Cisco Switching/Routing :: ISA570 Router / G500-52P Switch - Setting Up VLan
Apr 15, 2013
I am trying to set up a network that has 1 internet connection, requires a local LAN for the business, and another LAN for public wireless access. Here is what I have and details on what we want to do.
1- Cisco ISA570 Router no WIFI
1- SG500-52P switch
6 - WAP321 Access Points
We have the main LAN set up and all is working well, internet access, 6 WAP's connecting and all is working like a charm. Internal IP range is 192. 168. 0.0/24.We have all 6 WAPs on the internal network, with 2 SSID's on each WAP and each SSID is assigned to a VLAN. One SSID is internal for staff, the other is for guest access for members. The internal staff wireless access is working fine.
We want the guests to be able to access the internet, but not the internal network, but we need to access them for administration from the internal network.
We created a second VLAN on the switch and added the 6 WAP ports to it as tagged for VLAN2. These 6 ports are also on VLAN1 (default). We have a second VLAN on the router, have it handing out DHCP addresses for the 192.168.25.0/24 range with DNS servers.
Where we are having trouble is with getting the guests wireless access to work. Guests can see the wireless, log onto the access point but that's it. They don't appear to get a 192.168.25.0/24 IP, or any IP actually, and thus cannot do anything.
View 5 Replies
ADVERTISEMENT
May 8, 2012
I have an environment of 3 X 3560G of which I have 1st switch-CORE(f0/10) connecting to the VPN router(CE) interface-f0/0. Remaining 2 Cisco 3560's(Access) are connected to Gi0/1 and Gi0/2 on the 1st switch-CORE via gi0/1 . On all three switches I have created multiple VLANs and assigned ports to these VLAN. The switch to switch connection is trunk allowing all VLANs created on all these 3 switches. Now the issue is how I am going to have all these VLANs routed through single interface on the routeri-e f0/0, as all these subnets will communicating to remote site over VPN. What should be default gateway on the 2 Access switches and the CORE switch, also what static route should be on router to reach all subnets(VLANs) created on these 3 switches.
I have read inter-VLAN routing i-e creating sub interfaces on router but dont want to proceed with that and looking for any other way to have my VLANs talk on all three switches and then are accessible to remote site ove VPN?
View 9 Replies
View Related
Jan 10, 2013
I have two networks at two sites with a dot1q trunk between the two L3 switches at both sites (no routers involved)
SITE A - Cisco 3750 L3 - VLAN ID 50
10.10.50.0/24
SITE B - Cisco 3750 L3 - VLAN ID 50
10.20.50.0/24
I would like to extend the SITE A VLAN to SITE B so that I can move hosts from SITE A to SITE B without needing to change their IP address but the vlan ID is already in use. Obviously the easy solution is to change the VLAN ID for one or other of the sites but both sites contain hosts that run 24/7. Is there a way to join two VLANs with different IDs together.So for example I create a new VLAN 60 at SITE B and associate it with VLAN 50 at SITE A.
View 4 Replies
View Related
Feb 26, 2013
We got a layer3 switched network, with one vlan for every switch, routed by a cat4006. [code] So can we put some ports on different switches in, let`s say vlan 50, with different ips? For example, Port 0/3 on Switch 1 and 0/8 on Switch 2, but keeping the ip of the "old" vlan? Or is it necessary to configure a specified vlan interface with ip-adress for every vlan if i want to route it?
View 4 Replies
View Related
Jul 5, 2012
I've recently purchased a Cisco catalyst 2960S-24TS-L & setup 3 V LANS 10 (no current IP),20 (192.168.2.1) and 30 (192.168.3.1) to reflect the router V LAN configuration & ip information. When connecting my PC to the switch to test connectivity on (2.1 & 3.1) I'm unable to connect to the the net but can successfully ping GW (int FE0.20 & FE0.30) 192.168.2.1 & 3.1.
The router is an Cisco 1801 & it seems this is where the configuration issue is but I'm unable to figure out how to complete the setup. It has been quite awhile since I've configured a Cisco router.
Ive never had this router connected to a switch so all router switch ports are in the default VLAN1 (192.168.1.2), with FE0 disabled. In trying to get the switch to communicate with the router I made the following router config modifications.
FE0 enabled with subinterfaces configured
FE0.10-currently no ip
FE0.20-192.168.2.1/27
FE0.30-192.168.3.1/27
I have two issues I want to resolve:
1) I do not know what additional steps are required to allow 2.1.& 3.1 V LANs to access the net.
2) I want to disable VLAN1 if possible & use the network IP for VLAN10 (192.168.1.0). I'm unsure how to do this as any change on VLAN1 immediately breaks router access and the router reconfiguration becomes more complicated with changes to the FW ACL etc.
View 2 Replies
View Related
Jan 25, 2012
I need to create several VLans on my switch.After reading the admin guide pdf, i still don't understand how to create any simple VLan.some tutorial or steps (with IE or Mozilla browser) how to create and use VLan, and to connect one VLan to another.For example,i need to create 3 VLans.
First Vlan consist of 5 ports (Vlan Name = Red)
Second Vlan consist of 15 ports (Vlan Name = Green)
Last Vlan consist of the rest of the ports (VLan Name = White)
View 7 Replies
View Related
Apr 17, 2013
One of the ports on the 3750 stack was configured for VLAN121. It was changed to VLAN40 and the configuration saved. Both VLANs exist in the switch configuration. As soon as a host was connected (in this case, a label printer) the port VLAN reverted back to VLAN121.
View 3 Replies
View Related
Dec 12, 2010
The question is: Will a 3750 switch route Jumbo frame sizes (e.g. 9000 MTU)?
We know that we can change the System MTU to 9000, and someone on a previous thread said that we can change the Routing MTU to 9000 as well, although I couldn't figure out how to do that. However, regardless of how we configure the System MTU and Routing MTU, I don't think we're able to adjust the MTU on L3 VLAN interfaces, so if we want to actually "route" between VLANs on the switch, we're limited to 1500 MTU.
Our situation is that we have a customer connecting to our 3750 switch, and this customer wants to use Jumbo frames. The customer connects to our 3750 switch via their own VLAN, with their own L3 VLAN interface configured on the switch. The customer will point their traffic towards the L3 VLAN interface, then we want to route them onto another VLAN, via a different L3 VLAN interface, before forwarding their traffic. Because of the limitations noted above, specificially regarding the routing between these VLANs via L3 interfaces, I do not think we'll be able to support 9000 MTU frames on this 3750 switch. I think the L3 VLAN interfaces will limit us to 1500 MTU, regardless of what we configured via the global System MTU and Routing MTU settings.
View 4 Replies
View Related
Jan 24, 2012
I am setting up a new 2960-S switch and none of the recommended username and passwords combinations work. I have tried CIsco Cisco, <blank> cisco and various other permutations.
I have tried to reset the switch to factory defaults and it still doesn't work. The switch is currently connected to a 3560G and has been assigned an IP. If I try to access it from Network assistant it shows as unmanaged and I get prompted for a username and password.The switch is connected to another new 2960-S via a FlowStack module.
View 4 Replies
View Related
Aug 26, 2012
I have to admit I've never written my own Cisco configuration and I probably know just enough to break things. The last time I configured a Cisco was a few years ago, and the Wachovia people just told me what to type.
I have a Cisco WS-C3548-XL-EN and a Cisco WS-C3524-PWR-XL-EN "Inline Power" with default configurations and I want to setup VLANs. Basically, would this work?
SWITCH 1:Router on port 39, Wifi on Port 47, Uplink to 2nd switch's port 24 on port 48
Code:
en
conf t
interface VLAN10
no ip directed-broadcast
no ip route-cache
[code]....
And then I would test that it works, if it does issue #write memory, and it it doesn't powercycle and try again?
View 9 Replies
View Related
Sep 18, 2012
I'm trying to set up a 2951 with a 24 port switch module. I want the ports to act similiarly to the ports on an 881 router - where I assign the VLANs on the router and I set the VLANs to the switchport interfaces.I would like to be able to create the VLANs on the router portion of the 2951 and then, enter the switch module and configure the Ports to the VLANs but, how do I logically connect router to the switch? Is it an internal logical interface - meaning how are the VLANs getting from the router to the switch?
View 24 Replies
View Related
Feb 23, 2012
I am trying to set up a VLAN on my Netgear switch (GS105E). I want to create two separate networks and I want both of them have internet access.
I have configured port 1 and port 5 as vlan1 and port 2 to port 4 as vlan2. I plugged a cable from the router to port 5, and the computer on port 1 has internet access. However, the computers on port 2 to port 4 have no internet access.I had tried to create VLANs with the router but had no luck.
View 3 Replies
View Related
Dec 17, 2011
I have been looking into this for a while and I can't seem to figure out why my 2nd vlan is not able to connect properly to the net.
My switch has 12 ports where my devices connects directly, they are all on Vlan 1 and they all work perfectly. on Port 12 I have a dlink router that is connected to a cable modem. the dlink router has an Ip address of 192.168.0.20
I created a second vlan (vlan2) and enabled dhcp relay on it. then I assigned port 9 on the switch to (vlan2)my laptop which is connected to port 9 seems to get an ip address fine and able to ping only some devices on my network (vlan1) and is not able to go out to the internet. I think it has to do with the routes. [code]
View 4 Replies
View Related
Feb 5, 2012
I recently set up a small photography business and am trying to get a Cisco 877 and Cisco SG300-10 switch to talk to each other.
What I want is for the Cisco 877 to handle the internet and the SG300-10 to handle the local network,
I have set up 2 vlans in trunk mode on the switch and want vlan2 to manage local traffic and vlan3 to handle the internet.
I have got the 877 connecting to the internet what I dont have, traffic going to vlan2 on the switch from the 877
Look at the running configs for the switch and the router and tell me how to get the vlan on the router to pass traffic to the switch. In a nutshell I am inserting the internet into the switch but am not sure how to progress. I have the c870-advipservicesk9 image file on the router.
Switch Config
interface gi2
description connection-to-data-vlan
exit
interface gi3
description connection-to-internet-vlan
exit
vlan database (code )
View 11 Replies
View Related
Mar 10, 2013
I'm having some problems setting up vlans to talk to each other on a 3550-12T switch. Its quite a simple setup I have, but I need to split my network up.
Currently I have a network of 192.168.25.0 255.255.255.0 I want to create a new vlan network of 192.168.30.0 255.255.255.0 So I have configured my vlan1 (default vlan) to have an ip of 192.168.25.250 for getting to the management page
I have created a vlan2 of 192.168.30.1 255.255.255.0 ?I have a port 10 linked to one of my 3560G's?In port 9 which is on vlan2 I have my pc plugged in with a static ip of 192.168.30.50 from the router I can ping any device on 192.168.25.x.
I can not ping 192.168.30.1 (which is my vlan2) nor can i ping the PC.
I have enabled ip routing But I dont have a default route, this is becase we don't have a router on the network.
View 18 Replies
View Related
Mar 22, 2011
I am migrating an a group of workstations that run a fire system from one software to another. The current workstations run the following info:123.123.123.xxx 255.255.255.0The new workstations run:100.100.100.xxx 255.255.255.0There is a central switch location using a GE-DSG-244 Layer 2+ Managed switch. There are two remote location using GE-DS-82 Managed Switches.The two networks must remain isolated, yet use the same fiber communications. The central switch connects to the two location using MM Fiber. From my research I believe I need to use the 802.1q standard to allow port trunking between the two switches.
View 7 Replies
View Related
Mar 18, 2013
I have a 3560 switch with 1 VLAN (VLAN 10) where I need to make ports:
1-10 as isolated (can't contact each other)
11-20 as community (need to contact each other like a normal VLAN)
23 as promiscuous (server that ports 1-20 need to get to)
24 as promiscuous (WAN router where ports 1-20 need to get to and the remote servers).
[Code]...
View 26 Replies
View Related
Dec 4, 2011
I'm using CISCO 3524 switch as access switch and trying to enable voice vlan in fast eth ports as below.
L3 vlans are created in core switches which is cisco 6509
vlan 1 - data vlan
vlan 2 - voice vlan
in cisco 3524
[code]....
if i use the above configs, the phone which is connected to interface fa0/1 is not taking ip from dhcp server. even it didn't work with static configs.while troubelshooting, i have configured as below and it's started working..
int fa0/1
switchport acces vlan 2
speed 100
duplex full.
in this case i can't use this port for data connectivity where as it's required for data too.
View 2 Replies
View Related
Jan 20, 2013
I have hybrid network in which I want to configure VLAN on Cisco 2960 S switch. I have unmanged switch where my DHCP server and other servers are connected. Now I created two VLANs on cisco 2960S and they don't talk each other, but as soon as I connect unmanaged switch to 2960S switch, both VLANs start communicating which I don't want. I want to listen server traffic from unmanaged switch from both VLANs but simultaneously I don't want to communication between two VLANs.
View 10 Replies
View Related
Dec 9, 2012
In my setup , i have one core switch 4506, 3750 access switches and 4948 server switch.i have created the mngmt VLAN in every switch.the problem is i can ping the every device mngmt ip from any internal network,but my server switch mngmt ip i am not able to ping.trunk link is configure between the core and server,access switches.What is the problem with 4948 switch?
View 7 Replies
View Related
Apr 17, 2012
We have over 30 Cisco 3560 switches and over 10 VLANs on our network. In our example, VLAN 10 on switch IP 10.0.20.150 works fine and VLAN 10 on switch IP 10.0.20.24 doesn’t work. The below are both switches show vlan. url....I can’t tell what causes the problem and how to fix it. VLAN 10 on Switch 10.0.20 24 doesn’t work. [code]
View 8 Replies
View Related
Mar 12, 2012
I would like to know if it is possible to assign a 3rd IP address to my end user vlan. Basically the 45xx acts as my end user gateway and has been confirgured as below
interface VlanXX
description Main Vlan
ip address 2.X.X.X 255.255.255.0 secondary
ip address 1.X.X.X 255.255.252.0
[Code].....
Here, due to IP address exhaustion in my end-user network, i want to add one more subnet X.X.X.X/22 to my network and assign one IP more from this range to the above vlan to act as the gateway IP.
View 1 Replies
View Related
Jun 4, 2013
If we configure a Voice and Data VLAn on a switch. And connect EX90 on voice VLAN and PCwith EX90 terminals. Than can we able to share a presentation or data with EX90 or not?
View 3 Replies
View Related
Dec 22, 2012
I am having trouble after creating a management vlan (99) on a 3550 switch.I have configured the vlan (99) and given it an IP (192.168.1.100) and a default gateway (my router address - 192.168.1.99).I can ping to the switch from a PC and vice versa. The management VLAN IP is fine but now I cannot ping to the router from either the PC or the switch.It seems that just by adding VLAN 99 with it's own IP address has now prevented pings from the switch/ PC to the router ?Due to the fact that I have created a new switch management VLAN with an IP, does this mean I have set up the router as a 'router on a stick' scenario ? [code]
View 4 Replies
View Related
Jul 28, 2012
I was trying to configure an SF 300-24 for use in my home and obviously did something dumb. It was working fine. The f/w was updated and I had configured 2 VLANs. VLAN2 was ports 1-6+GE1 for IPTV streaming and VLAN3 was ports 7-24+GE2 and GE3 for the rest of my LAN. I was plugged into GE4 and was configuring the switch with a laptop. GE4 was the only port still on the default VLAN1. I chaged the default VLAN to VLAN3, which forced a reboot and the switch never came back up. Attached is what I see when I connect to the console port: [code]
I can't access to GUI using it's static IP or it's default IP on any port and the console never reaches the point where I can log in. The System light is flashing green but the boot sequence never progresses past what's in the screen shot. I tried to do a hard reset using the recessed button on the front panel but it does not seem to have any effect, no matter how long I hold it down.
View 5 Replies
View Related
Feb 6, 2013
I have a LIII Switch Cisco 3750x ,with diffrent Vlans , Some users are in Vlan 102 (10.10.2.0) and Some Users are in Vlan1 (10.10.1.0) , now i want to restrict the Vlan102 users to access Vlan1 , i am pasting my configuration below , how to create a access list .
interface Vlan1
ip address 10.10.1.36 255.255.255.0
ip helper-address 10.10.1.36
[Code].....
View 2 Replies
View Related
May 27, 2013
I'm having some trouble getting my head round the following but I think it's routing related?
I have a Cisco 3750 switch with the following configured:
interface Vlan1
ip address 192.168.0.223 255.255.254.0
no ip route-cache
[Code].....
The 3750 is connected to a firewall which handles the routing. From the 3750 I can only ping remote networks from the vlan1 interface not from vlan6,8 or 10 i.e ping 10.34.37.101 (remote network) source 192.168.0.223 (vlan1) works but ping 10.34.37.101 source 10.74.10.1 (vlan10) does not? I can ping 10.34.37.101 from computers on the various vlans but not from the 3750 it self.
I looked at setting a default gateway for the various vlan interfaces
View 3 Replies
View Related
Jun 25, 2012
I would like to configure Ethernet jumbo frame setting in a C6509E switch with WS-X6548-GE-TX and WS-X6516A-GBIC port modules, and IOS 12.2(33)SXJ1. whether any of these modules can support jumbo ethernet frames up to 9000 per port bases.Also, if none of these modules support port-based jumbo frame MTU then would the switch allow jumbo frames on Ethernet trunks from an access switch (say a C3560)?
View 3 Replies
View Related
May 19, 2013
I am unable to connect a Wifi Modem wiith 2960 Switch having VLAN 1,Attached is the network diagram,what configurations i have to modified it,I need to Connect A Wifi Modem on VLAN 1 ,Connectivity is working fine between VLAN 10 and VLAN 1.What should be the next step to Connect Wifi Modem to VLAN 1 so that Users on VLAN 10 should connect to Internet.
View 14 Replies
View Related
Mar 6, 2013
I have a 2911 router connected to a 3750 switch. I have configured vlan interfaces on the 2911 router:I am using the vlan 89 (89.2) as the management ip address for me to remotely get to the switch. Is this a proper configuration or could this cause issues in the future.
View 4 Replies
View Related
Nov 3, 2011
In my lab, there are some machines that are connected using Cisco 2950 switches. Those machines belong to a VLAN.Now I need to modify the VLAN settings of the machines and as such I also need to modify the VLAN settings on the ports on the Cisco switches.
In order to do this, first I need to login to those switches, but due to a lack of knowledge transfer, I don't have the password. Is the some generic password?Second I will need to modify the VLAN settings on each individual port. How can I do this?
View 2 Replies
View Related
Feb 3, 2013
The field engineer has a stand alone 24 port 2900 series switch that he has different equipment connected to and are segmented using VLANs. So for example, he's got ports 1-4 assigned to VLAN 10, 5-12 assigned to VLAN 20, 13-19 assigned to VLAN 30 and 20-24 assigned to VLAN 40. He would like all the gear on VLAN 30 to have the ablity to talk to all of the other VLANS, but VLAN 40 should not be allowed to talk with any other VLAN. Trunking would do no good here since the switch isn't connected to anything and you can only assign one VLAN per port.
Is there a way to do this within the stand alone switch? The only possible way I could think of would be to ensure that each VLAN has an assigned IP number (subnet) and doing this through access lists.
View 2 Replies
View Related
Jan 16, 2013
This is regarding VLAN creation on C3750E switch.I want to create new Vlan 94 on this switch and also I want to allowed same interfaces like Vlan 95 & Vlan 96. [code]
View 7 Replies
View Related
