Cisco Switching/Routing :: 3560 - InterVLAN Communication Not Using Router

Aug 29, 2012

We are trying to figure out how to configure this properly and so far we are stuck. We have a VMWare server with two different vmnics each on a different VLAN. We have each of these vmnics connected into their own switch port on a 3560G along with the appropriate VLAN membership for said ports. We have an additional port on this same switch in trunking mode connected to our firewall to a NIC that has an IP address in the respective VLAN networks. This port is also set for dot1q encapsulation. Each VLAN also has an IP set on the switch that is in the appropriate VLAN. We are having issues in this configuration getting the one VLAN to talk to another.
 
I know if we were in all Cisco mode then we would use ROAS to do this inter-vlan communication. How to make this happen short of changing hardware?

View 7 Replies


ADVERTISEMENT

Cisco Switching/Routing :: 3560 - Access List On InterVLan Routing

Dec 11, 2012

I implemented access list on cisco 3560 switch but it never works. I want to block access from network B to Network A and allow from Ato B
Network A. 10.0.12.0/24
Network B 10.0.24.0/24
 
The configuration is
interface Vlan1
description Data VLAN

[Code].....

View 14 Replies View Related

Cisco Switching/Routing :: DMZ Communication On ASA5510 To 3560?

May 11, 2012

I've recently segmented my network and part of the process was creating a DMZ VLAN.  I'm running ESXi 5 and have created two new VM's to add to this DMZ to begin the process of moving everything public facing to the new VLAN.  At this point they new hosts will not communicate with each other, their gateway, and of course not the public internet.  To get the first out of the way, they are configured according to VMWare's VLAN guide: I have created a new vSwitch port group on the host and assigned them to the VLAN id 11 for the DMZ VLAN, and have the switchport on the switch (3560) setup as trunk in dot1q mode with all vlans tagged.  The management VLAN is also NOT the default VLAN 1, so that is not causing any issues.  My other server segment VLAN is working fine on the same ESXi host/s, so this does not seem to be the issue.
 
On the network side of things I have my ASA connecting to a 3560 with two interfaces, one for "inside", one for "dmz."Is this below correct?  I feel like the static route should be route dmz with a gateway to 10.0.1.1..
 
_ASA_
 
interface Ethernet0/2
nameif dmz
security-level 50
ip address 10.0.1.1 255.255.255.0 
route inside 10.0.1.0 255.255.255.0 192.168.201.2 1                          <- (192.168.201.2 is my 3560)

[code]....

View 9 Replies View Related

Cisco Switching/Routing :: 3560 Stop Communication From VLAN 30 To 20

Dec 27, 2011

In my lab setup i configured Cisco 3560 switch.

-VLAN 20 and VLAN 30 i configured.
-VLAN 20 interface IP : 192.168.20.1/24
-VLAN 30 interface IP : 192.168.30.1/24.

Inter-vlan communication is happening fine. For testing for purpose i configured extended ACLs.i want stop communication from VLAN 30 to VLAN 20 but not vice-versa. If i ping from one of the IP VLAN 20 to one of the ip of VLAN 30, i was gettng Requested time out. And if i ping from one of the IP VLAN 20 to VLAN 30 interface IP, i was able get pinging.From VLAN 30 to VLAN 20, i was getting destination host unreachable from VLAN 30 ip( Its fine as its my requirement)So, solution needed to communicate from VLAN 20 to VLAN 30.

View 1 Replies View Related

Cisco WAN :: 3560 / Policy Based Routing With InterVLan Routing

Jan 14, 2011

I have 3560 with attached 3 networks, 172.16.1.0/24 172.16.2.0/24 and 172.16.4.0/24, all of them have a vlan interface, 172.16.1.254, 172.16.2.254, and 172.16.4.254, I have enabled intervlan routing with command ip routing and they have route beetwen each other. Now I want to create PBR and let them go to the internet from different gateways.

so i did 3 access list:

access-list 20 permit 172.16.1.0 0.0.0.255
access-list 10 permit 172.16.2.0 0.0.0.255
access-list 30 permit 172.16.4.0 0.0.0.255
and 3 pbr
route-map supnet permit 20 match ip address 10 set ip next-hop 172.16.2.3
route-map blade permit 20 match ip address 30 set ip next-hop 172.16.4.250
route-map main permit 20 match ip address 20 set ip next-hop 172.16.1.4
 
attached them to corresponding vlan interfaces and everything ok they have different gateways to internet but now I dont have routing beetwen them?

View 2 Replies View Related

Cisco Switching/Routing :: 800 / Use ASA To Configure All The Vlans And Intervlan Routing And Access Lists?

Jul 4, 2012

upgrading our small office network. We currently have about 75 employees with probably 125 devices on the network. I'd like to create about 10 vlans for the different departments and then configure intervlan routing as needed. Currently we have all unmanaged switches and it's just a huge broadcast storm on the network. We are upgrading our Cisco 800 router to an ASA5505 sec. Plus license. I need some recommendations on switches. Of course, this needs to be done as cheap as possible.... Is there a way to use the ASA to configure all the vlans and intervlan routing and access lists and use a cheaper switch to provide the access layer to hosts?

View 4 Replies View Related

Cisco Switching/Routing :: Configuring Intervlan Routing Between 2801 And HP Switches?

Aug 5, 2012

I'm trying to configure intervlan routing between a cisco 2801 router and HP/Amer switches.  Using int fa0/1 and subinterfaces I was sure I had it configured correctly, but I cannot ping the default gateways when I place a host in a particular vlan.  Below is what I have configured.
 
HP switch - port 9 connects to fa0/1 on 2801
 ip default-gateway 10.1.100.1
trunk 9 Trk1 trunk
trunk 10 Trk2 trunk - to another switch

[code].....

View 4 Replies View Related

Cisco Switching/Routing :: InterVlan Routing With 3750 And 2960 Switches?

Nov 21, 2012

I am using a 3750 as a default gateway for multiple Vlans on a few 2960 switches. The trunk lines are configured and working and I have assigned ip addresses to each of the Vlan interfaces on the 3750. My issue is that I can only ping the ip address on the Vlan interface of the 3750 if I have a working computer plugged directly into the Vlan on the 3750. I only have 3 vlans on the 3750 that have hosts directly connected (vlans 2, 10 and 40) the other vlans ( 20 and 70) don't have any clients plugged into them on the 3750 but the hosts reside on 2 different 2960s that connect via trunk ports. How do I keep the vlan interface on the 3750 switch pingable when I don't have hosts directly connected in that vlan on the 3750? (yes, I have enabled ip routing on the 3750)

View 5 Replies View Related

Cisco Switching/Routing :: About Intervlan Routing On Catalyst 3750 Switch

Apr 16, 2012

I have been looking into this for a while and I can't seem to figure out why my 2nd vlan is not able to connect properly to the net. My switch has 12 ports where my devices connects directly, they are all on Vlan 1 and they all work perfectly. on Port 12 I have a dlink router that is connected to a cable modem. the dlink router has an Ip address of 192.168.0.20,I created a second vlan (vlan2) and enabled dhcp relay on it. then I assigned port 9 on the switch to  (vlan2),my laptop which is connected to port 9 seems to get an ip address fine and able to ping only some devices on my network (vlan1) and is not able to,go out to the internet.

View 3 Replies View Related

Cisco Switching/Routing :: ME3400 Boot Loader - Intervlan Routing

Sep 5, 2012

On cisco and am having some issues with intervlan routing. I have followed the vids and manuals but just can seem to get this working. I have the following network lab set up.
 
Vlan 10 = 10.70.1.9/24
Vlan 20 = 192.168.0.1/24
ME2400 firmware
ROM: Bootstrap program is ME340x boot loader
BOOTLDR: ME340x Boot Loader (ME340x-HBOOT-M) Version 12.2(35r)SE3, RELEASE SOFTWARE (fc1)
[Code]...

View 4 Replies View Related

Cisco Switching/Routing :: InterVLAN Routing On Switch 3750X?

May 22, 2013

my company pay a switch 3750 X. WS-C3750X-24T-E. It uses IP services basically but I failed to configure InterVLAN routing. why interVLAN routing doesn't work on my switch?

View 10 Replies View Related

Cisco Switching/Routing :: 2600 / 3550 - InterVLan Routing

Dec 2, 2011

I've been working with these two Cisco devices in my home off and on for several months now but I just can't take it anymore, I'm about to throw them away and go back to Linksys router.
 
I have a Cisco 2600 Router with only one Ethernet card in it so I have to trunk from my 3550 Switch to that device.  I'd like to have my ISP and all users plug into switch and all trunk back to the router's sub interfaces. Currently, I have started over...again, and am unable to simply get the router and switch to ping each other if I put sub-interfaces on the router.  See my configs:
 
2600 ROUTER:
Router#sho run
Building configuration...
Current configuration : 555 bytes
[code]......

3550 SWITCH:
Switch#sho run
Building configuration...
Current configuration : 2302 bytes
!
version 12.2
[code]..........
 
Port F0/24 is in VLAN 1, as are all ports but Port F0/1 which is my desktop PC. I mocked it up in Packet Tracer and it works just fine.  This is just a simple setup and I'm making sure I can ping between switch and router before I move to each next step.

View 40 Replies View Related

Cisco Switching/Routing :: How To Configure ASA 5505 For Intervlan With 2960L2

Oct 18, 2011

i have 2960 l2 switch connected to the ASA 5505. for some or the other reason i am not able to do intervlan communication. have done trunk mode on both ends on the switch as well as on the ASA and native vlan 1 allowed. the trunk is up up i am able to ping only the vlan 1 ip from the switch to the ASA for the vlan 2 i am not and similar for vlan 3.
 
 config on the ASA
ASA Version 8.2(1)
!
hostname ciscoasa

[Code].....

View 2 Replies View Related

Cisco Switching/Routing :: To Enable InterVLAN MultiCasting On 3560G

Feb 11, 2013

How do i enable InterVLAN MultiCasting. I have a WS-C3560G-24TS as my core switch and it does InterVLAN Routing. I have a Server VLAN (70) and Workstation VLAN (71). I have a server that i have set up to deploy  images to computers. Up to this point i have only done one computer at a time, so unicasting was ok. I would like to be able to Multicast to multiple computers, but am unsure what i need to do on the switch (if anything) to enable this.

View 2 Replies View Related

Cisco Switching/Routing :: 3750e InterVLan With RVS4000 Gateway

Jan 4, 2012

I have a RVS4000 connected to my cable modem which I use as my gateway, the IP address of the RVS is 192.168.3.254
 
I have a 2811 with 3 subinterfaces of which I can ping all of them from my PC which at the minute is in VLAN 1, the only network that can connect to the outside world is VLAN 1, how can I enable the other 2 vlans to connect to the internet?
 
My set-up details are
 
Router
 
interface FastEthernet0/0.1
description *** Data Network***
encapsulation dot1Q 1 native

[Code]....

View 1 Replies View Related

Cisco Switching/Routing :: 3750x / 2960S - How To Setup InterVLan Configuration

Jul 6, 2012

I am trying to setup intervlan configuration and stuck on a problem. Here are the details:
 
1. Switches Catalyst 3750-x (as core switch) and Catalyst 2960S (as access switch)

2. Both switches have VLAN 20 and VLAN 1 on their database and both are active. BTW, after I figure out how to properly configure interVLAN routing the native VLAN 1 will not be used anymore. This is just an initial test.

3. VLAN 20 SVI interface (IP 192.168.20.200) on 3750 is up and can be pinged from catalyst 2960.

4. VLAN 1 SVI interface (IP 192.168.170.200) on 3750 is up and also can be pinged from Catalyst  2960.

5. Catalyst 3670 can ping a client computer (IP 192.168.20.10) connected to Catalyst 2960.

6.  IP route enabled on 3750

7. Trunking is enabled on etherchannel connecting both 3750 and 2960

8. Client computer in VLAN 20 (connected to 2960) can ping VLAN 20 SVI interface 192.168.20.200 on switch 3560.But, the client computer in VLAN 20 can not reach any computer in VLAN 1 and vice versa. Strangely, the switches which these computers are connected to can ping each other or any connected client copmuters without any problem as described above.

View 8 Replies View Related

Cisco WAN :: Router 2911 With Sm-es2-16p That Does Not Do Intervlan Routing

Feb 18, 2013

i have  problem with a router 2900 with a card switch 16 ports (sm-es2-16p) that does not doing the intervlan routing. i have attached 2 show tech one of the router and one of the card switch 16 ports (sm-es2-16p). I connected physically the switch card to a router interface and it seem to be working because i can do a ping from my pc  ( in user vlan 26) to my gateway on the router (172.20.26.1) but i can not do ping to the others vlan like  (172.10.26.1) or others. .. i want to know what is happening and if it there is a way to do the trunk conectivity between the switch card and the router internally without a phyisical connection.

View 4 Replies View Related

Cisco Switching/Routing :: 3560 VLAN Routing Between Switch And Router

May 8, 2012

I have an environment of 3 X 3560G of which I have 1st switch-CORE(f0/10) connecting to the VPN router(CE) interface-f0/0. Remaining 2 Cisco 3560's(Access) are connected to Gi0/1 and Gi0/2 on the 1st switch-CORE via gi0/1 . On all three switches I have created multiple VLANs and assigned ports to these VLAN. The switch to switch connection is trunk allowing all VLANs created on all these 3 switches. Now the issue is how I am going to have all these VLANs routed through single interface on the routeri-e f0/0, as all these subnets will communicating to remote site over VPN. What should be default gateway on the 2 Access switches and the CORE switch, also what static route should be on router to reach all subnets(VLANs) created on these 3 switches.
 
I have read inter-VLAN routing i-e creating sub interfaces on router but dont want to proceed with that and looking for any other way to have my VLANs talk on all three switches and then are accessible to remote site ove VPN?

View 9 Replies View Related

Cisco Switching/Routing :: Data And Voice VLANs Communication 1921

Dec 11, 2012

I wanted to know about EHWIC 8-Port configuration?  We create  Data and Voice VLANs and assign 8 ports to the VLANs. So how do VLANS communicate with each other? We cannot make Gi0/1 as sub interfaces and assign the same subnet IP’s as of VLAN IP’s , it wont accept. On 1921 router Assume Gi0/0 we connect to MPLS WAN. What happens to Gi0/1 where do we connect this?

View 1 Replies View Related

Cisco Switching/Routing :: Errors Establishing ISDN Communication 1841 BRI

Oct 16, 2012

I'm trying to dial a Cisco 1841 BRI from my Cisco 2811 PRI.  I'm getting a few errors but not sure what else to do to correct the issue.  Config & Logs below from 1841:

interface BRI0/0/0no ip addressencapsulation pppdialer pool-member 2isdn switch-type basic-niisdn point-to-point-setupno cdp enableppp authentication chap callin
00:26:44: ISDN BR0/0/0 Q931: RX <- SETUP pd = 8  callref = 0x46 Bearer Capability i = 0x8890   Standard = CCITT   Transfer Capability = Unrestricted Digital   Transfer Mode = Circuit   Transfer Rate = 64 kbit/s Channel ID i = 0x89 Signal i = 0x40 - Alerting on - pattern 0  Called Party Number i = 0xC1, '452####'   Plan:ISDN, Type:Subscriber(local) Locking Shift to Codeset 5 Codeset 5 IE 0x2A  i = 0x808001039E05, 'From ', 0x8B0C, '214 ###-####', 0x8001, '<'00:26:44:
[Code]....

View 2 Replies View Related

Cisco Switching/Routing :: 3560 DHCP Between Switch And Router

Jul 23, 2012

I have a cisco 3560 24PS and its connected to two ADSL broard band routers.one is a personal broadband line using a Billion ADSL broadband router, and the other is a business broardband line using BT's 2wire broadband line.on the Billion routers i have various things attached like a NAS and a printers, both wired connections. then i have laptops and phones that connect over wifi, so its configured to act as a DHCP server
 
the only thing conncted to my 2wire router is my company's laptop (wired or wifi depending on where i'm working from), so again i have it working as a dhcp server.The switch is configured with multiple vlans, with dhcp scopes assigned for each vlan.I have a static route pointing all traffic to my Billion ADSL for internet connectivity.
 
The problem i'm having is that when i turn on the cisco switch, all wifi conected devices loose their conection. only 2 things get it working again, a reboot of the router, or disabling then enabling the DHCP service on the router.upon further analysis i was able to find out that the devices were not able to pick up an address from the router. again i looked deeper into this and i can see the following on logs of my router: [code]
 
so it seems that the router tuns off its DHCP capabilities because it detects that my Cisco switch is running DHCP services. I need to figure out how to keep the billion routers DHCP running when ever the switch is turned on.is there a way of filtering out any DHCP chat from the switch to the router?

View 7 Replies View Related

Cisco Switching/Routing :: 3845 / 3560 - Bridging Multiple VLANs Over Router

Aug 27, 2007

We have a customer that is relocating thier headquarters. They have a temporary requirement to bridge multiple vlans or a router T3 link to the new location as they cannot change the IP subnets. Setup is  3560 switch connecting to a 3845 then T3 to remote 3845 and 3560. I need to bridge multiple VLANs. I have seen a good example on how to do it over sonet but I don't see how to translate that to an HDLC or Frame Relay encapsulation for the T3 Link.

View 5 Replies View Related

Cisco Switching/Routing :: 3560 - Limit Bandwidth For Specific User On Switch Or Router?

Jan 24, 2013

configuring a switch or a router to limit the bandwidth for a specific user/IP when need it. Most of my remote offices are configured like this:
 
Users ------ 3560 switch ------- 2801 router -------- T1 to NOC -------- 7204 router with channelized DS3
 
I use Netflow Analyzer for high bandwidth usage alerts and can see the user's IP right away when someone is clogging our T1s. My goal is to be able to temporarily limit the bandwidth of the user taking over the T1.  Whatever is best switch config or on the router.

View 2 Replies View Related

Cisco Switching/Routing :: 2921 / Catalyst 3560 - Router Interface Input Queue Drops?

Nov 6, 2011

i have an 2921 connected to an Catalyst 3560. My router interface shows quite a lot of input queue drops. Load is not too much max 5/255.

View 1 Replies View Related

Cisco Switching/Routing :: 3560 Policy Based Routing Verify-availability

Apr 19, 2012

Cisco 3560 does not support "set ip next-hop verify-availabilty". I need this command in my config. "set ip next-hop"  do not do the same job.

View 8 Replies View Related

Cisco Switching/Routing :: Cat 3560 No Switchport Command Test Out Routing With Switch

Dec 8, 2011

The last few days I've been exploring options in getting rid of some old routers accross a wan connections.  I have a cat 3560 to play with and I thought I would try and use the no switchport command test out routing with switch.  I've got some type of route issue and I tried a few things which I thought would fix the issue but had no effect.  I'll post the config and a few commands so you can see what the basic setup is. 

Here we can see in the arp that it knows about both 10.7.1.2 (PC unable to ping 10.3.3.254) as well as 10.3.3.254 (ASA).I tried adding in a ip route of 10.7.0.0 255.255.0.0 10.3.3.110 as well as 10.3.3.254.  Neither produced the results I wanted allowing 10.7.1.2 (PC) to ping the ASA (10.3.3.254). [code]

View 4 Replies View Related

Cisco Switching/Routing :: Make Policy Based Routing On 3560?

Apr 17, 2012

I have tried to make policy based routing on Cisco 3560. I use ipservices ios (SW version 12.2.(50)SE3 and SW-IMAGE C3560-IPSERVICESK9-M)  For below configuration there is no problem and pbr is working.
 
“Access-list 100 permit ip host  1.1.1.1 host 2.2.2.2
Access-list 101 permit ip host  1.1.1.1 host 3.3.3.3
 Route-map pbr1  permit 10
Match ip address  100
Set ip next-hop verify-availability  1.1.1.2 1 track 11
 interface fasthethernet  0/1
ip policy route-map  pbr1”
 
But when i add another sequence to the "pbr1" with another sequence number  like that.
 
“Route-map pbr1 permit  11
Match ip address  101
Set ip next-hop verify-availability  1.1.1.3 1 track 12”
 
pbr is not working. Switch gives message "PLATFORM_PBR-3-UNSUPPORTTED_RMP:Route-map pbr1 not supported for Policy Based  Routing”"ip policy route-map pbr1" command not shown in the running config. And "show ip policy" output is blank.Configuration guide says you have insert many sequence to the route-map with the same name. And also this command is not in the unsupported command list.

View 16 Replies View Related

Cisco Switching/Routing :: Routing Secondary Network On 3560 Switch

Jun 4, 2013

I am trying to get my workstation to talk to a workstation on a different sub-net through a Cisco 3560 switch.  The switch is running the following IOS version: [code]
 
My primary network is 172.16.0.0 and I am trying to connect to a device on a 192.168.111.0 sub-net. [code]
 
What would be the best way to get the two workstations talking via the switch?

View 3 Replies View Related

Cisco Switching/Routing :: 3560 - Unable To Perform VLAN Routing

Apr 28, 2012

We recently purchased Cisco 3560X Layer3 Switch. We need to perform simple Inter VLAN routing.  We have configured VLAN1 (name-server_vlan) and VLAN2 (name- user_vlan). We have also assigned the Ports and IP address to both the VLANs. After assiging this if we plug Laptop A into VLAN1 then it doesnt communicates with Laptop B (btw, Laptop A is able to Ping VLAN2 Gateway ) in VLAN2 but on the other hand Laptop B is able to communicate with Laptop A and ping everything i.e. Gateway of VLAN1.

View 17 Replies View Related

Cisco Switching/Routing :: Catalyst 3560 - Routing Enabled With / Without Default Gateway Or IP Route Command

Feb 25, 2013

We have two catalyst 3560 switches running  c3560-ipbasek9-mz.122-58.SE2.bin  They are connected using etherchannel using gi 0/21 -  24 interfaces.
 
on 3560-1 switch, there isn't any ip-default gateway or ip route configured. It only have 1 interface vlan configured.
 
on 3560-2 switch, there is ip default gateway configured along with 1 interface vlan.
 
What i dont understand here is that, i can reach out to other subnets from 3560-1 switch in which the routing is not enabled?

View 4 Replies View Related

Cisco Switching/Routing :: 2504 WLC / 3560 Catalyst Routing

Oct 21, 2012

I have a 2504 WLC connected to a Catalyst 3560 which has multiple vlans and is connected to a 2800 series router. I know the catalyst is L3 but I am needing nat functions to get outside to the internet. From my 2800 series router I am able to ping out to the internet, also I am able to ping the vlan interfaces on the catalyst switch. Problem is from the catalyst switch I can ping the inside and outside address of the 2800 but I cannot get any further then that. I cannot ping the 2800 router gateway. Not sure what I am doing wrong as far as routing.
 
I've attached my 2800 and 3560 configs.

View 3 Replies View Related

Cisco Firewall :: InterVLAN Routing On ASA 5505?

Apr 20, 2011

I have Cisco ASA 5505 Firewall with security plus license. I want to Configure 3 different subnet for inside network 10.1.x.x, 10.2.x.x and 10.3.x.x So any  PC from 10.1.x.x should be able to ping 10.2.x.x So my question is that possible with ASA?? If yes than how can i configure on ASA 5505, as  i know on 5510 we can configure sub interface and do intervlan routing.

View 4 Replies View Related

Cisco WAN :: 3845 - InterVLan Routing Does Not Work

Jul 9, 2012

I have cisco 3845 router  and 4507 & 2960 switch.  I have 4 Vlans on 4507  and connected to router on  four ports. Its working fine. Now i want to create another vlan ( vlan 15 ) that trunk with vlan 20 and router port f0/0/1. i.e router F 0/0/1 ports belongs only two vlan(15,20) and need to intervlan routing. My conf. given below.  
 
 Switch conf:
 
interface GigabitEthernet3/1
description ## to router##
switchport trunk encapsulation dot1q

[Code]......

View 4 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved