN Gateway Access?
Apr 17, 2011
I’ve recently brought a SG 300-52 for my company with the main intention of using the L3 switching, I’ve recently gone on a 3day cisco course and came backing thinking i knew what i had to do but as always if you don’t have the experts next to you to answer the questions you soon have problems.
I have setup 3 VLANS, the switch is basically on its default settings and VLAN 1 connects straight to the router/gateway and on the internet but VLAN 2 and 3 do not, they are completely localy contained to their own Non DHCP networks.how do I get VLAN 2 and 3 on the internet and able to talk to each VLAN?
The keywords I’ve came across in my search are static routing between VLANs and InterVLAN, I’m assuming i need to do one of these??
View 26 Replies
ADVERTISEMENT
Jul 27, 2011
We have recently purchased a Cisco SG300 and have been configuring it. [code] The VLANs have ACLs set up to prevent any communication between the Holly and Tempo VLANs (and their associated WAN VLANs).Each VLAN has a WAN available for it's use, which connects to external networks (including the Internet).In order to facilitate this, we have set up all the necessary ACLs and routes and confirmed that this all works.However, the problem comes when we assign the static routes that specify the default gateways.We add the two static routes below:
-0.0.0.0 next hop 10.10.200.254 metric 1
-0.0.0.0 next hop 192.168.200.254 metric 1
In this case, only one of the VLANs has WAN access. It is either Holly or Tempo (it can be either if the order the static route is added is changed).What we need is to force Holly to use Holly WAN and Tempo to use Tempo WAN, but we cannot see a way of doing this.Effectively, we want the following static routes: [code]
View 2 Replies
View Related
Mar 31, 2012
I have six Cisco 300 Series switches in Layer 2 mode. They are all connected using ports in Trunk mode. These Trunks are tagged members of all VLANS.
I have one 300 series in layer 3 mode with IP address assigned to each VLAN.I would like to use one Internet gateway for multiple VLANS. This gateway has numerous IP ports that forward to internal ip addresses on various machines.
All i9nternal clients use their respective VLAN IP as their default gateway.The Layer 3 switch is connected to one of the Layer 2's using a Trunk that is a tagged member of all of the VLANS.
I understand how traffic routes from a client to its respective VLAN gateway. Where I am confused is how it routes from there to the Internet gateway? Internet gateway is 192.168.1.1.VLAN IP's are 192.168.2.1, 192.168.3.1, etc...
Should the Internet Gateway be patched into the Layer 3 switch or one of the Layer 2's using a separate "Internet" VLAN?
View 5 Replies
View Related
Mar 25, 2013
Currently, we have a plain network and we are planning to 'upgrade' it a little. We want to implement VLANs to separate wireless clients, workstations + servers and infrastructure devices form each other.As of now, we have no VLANs, and no managed Switches. We only have an RV016 that handles two ISPs and a 3rd party connection service to the office branches ( I belive they're using Frame Relay, but as far as we know, we are not concerned since we cannot touch their devices)
The reason behind the title, pointing towards the famous SGE2000P, is that my workplace is located in Argentina... and we don't have as many choices as some of you guys have ! In fact, I was unsuccessful trying to get a Cisco partner to contact me. We would like to replace the RV016 with a cisco 1941 (and a HWIC switch card).
So, back to business..! Assuming we will be using the SGE2000P switches, I was thinking about setting VLANs using 802.1Q through seven of these switches, along with a 1941 Cisco router. I'm expecting the 1941 to handle load balancing between both ISPs and the 3rd party link. Now, as for Inter VLAN routing, I would like to have gigabit traffic between VLANs.
Is it possible to use one SGE as Layer 3 mode to hande inter VLAN traffic (gigabit speeds) while using the 1941 as a end point device to reach internet (using PAT) ?Would you suggest me to use the 1941 for Inter VLAN routing, despite the 10/100 limitation(*) and use all SGE's in L2 mode? We need two ISPs, a third link for the FR connection, and finally the LAN interface. As far as I know, I'm limited to the gigabit builtin interfaces for WAN purposes, am I right?
View 5 Replies
View Related
Jul 6, 2012
I picked up a pair of RV220W's and before I spent loads of time at a remote site, I figured I'd go through some VPN testing at home to make sure I could get it setup properly. What this means is I've plugged the Internet uplink into a switch, then from the switch into both routers & configured them (using unique static IP's for each) from there. For what its worth: While I have some IT experience, I don't have strong networking experience.
I setup several VLAN's on the local RV220W, and the end result is to make it so that an asset at the remote site with an IP in any of the ranges (192.168.121.0/24, 192.168.131.0/24, 192.168.141.0/24 and any future VLANs) can communicate with/access resouces at the local site. Likewise, an asset at the local site with an IP in any of the ranges (.121, .131, .141 + any future VLANs) should be able to reach the remote resources (currently just 192.168.181.0/24, but future VLANs as well).
This evening I tried to focus on the relevant VPN pages of the Administration Guide to get the VPN up. Leaving the defaults I got as far as establishing a link between both sites and it seems that things are working right: From the remote site (.181) I can access the local site (.121, .131, .141); and from the local site I can at least ping resources (a laptop) on the remote site. (Yay!)
However, when I physically connected an asset that had a 192.168.121.X, 192.168.131.X and 192.168.141.X IP addresses to the remote RV220W (which is 192.168.181.0/24), I couldn't see it from the remote or local sites.I assume this is expected. But I'm reaching out to the community to see what other possibilities might be available becuase networking is a weak area for me. I figured it might be something like a Static [or Dynamic] Route but I really am not 100% sure.
'TECHNICAL' SPECS
Local Router LAN/WAN Settings:
LAN IP: 192.168.121.1 on default VLAN (1)
VLAN 13 defined 192.168.131.1 with DHCP enabled; Reservations created outside of DHCP scope
VLAN 14 defined 192.168.141.1 with DHCP enabled, Reservations created outside of DHCP scope
Inter VLAN Routing enabled for all VLANs
[URL]
View 7 Replies
View Related
Apr 29, 2012
We've got a SG200-18 switch that is to be used as a workgroup switch in our environment (SW Version 1.1.1.8). Working with CLI on big and mid-range Cisco-gear over the past two decades I'm having a hard time figuring out the following on the SG200:
o) I want to change the Management-VLAN from the default "1" to the management-VLAN used in our environment. Sure enough I created that vlan in the SG200-config, however when it comes to assigning the management-IP and VLAN for the management interface in the corresponding pulldown under "IPv4 interface -> Management VLAN" the only thing selectable is the default "1". (see screenshots enclosed)So how do I set a management VLAN different from 1?
o) How do I enable telnet/ssh-access to the SG200-18 - I'd be far more comfortable with a CLI-environment?
View 2 Replies
View Related
Apr 17, 2013
i have a asa5505 and sf300-48,in the sf300 have ip defult-gateway 192.168.1.93 and have internet in vlan2 but vlan 3 not work. ping from "vlan3" to "vlan2" its ok.
View 5 Replies
View Related
May 9, 2012
I start writing this post telling you that I'm not a qualified network admin, so I beg your pardon if I do not use appropriate terms in my question. Also my english in not so good since I'm Italian and my english in almost scholastic.
This is the "story" :
I bought two switches as described above and actually I have to create 2 VLANS as described below :
VLAN id 2 name "Service_A" ports 1-4
VLAN id 3 name "Service_B" ports 7-9
all other ports can stay in default VLAN1.
my network infrastructure have some other very simple swtiches connected and 1 soho router (static ip 192.168.1.1) with dhcp active and ip pool address released from 192.168.1.100 to 200.
the SG200-26 have static ip 192.168.1.254 and 192.168.1.253
MY NEEDS:
I need VLAN for privacy matter so all computer connected to ports in VLAN2 cannot see nor enumerate PCs and resources on other VLANs, but I also absolutely NEED that all computer in every ports (and every VLAN even default VLAN1) can access the internet.
View 1 Replies
View Related
Nov 7, 2011
I have a Dell switch setup with 2 Vlan's. Vlan 1 is to the network. Vlan 20 is going to be for wireless access to the internet. How do I configure the switch/router so that Vlan 20 only connects to the internet and not the network? I will later want to have a 2nd SSID that I want to connect to both the internet and network.
View 5 Replies
View Related
May 12, 2011
We are trying to config vlan 10 for data and vlan 20 for voice on the same port - port 1 of swtich SF300-24P to run both data and voice on different vlans.Do I have to add vlan 10 as an untagged vlan to port 1 and add vlan 20 as an tagged vlan to port 1?If I do not want to assign the native vlan 1 to port 1, how can I remove it ? The GUI page - assign VLAN to port does not allow to remove it.Aslo, what mode shall I set up on port 1? General, trunk or access ?
View 18 Replies
View Related
Jan 20, 2011
I have a Netgear GSM7248R switch with 5 different Vlans including th management Vlan. Each of the vlans are connected to my layer 3 switch for routing. I want to access the management vlan form any of my Vlans so my layer two switch can be detected by my snmp manager.
View 3 Replies
View Related
Apr 6, 2013
I have some problem in my small network.I have 2 SF-300 48 port switches and connected to 847 router for intervlan routing. I configure 7 vlan in SW1 and uplink to SW2 with trunkport.
The problem is that if i used default gateway for users ip address of interface (vlan interface) is ok. I bring two adsl modem and connected to vlan1 and vlan2 for internet access. When i connected this two modem vlan 1 and vlan 2 are not going to access other vlan 3,4,5,6,7 and wise versa.
vlan1 users getting default gateway from adsl modem ip, how i can permit this two vlan should to access other vlan 3,4,5,6,7 and 3,4,5,6,7 should access to internet also.
[URL]...
View 4 Replies
View Related
Mar 26, 2013
I connected my intranet cable to coreswitch 4510 created one vlan 600,that vlan gateway is routable from asa5580.now my intranet people able to ping my vlan gateway but iam unable to ping their ip.i added static route on asa route inside 192.0.0.0 255.255.255.0 10.100.106.1 1 but iam unable to ping remote ip.
View 2 Replies
View Related
Oct 6, 2011
now we have 2 switches: SF300-24..on one SF300-24 we config it at layer 3 mode with VLAN configuration same as following [code] And we use port 26 on 2 switches SF300-24 is trunk mode then we connect both SF300-24 switches.But on SF300-24 layer 2 cann't inderstand VLAN from Sf300-24 layer 3..How to config VLAN on 2 switches SF300-24 Layer 3 and SF300-24 layer 2?
View 2 Replies
View Related
Aug 7, 2011
Any snmpset commands to add, modify and delete vlan table entries on SG300-10 switches? I checked url... however this information is apparently only valid for catalysts. The latest firmware is installed and the provided MIB files are used.
View 8 Replies
View Related
Dec 5, 2012
I'm trying to figure out how to (or if I can) setup the management interfaces (fa1) on a couple of new 4500X switches. My issue is that the 4500X's themselves are the gateway for my management VLAN (.1 HSRP virtual, .2 and .3 SVIs on the pair of switches).
I would like to assign addresses from the management VLAN to the router Fa1 management interfaces but the software configuration guide seems to note this is not supported (and indeed it doesn't seem to work).
Physically I have Fa1 from core-1 into a port on an adjacent switch. Fa1 from core-2 also goes into a port on that adjacent switch. Both are in my management VLAN, whose SVIs are on the cores themselves.
View 5 Replies
View Related
May 30, 2012
I have an ASA that houses 11 VLANs, and I am trying to add a 12th.One of the VLANs is for PCs that have internet only access.The new VLAN will be similar, but for multifunction printers only.VLAN 99 is for internet only and works fine, I can ping the gateway of 10.99.3.33 from any PC in that VLAN.I am creating VLAN 98, modeling it after VLAN 99, and I cannot get a PC in the vlan to ping the gateway of10.98.3.17.Both switch and ASA show the new VLAN 98 as UP, switchport is UP/UP.I have deleted and recreated VLAN 98 a few times, but I cannot get a PC VLAN 98 connectivity.Once it is working on the core switch, I will add it to the trunk to the IDS switches. VTP is not in use, everything is manual. [code]
View 4 Replies
View Related
Oct 15, 2012
I have created two vlans, vlan 1 data and vlan 200 voice. the issue is that when an on one vlan i cannot ping the default gateway of the othe vlan from my PC. An using sge 2010p switches.
below is my configuration
p route 0.0.0.0 0.0.0.0 192.168.0.1
ip dhcp relay address 192.168.0.100
ip dhcp relay enable
ip dhcp information option
interface vlan 1
ip dhcp relay enable(code )
View 3 Replies
View Related
Apr 9, 2013
Q: If i m going to do a Bonjour Gateway deployment, do i still need the vlan select feature on the wism's or is enabling multicast enough?
Details of the Q:
I m working with WISM s and WISM2;s, 1130 and 3602 ap;s. Cores are 6509-E's.
i m going to implement a Bonjour gateway (which is an Aerohive ap, no wifi enabled, its just a Bonjour gateway)
This ap is connected with a trunk port (to a 6509-E) and has the wifi client vlans on the trunk as allowed vlans. It also has an allowed vlan for AppleTV;s which will be wired devices.
The Aerohive gateway gets an ip address in every wifi subnet, so far so good.
I was thinking that if i enable multicast :
- globally on the wisms, with mcast-mcast distribution
- on the SVI's for the wifi client vlans
- on te SVI's of the vlans for cisco aps
- on the SVI for AppleTV
- SVI for wism management
- SVI for the Bonjour gateway
then do i still need vlan select? Maybe a stupid question, but i m not sure how to interpret some things in this document.
View 4 Replies
View Related
Jul 25, 2012
I have a design hurdle that I cannot seem to cross. I have two sites and I need the same VLAN to span both sites. I have accomplished this using L2TP but my issue is that I can no longer assign a gateway for this VLAN on the router. The 2 routers are 2821's and are connected with a dedicated fiber run.
Ant recommendation for how this could be accomplished? It would be great if I could have the same gateway at both sites by leveraging some sort of bridged interface (BVI so I've heard) but I am at a loss as to where I should start with this. Also, this is not the only VLAN that needs to traverse the link.
View 2 Replies
View Related
Mar 22, 2012
How shall i use different vlans outside another gateway in sg-300 28? Example:
vlan2 192.168.2.0/24 gateway 192.168.2.1 outside router gateway 192.168.2.254
vlan3 192.168.3.0/24 gateway 192.168.3.1 outside router gateway 192.168.3.254
should me doing in sg-300 28?
View 1 Replies
View Related
Apr 4, 2011
I have a public IP (static). I have a Gateway machine which is connected through a modem. When I want to add that public IP to the Gateway Device through [URL] site.
View 3 Replies
View Related
Apr 28, 2012
Lastnight I power cycled my cable modem, and router in an attempt to get a Slingbox to work. What ended up happening is that after the modem and router came back online all the computers on my wired home network changed their default gateway to the IP of the modem and not the router. Two of the computers are fixed now, but one of the laptops is still not able to get to the internet using DHCP. I can use a static IP with the correct default gateway for the router, and succesfully get to the internet, but then I can't see my server on my netowrk. And the same is true in reverse, in order to see my server I have to go back to DHCP, but I can't get on the internet
View 1 Replies
View Related
Feb 25, 2012
I have two routers (set up in two countries). I am using PPPOE to connect between the two routers. I use a laptop connected to my home network using router 1 to access the internet using router 2. i cannot set this up. I use Dlink routers. I tried giving the "default gateway" as router 2's IP address.
View 1 Replies
View Related
Mar 24, 2011
ipconfig /all reports one of my three DNS servers as 192.168.1.1. My Default Gateway and DHCP Server are also reported as 192.168.1.1. This is from a recently installed Valet M10 updating an old Linksys router. The Linksys reported the three DNS servers octets independent of the router's ip and other default settings.JK
View 1 Replies
View Related
Jul 18, 2011
recently, i have connected the internet to my PC with cable. Here the problem is , the packets are not receiving in the status bar of internet connection. I have checked in command prompt, the ip address is connecting properly but the default gateway ip address is showing "Request Timed Out" message.
View 1 Replies
View Related
Apr 18, 2013
I'm trying to setup following scenario which is working with no issue on netgear switches (like GS108) but I have not been able to get it to work on Cisco SG-200 I did quite a bit of reading here on many post but nothing seems to work.
View 6 Replies
View Related
Jun 13, 2011
For test I used 2 Switch that name "ESW X" and "ESW Y" I have 2 network that I named "Network A" and "Network B" I build 2 VLAN for each network that named Vlan 2 for Network A and Vlan 3 for Network B, I don't use Vlan 1 because it's the default Vlan
Configuration ESW X:
port e1 : ACCESS PORT on UNTTAGGED Vlan 2
port e2 : ACCESS PORT on UNTTAGGED Vlan 2
port e3 : ACCESS PORT on UNTTAGGED Vlan 3
port e4 : ACCESS PORT on UNTTAGGED Vlan 3
port g3 : TRUNK PORT with UNTTAGGED Vlan 1(default) and TAGGED Vlan 2 and Vlan 3
[code]....
Each Vlan can't communicate between the two switch, I think they're a problem in my vlan/port configuration?
View 2 Replies
View Related
May 5, 2011
I need create vlans in Cisco SF 300-24 Switch.Ports 1 to 6 are available for other ports (from 7 to 24).For examples: port 7 is available for ports from 1 to 6 but is not available for ports from 8 to 24,port 8 is available for ports from 1 to 6 but is not available for ports from 9 to 24 and 7, port 9 is available for ports from 1 to 6 but is not available for ports from 10 to 24 and 7 and 8,.....(to port 24).
View 7 Replies
View Related
Apr 20, 2011
I bought for a little office a SA520 Security appliance (for future VPN with another distant office) and a SG 300-10P switch for connect 3 PC and 3 IP PHONE. THe SA 520 is the router. I must configure 2 VLANs on the switch :
VLAN2 : DATA (for PC)
VLAN3 : VOICE (for IP PHONE)
VLAN1 : DEFAULT.
How can i simply configure all ports ? I would like to configure ports 1-4 on VLAN2 and ports 5-8 on VLAN3 and port G10 is reserved for the router SA520. I want to divise network DATA/VOICE.
I think i must create a trunk on G10 for SA520 ...
View 2 Replies
View Related
Aug 24, 2012
I'm adding it to an existing infastructure, with multiple VLANs. I believe I have it set up correctly, however whenever I daisy-chain the switch in with the trunk ports, it's not passing the VLAN info correctly. There's not a lot of configuguration involved, so I'm not quite sure where I might be going wrong. I've attached a couple screenshots that show my trunk port configuration.
View 3 Replies
View Related
Dec 8, 2010
we have two Catalyst Express 500 switches and a ESW 520 just purchased. the VLAN on the other two is 2. how do I change the Default to be 2 instead of 100 in the ESW Switch.
View 3 Replies
View Related
May 2, 2013
I have been trying to setup vlans on a SG300-28p but they are not working. This is my setup: I want Switch1 to have ports 1-10 to access the DMZ, and 11-24 the LAN. Then i wan to add switch2-4 to extend the access to LAN.
i tested with cisco 2960 switches by just telling what ports whould have access to DMZ and LAN but the small business switches are different..
View 1 Replies
View Related
