Cisco Switches :: Two VLan In SF300-48 Access To Internet In ASA 5505
Apr 17, 2013
i have a asa5505 and sf300-48,in the sf300 have ip defult-gateway 192.168.1.93 and have internet in vlan2 but vlan 3 not work. ping from "vlan3" to "vlan2" its ok.
View 5 Replies
ADVERTISEMENT
May 12, 2011
We are trying to config vlan 10 for data and vlan 20 for voice on the same port - port 1 of swtich SF300-24P to run both data and voice on different vlans.Do I have to add vlan 10 as an untagged vlan to port 1 and add vlan 20 as an tagged vlan to port 1?If I do not want to assign the native vlan 1 to port 1, how can I remove it ? The GUI page - assign VLAN to port does not allow to remove it.Aslo, what mode shall I set up on port 1? General, trunk or access ?
View 18 Replies
View Related
Oct 6, 2011
now we have 2 switches: SF300-24..on one SF300-24 we config it at layer 3 mode with VLAN configuration same as following [code] And we use port 26 on 2 switches SF300-24 is trunk mode then we connect both SF300-24 switches.But on SF300-24 layer 2 cann't inderstand VLAN from Sf300-24 layer 3..How to config VLAN on 2 switches SF300-24 Layer 3 and SF300-24 layer 2?
View 2 Replies
View Related
Oct 17, 2012
In my network I got 3 SF300 24 p switches. I managed vlan 10 for data and it is also a native vlan and vlan 20 for voice ,1st switch is the core switch and im having a problem in connecting them ?
View 7 Replies
View Related
Jan 2, 2013
my new Cisco SF300-48. I want to create 2 vlan (vlan 1 & vlan 2). The switch is set at layer 2. example : vlan 1 (port 1, 2, 3) , vlan 2 (port 4, 5, 6) vlan 1 can communicate each other (port 1, 2, 3) and vlan 2 can communicate each other (port 4, 5, 6)But vlan 1 cannot communicate with vlan 2.
View 4 Replies
View Related
Apr 22, 2011
I had made a DHCP server that had many scope:
1- scope: 192.168.1.208/28
2- scope: 192.168.1.224/28
3- scope: 192.168.16.0/24
[Code]....
How to condig SF300-24 to vlan 2 vlan 3 can get IP address from DHCP server in VLan 4?
View 14 Replies
View Related
Jan 2, 2012
I have a SF300 24 P and Iam trying to configure a voice vlan this is what I have done so far and it doesnt work.
1. create vlan 30 for voice traffic and enable it
2. Telephony OUI add my mac address for allworx phones
3. Port to VLAN add 30 has tagged, port to vlan 1 untagged
4. Vlan to port I try to add 30 and get this error (Port e15 is candidate in voice Vlan 30 and cant be configured as static member in the vlan.
5. Under Discovery LLDP, LLDP MED port Setting Enable MED status, then all other options to yes
In my LLDP neighbor information all my phones are there and says under port ID 0 ( my phones support LLDP and CDP)
View 1 Replies
View Related
Oct 22, 2012
I have a Cisco SF300-24P deployed at a customer prem running only a couple VLAN's - 1 customer related and 1 for management. Recently the customer inquired about changing his connection to Q-in-Q. I have changed the interface type to customer but then it selects vlan 4095 as the vlan associated to that port. How do I change that vlan or by default is that the only vlan I can use? Currently the customer is using vlan 904 and would like to continue to use that vlan in the Q-in-Q config.
View 1 Replies
View Related
Dec 12, 2012
I bought a sf300 48 and made 4 vlans.
How can I restrict the mac address of device can be connect each vlan ? I just want allow the macs for vlan, dont need join the pc to a vlan.
View 8 Replies
View Related
Oct 12, 2011
I got question about Cisco SF300-24P- is it possible to have management vlan in other vlan than in default vlan?I have default vlan 10 and voice vlan 20, I need to reach switch through voice vlan so I need to set up, interface vlan 20 with ip address. I ask these, because in gui, under Management Interface, IPv4 interface,under Management VLAN, I can only choose vlan 10, which is my default vlan, I dont have option to set ,up, in this case, vlan 20 as management vlan.
View 2 Replies
View Related
Sep 9, 2012
I have a SF 300-24 24-Port 10/100 Managed Switch and I am trying to set some VLANs. The image below shows how I want it to be setup:Since the remote site goes through the Internet, making port 20 an 802.1Q trunk over the two VLANs will give WAN connectivity to VPN/E-mail.I've tried all sort of settings [ see attachments] but can't get it work.
View 5 Replies
View Related
Feb 12, 2012
I have a sf300 with (2) vlans (1) ] vlan for data and vlan (100) is my voice vlan I have Vlan (100) tagged traffic, and my VoIP pbx as an access port only to vlan (100) all other ports are trunk ports with vlan (100) tagged and vlan (1) untagged traffic. I get no outbound audio on calls I can call out hear them fine they cant hear me. I am wondering if my tagged traffic leaving the phone is being striped and if so were. I have CDP turned off.
View 1 Replies
View Related
Jan 30, 2012
Trunk from 3500 going into SF300-8 #1 QNQTrunk from SF300-8 #1 going into trunk SF300-8 #2QNQ from SF300-08#2 going into Trunk SF300-24, All Vlans from Network 1 seem to be communicating properly between the 3550 and SF300-24 and is isolated from the Transport Network by QnQ. I am having one problem, I can not ping the SF300-24 or get to the management interface. I am able to access other devices on the SF300-24 Vlan1 from devices on the 3550 Vlan1 and vice versa.
View 1 Replies
View Related
Aug 7, 2011
ASA 5505 and DMZ and Base License,"For example, you have one VLAN assigned to the outside for Internet access, one VLAN assigned to an inside business network, and a third VLAN assigned to your home network. The home network does not need to access the business network, so you can use the no forward interface command on the home VLAN; the business network can access the home network, but the home network cannot access the business network." Page 6-17.
This is exactly what I need. Mail server in DMZ, full access from internet to DMZ, and from inside network to DMZ, no access from DZM to inside network. If I good understand, this is possible with base license.
I successfully configure, internet Access for DZM and inside network, Mail server can be accessed from internet, as well as RDP on inside network. But I have problem to configure communication from inside network to DMZ. [code]
View 13 Replies
View Related
Jul 6, 2012
I was just recently hired in my company, we have an sf300-24p switch but I cant find the console cable for it, I think it needs a female to female db9 serial cable, all I have is a DB9 serial to rj45 console cable for the 2801 router, also I cant find the IP address of the sf300 switch, it is directly connected to the 2801 router, I issued a show arp to the router but didnt find the switch's IP add for web access, to sum it up I have no way of configuring the switch, is there any way to find the IP address of the switch? It also dosnt show on show cdp neighbors?
View 13 Replies
View Related
May 9, 2012
I start writing this post telling you that I'm not a qualified network admin, so I beg your pardon if I do not use appropriate terms in my question. Also my english in not so good since I'm Italian and my english in almost scholastic.
This is the "story" :
I bought two switches as described above and actually I have to create 2 VLANS as described below :
VLAN id 2 name "Service_A" ports 1-4
VLAN id 3 name "Service_B" ports 7-9
all other ports can stay in default VLAN1.
my network infrastructure have some other very simple swtiches connected and 1 soho router (static ip 192.168.1.1) with dhcp active and ip pool address released from 192.168.1.100 to 200.
the SG200-26 have static ip 192.168.1.254 and 192.168.1.253
MY NEEDS:
I need VLAN for privacy matter so all computer connected to ports in VLAN2 cannot see nor enumerate PCs and resources on other VLANs, but I also absolutely NEED that all computer in every ports (and every VLAN even default VLAN1) can access the internet.
View 1 Replies
View Related
Nov 7, 2011
I have a Dell switch setup with 2 Vlan's. Vlan 1 is to the network. Vlan 20 is going to be for wireless access to the internet. How do I configure the switch/router so that Vlan 20 only connects to the internet and not the network? I will later want to have a 2nd SSID that I want to connect to both the internet and network.
View 5 Replies
View Related
Mar 16, 2013
i have one SF300-24p switch where i setup some Vlans and echolife hg8245 ONT router to access internet. the diagram is the following
VLAN1 (Subnet of users) -----> Switch SF300-24p
VLAN2 (Subnet of users) -----> Switch SF300-24p
VLAN3 (HG8245) -----> Switch SF300-24p
VLAN4 (Servers) -----> Switch SF300-24p
i want to control access to internet on VLAN1 and VLAN2 (access on VLAN3), while providing access to VLAN4.My problem is in connecting to internet, i can't find a way to "route back traffic to VLANs 1 and 2 since HG8245 don't seem to provide proper static routing ON LAN interface. Maybe without resorting to changing the HG8245 router ?
View 1 Replies
View Related
May 22, 2012
I'm setting up an SNMP poller to retrieve the ARP table (ipNetToMediaPhysAddress) from my SF300 switches. I can retrieve the table from SF300-24P and SF300-48P switches running Firmware Version 1.0.0.27, but get garbage for the MAC address when retrieving that same table on the same model switches running Firmware Version 1.1.1.8. Is there an outstanding defect on this code level? How can I retrieve the table showing the IP address to MAC address mappings?
View 1 Replies
View Related
Feb 13, 2012
I have a sf300 with (2) vlans (1) ] vlan for data and vlan (100) is my voice vlan I have Vlan (100) tagged traffic, and my VoIP pbx as an access port only to vlan (100) all other ports are trunk ports with vlan (100) tagged and vlan (1) untagged traffic. I get no outbound audio on calls I can call out hear them fine they cant hear me. I am wondering if my tagged traffic leaving the phone is being striped and if so were. I have CDP turned off.
View 1 Replies
View Related
Apr 29, 2013
getting a SF300 to properly route IP between 2 VLANs. I've watched the demo video and performed everything it showed, but I get the most bizarre half-way results. I haven't done anything on Cisco routers in about 15 years, so I'm a little rusty.
We have an office LAN with a cable modem/router for Internet access where the modem/router has IP address 192.168.1.1. We have the usual 24 bit prefix net mask. The SF 300 is connected to this network on port 1.
I have configured port 1 to VLAN 1, interface in Access mode, assigned a static IP address of 192.168.1.36, which is a free address on our office LAN. I have configured port 2 to VLAN 2, interface in Access mode, assigned a static IP address of 192.168.3.1 I put a static route in the modem/router, pointing 192.168.3.0/24 to 192.168.1.36.
I have a PC on 192.168.3.10 attached to port 2.
The SF300 can ping 192.168.3.1, but not 192.168.3.10. 192.168.3.10 can ping 192.168.3.1. It can also ping 192.168.1.1, and can pull up an HTTP router admin page from 192.168.1.1. 192.168.3.1 can be pinged from anywhere on 192.168.1.x, but 192.168.3.10 cannot be pinged from 192.168.1.x. Finally, 192.168.3.10 cannot ping any other addresses on 192.168.1.x except 192.168.1.1, and cannot reach the Internet.
Here's my configuration:
switch6d919d#show runconfig-file-headerswitch6d919dv1.3.0.59 / R750_NIK_1_3_647_260CLI v1.0set system mode router
file SSD indicator encrypted@ssd-control-startssd configssd file passphrase control
[Code].....
View 3 Replies
View Related
Oct 20, 2012
i have a small network with Polycom phones connected to the sf300 switch and have the pc's daisy chained via the second switch port on each phone. i have the pc traffic running on the default vlan 1 and the voice traffic running on the voice vlan 100. can i do bandwidth management on a vlan/port basis or is that not necessary. i want to ensure that the voice traffic is never impacted by the pc traffic on the same cable.
View 2 Replies
View Related
Jan 17, 2012
I have an ASA 5505. I have configured Remote Access VPN so that users can connect to VPN and access my main VLAN (Inside). I would like to secure it so that when a user VPN's in, they are only allowed access to the HVAC vlan (Vlan 2) as seen in my configuration. Please note there is also a LAN- 2- LAN VPN which has been configured as well.
View 17 Replies
View Related
Jun 14, 2011
I have a new install with 3 SF300 switches, setup as vlan 2, the switch connected directly to the 2901 router has no problems, plug in a phone and it gets an IP, but if connected to either of the two swtiches behind the first switch, they do not get an IP. I am seeing the DHCP request hitting the router, and the router sending the IP to the phone, but it never gets the IP.
*Jun 15 10:40:20.040: DHCPD: client's VPN is .
*Jun 15 10:40:20.040: DHCPD: Sending notification of DISCOVER:
*Jun 15 10:40:20.040: DHCPD: htype 1 chaddr 40f4.ecef.bded
[Code]....
All ports are setup as trunk on vlan 2 including the ports that connect the switches together. Not sure what the problem is, but they are going live tomorrow and only have 48 out of 120 phones.
View 1 Replies
View Related
Jun 8, 2011
I've got an ASA 5505 running 6.3 I've connected the management interface to our management vlan (which contains switch IPs, ilo's etc)Is there a way to allow access to this vlan from another?
View 1 Replies
View Related
Jun 18, 2012
An end user is looking to connect 21x IP Cameras to the switch and they require at least 6W port port. Now, the datasheet states that each port on the SF300 provides 15.4W.I need to double check so that the end user will not start connecting the IP Cameras and then half of them might not fire up.
View 1 Replies
View Related
May 21, 2013
cisco 2811 - DHCP server..If IP Phone 3905 installed in SF 300 he does not receive an ip address. [code] If IP Phone 3905 installed in the Catalyst 2960 - all OK.
View 7 Replies
View Related
Mar 26, 2013
I'm playing with an SF300-24P switch and want to connect an IP Phone. I'm more familar with IOS syntax than the SF300 GUI.
How would I replicate the following in the SF300:
Switch(config)#int fa0/1
Switch(config-if)# switchport mode access
Switch(config-if)# switchport access vlan 15
Switch(Config-if)# switchport voice vlan 5
Not sure if setting the port to an ACCESS port on VLAN 15 (i.e. 15UP) and having the Voice VLAN set to 5 is correct.
Or should the port be set to General or Trunk with 15 as the untagged VLAN and 5 as the tagged voice VLAN (i.e. 15UP, 5T)?
View 2 Replies
View Related
May 22, 2011
My ISP is providing me with 1 public IP on a /30 network and 14 public IPs on a /28 network. In this example the 10.0.0.1 is the default gw provided by my ISP and 10.0.0.2 is my SF300-08. If I setup my router to route to 10.0.0.2 as the default gw through the interface between the switch and router, can I configure the static routes in the switch to route further to 10.0.0.1?
is it possible to have these 2 networks on different VLANs and configure inter-VLAN routing? I don't want the switch accessible from the 10.0.0.2 IP.
View 3 Replies
View Related
Sep 9, 2012
Any chance of getting better ssh shell support on the SF300?Being able to do things like this are very useful:
ssh 10.1.1.1 "sh version"
ssh 10.1.1.1 "sh run"
View 2 Replies
View Related
Jul 20, 2012
Does the SF300 support stacking? If it does, which port(s) are the ideal ones?
View 1 Replies
View Related
Nov 17, 2012
We have a mitel 3300 PBX that is our DHCP server. It feeds an old Foundry Networks switch that nobody knows the password for anymore so I can't even look in it to get some clues. What I think I know is this.
vlan1 = PC's subnet 10.0.0.X 255.255.255.0
vlan2 = phones subnet 10.1.0.X 255.255.255.0
Phones plug into the switch, PC's plug into the phone.
I am assuming this to be the case becase all the PC's get those numbers and when booting up a phone it comes up and says "vlan2 pri 5" during the DHCP discovery.
Like I said the Mitel 3300 is the DHCP server and our internet access is from the firewall's trusted port.
I have put the switch in L3 mode via the console. No matter what I try, the PC will always get IP addresses in vlan2's subnet. Even if I plug the PC directly into the switch.
I have factory reset this baby and all I have done at this point is put it back in L3 and changed the default ip address so I can get to the web GUI.
View 9 Replies
View Related
Mar 10, 2013
I am looking for some technical specs on the SF300 series which I can't seem to find in the 300 series data sheet: the maximum delay for traffic through the switchbuffer size for each switchportwhether or not the ports are suitable for shielded cable and connectors
View 4 Replies
View Related