Cisco :: VLAN And Cisco Devices

Aug 29, 2012

Basically, I have a network which has a LAN and a DMZ. I need to isolate a few servers and users from the LAN so I created a VLAN on the switch. I assigned it an IP address in a different subnet and assigned ports to the VLAN. Port forwarding is configured on the switch.For testing purposes, before this goes live, I connected a computer directly to one of the switch ports (ge4/5) and assigned it a static IP in that subnet, the gateway being the VLAN IP. I can ping the VLAN IP but I can’t ping the router or get to the Internet,I tried setting the gateway to the ASA VLAN interface (e0/1.4) with the same result.The 1st step is to get Internet access. The next step will be to allow access to the Exchange server on the LAN.There are many devices not shown on the diagram but the important ones are there.

View 12 Replies


ADVERTISEMENT

Cisco WAN :: 871 Router - New VLAN (VLan200) Able To Ping / Access Devices

Feb 11, 2013

I have a Cisco 871 router and I have successfully added a second vlan and connected a switch configured with that VLAN. Anyways, my problem is the device in my new VLAN (vlan200) are able to ping/access devices on vlan1. I do not want this to happen. I read somewhere that the 871 routes between VLAN's by default.

View 3 Replies View Related

Cisco Switches :: SG300-10P / Making Vlan For All Wireless Devices On Network?

Feb 18, 2012

We connected 4 wireless access points (AP541N-E-K9) to an SG300-10P switch.We want to be sure that no wireless clients can alter settings to the network by connecting to any of the networking devices. We also want that no wireless devices (except a few) can connect to computers that are on the wired network. I'm new to configuring networking devices so how to set up the switch for this.We already added all the MAC-adresses of all the wireless devices (that are allowed to use the wireless network) to the access points.

View 3 Replies View Related

Cisco Switches :: SF500-24P / Devices In VLAN Can't Get DHCP Address From Router

Oct 11, 2012

I'm trying to set up a new Cisco SF500-24P switch for our new Polycom IP phones but I'm having some trouble configuring them. It seems a fairly basic setup - We have a Cisco 2800 series router which is configured in a router-on-a-stick scenario to give DHCP addresses to two vlans, '1' for data and '20' for voice...
 
ip dhcp pool DHCPROUTER
   network 10.10.0.0 255.255.255.0
   default-router 10.10.0.1
   dns-server 10.20.124.200 10.20.124.201

[cod]....
 
The switch worked practically straight out of the box- when I connected a PC or a phone into it they both got addresses in the 10.10.0.0 range and both worked fine. In the web interface I then set the Voice VLAN ID as 20 and as soon as I did this the phones can no longer get addresses from DHCP (although PCs can). The switch and the phone display both show that the phone is in VLAN 20. All ports are members of VLAN1(native, untagged) and VLAN 20 (tagged) and the port connecting to the router is trunked, as are the others.Also, I can ping 172.16.0.1 from the switch so there is no routing problem, although I did try using the switch as a DHCP relay to 172.16.0.1 but still no luck.I'm not sure how relevant this is but one thing I noticed is that data going to the router untagged (and therefore in VLAN 1) gets through but if I tag it with VLAN 1 then it doesn't.

View 5 Replies View Related

TEGs80G - Swap Unmanaged Devices With More Expensive Cisco Devices?

Jun 1, 2012

Currently my home network is being switched via TrendNet TEGs80G unmanaged gig switches. I have been using them for about a year now with no issues. As my home network becomes more advanced, I recently just added a Cisco ASA5505, I am thinking about swapping those unmanaged devices, 4 of them, to managed. I was looking at the Cisco SG300-10 for upstairs, and a 16 port variant for my main core. These devices do not support full Cisco IOS cli, but they are manageable with a rich feature set nonetheless. My question is, should I swap the unmanaged devices with the more expensive Cisco devices, or just keep what works and save the money until I really need to spend it. As previously stated, my home LAN works just fine as it is, however my WiFi, NTV550s, server and workstations are all on the same network. Probably not the most secure but it is what it is without VLAN support.

View 11 Replies View Related

Linksys Wireless Router :: E4200 Can See None Of Devices Attached To Power-line Devices

Aug 15, 2011

I have installed my new E4200 and it works beautifully.  I have several wirelss adapters and a few wired connections through powerline adapters. I also have a second VPN router attached to the 4200.I can see the wireless connected devices with the associated IP addresses.  If I plug a laptop directly into the Cisco, I can of course see it.However,  I can see none of the devices attatched to the powerline devices?  I have a securty cam connected via the powerline and want to know the IP address.  I checked with cisco technical support via chat and they said it is impossible.  I have used 2 previous routers with the same configuration and can see all devices.

View 1 Replies View Related

Wireless Devices Can't Connect To Wired Devices?

Oct 11, 2012

All of a sudden my laptop, android phone and blu ray player (all wireless devices) can't communicate with my wired devices (marantz receiver and samsung tv). Everything still connects to the internet independently but i can't for instance play music from my wireless laptop to my wired marantz receiver. I had no trouble with this last week and didn't change anything (that I'm aware of) I did get Verizon to switch out my router but it didn't solve anything. My wife's computer also cannot connect to wired devices. Lastly, if I connect my laptop with via ethernet cable it sees wired devices fine. I tried shutting off windows firewall but didn't work. I have no other firewall/virus software installed. I can ping to all devices (wired and wireless) from my laptop.

View 1 Replies View Related

Cisco Switches :: SF300-24P / Configure Vlan 10 For Data And Vlan 20 For Voice On The Same Port?

May 12, 2011

We are trying to config vlan 10 for data and vlan 20 for voice on the same port - port 1 of swtich SF300-24P to run both data and voice on different vlans.Do I have to add vlan 10 as an untagged vlan to port 1 and add vlan 20 as an tagged vlan to port 1?If I do not want to assign the native vlan 1 to port 1, how can I remove it ? The GUI page - assign VLAN to port does not allow to remove it.Aslo, what mode shall I set up on port 1? General, trunk or access ?

View 18 Replies View Related

Cisco Routers :: VLAN To VLAN Firewall Rules Support Missing On RV180?

Jan 12, 2013

How do I submit an RFE (Request For Enhancement) to the Cisco SBR team to encourage them to  implement the missing support for VLAN to VLAN firewall rules that was available in the RVS4000 (See [URL]) and that was supposedly added to a beta release of the RV220W firmware (See  [URL])?

View 1 Replies View Related

Cisco Switching/Routing :: 3560 Possible To Create Vlan Inside Transport Vlan?

Jan 10, 2012

Between our hosting and a customer we have an extended vlan, traveling on a fiber, between two cisco 3560 switches.The thing is, that we want to create one or more vlans inside that extended vlan, in some way if possible?

View 3 Replies View Related

Cisco Switching/Routing :: 3750 - Extending VLAN To Remote Switch That Already Has VLAN ID In Use

Jan 10, 2013

I have two networks at two sites with a dot1q trunk between the two L3 switches at both sites (no routers involved)
 
SITE A - Cisco 3750 L3 - VLAN ID 50
10.10.50.0/24
 
SITE B - Cisco 3750 L3 - VLAN ID 50
10.20.50.0/24
 
I would like to extend the SITE A VLAN to SITE B so that I can move hosts from SITE A to SITE B without needing to change their IP address but the vlan ID is already in use. Obviously the easy solution is to change the VLAN ID for one or other of the sites but both sites contain hosts that run 24/7. Is there a way to join two VLANs with different IDs together.So for example I create a new VLAN 60 at SITE B and associate it with VLAN 50 at SITE A.

View 4 Replies View Related

Cisco Firewall :: 6509 / FWSM VLAN Configuration Mismatch And Some VLAN Deleted

Aug 12, 2012

We  have 6509 VSS with FWSM Module and we have created two context on it, one is INTERNALL CONTEXT othe is EXTERNALL Context? We have spanned various VLANS in switches and FWSM context level.  All VLAN Gateways are configured in context level.
 
Activity description : We had planned migration of these devices into a new Datacenter, it was a planned activity. During  migration of devices from one Dc to a new DC  we broke the VSS and kept the primary running and removed the secondary switch and migrated this secondary to new DC  and powered this device ON in the new DC and checked all the config was very much fine but this device was OFF network as secondary was brought to new DC just to limit the downtime during the primary switch movement.
 
During the activity ( Primary switch movement )We powered off the Primary switch  and mean time before shifting into new Data center  We had brought up secondary switch which was already existing in the DC was put live in the network and it was working fine without any issues.
 
Later  we had moved  Primary into new data center and tried to put into VSS with the secondary , during this period the secondary device into went into RECOVERY MODE  and  primary device was not responding and devices  went off network and immediatly we  removed the VSL link and brought up  primary into production network without secondary online in the network ( Without VSS just stand alone switch ) network started working, but bringing up the primary we found that some of the VLANS in the FWSM was deleted and some VLAN had misconfiguration ( example : say original  VLAN  ip 10.200.112.1 has become  10.300.13.1 ) also some of the access list as well as SVI was deleted making configuration mismatch.
 
Wanted to know while syncronization b/n primary and secondary switch in VSS if we pull out VSL link would create this type of issues.

View 1 Replies View Related

Cisco :: Switchport Voice Vlan Command Not Putting Port In VLAN?

Feb 2, 2011

I have set up 2 DHCP pools and 2 VLANs (1 *the native* for data / 1 VLAN for voice). When I use the command "switchport voice vlan 20" the port disapear from the show vlan brief list. When I use the "switchport access vlan 20" it shows up in the show vlan brief in the correct VLAN and gives the phone an IP. I assume that using the access instead of the voice is wrong and the phones would not configure correctly. But when I use the access the phone goes to the next step and tells me the TFTP files are not found. Why does the port disapear from the VLAN list?

View 8 Replies View Related

Cisco Switching/Routing :: Route Data From Vlan 10 To Vlan 20 On 2960s?

Mar 31, 2013

i need to solves this little problem on 2960S lan BASE but i dont know if it is possible.
 
Uplink port config for gi 1/0/28 is:
 
switchport mode trunk
switchport trunk alloved vlan 10,11
  
but on interface gi 1/0/1 i want to have data from vlan 10 tagged as VLAN 20.
At this time i have solved this issue very primitively
 
I have set up gi 1/0/2 as int mode acces, acces vlan 20 and i have connected gi 1/0/2 with gi 1/0/3 with eth cable. int gi 1/0/3 is switchpor mode acces, switchport acces vlan 10

View 4 Replies View Related

Cisco Switching/Routing :: 3750G / VLAN 1 Is The Only VLAN And Its Disabled

Sep 16, 2012

I have a 3750G switch in my production network that only has VLAN 1 on it. All ports are in a default state and VLAN 1 is disabled. The switch is passing traffic but shouldn't having the default VLAN shut down cause the ports not to pass traffic? If I start to create VLANs will that cause the switch to stop passing traffic?

View 4 Replies View Related

Cisco AAA/Identity/Nac :: 802.1x Auth-Fail VLAN And Guest-VLan Not Available

Oct 12, 2011

I'm wanting to setup a Virtual Office scenario. Everything is working fine except for 802.1x...I can get the 881 to authenticate things connected to it, but I don't have the options of guest-vlan or auth-fail vlan.Idea is if the users takes the router home and someone, either accidentally or on pupose, connects an unauthorized Laptop, they stay off the Corp network but can get to the internet still.I found this link on Cisco's site: [URL]That link shows them configuring a guest vlan right on the fa0-3 ports of an 881W. I dont have that option on mine. I can only configure 802.1x on the vlan interface. I have 802.1x working, for things that connect to vlan1, but I would like to have a "fallback" setup.
 
EZVPN_Remote(config-if)#int fa1
EZVPN_Remote(config-if)#dot
EZVPN_Remote(config-if)#dot1?
dot1q 
EZVPN_Remote(config-if)#dot1

[code]....

View 1 Replies View Related

Cisco Switching/Routing :: L2tpv3 Vlan-to-vlan Tunnel On 890

Jun 13, 2011

I am trying to setup a L2tpv3 VLAN-to-VLAN tunnel.My setup has two Cisco 890 router with Cisco IOS Software version 15.0(1) M4. These routers are connected directly on FastEthernet port 8.
 
One linux machine is connected on FastEthernet port 0 on each router. The two linux machines are on same vlan. I am trying to establish a vlan-to-vlan tunnel between the routers and send traffic between the linux machines.
 
I followed the case study 11.4 from [URL] and configured the l2tp-class and pseudowire-class. However, the vlan interface configuration is different on 890 router.
 
I configured a vlan interface as follows.

(config)#vlan 200
 (config)# interface FastEthernet 0
#shutdown
#switchport access vlan 200
(config)# interface vlan 200
 
I don't see the 'xconnect' command in this context. What's wrong with my configuration? 

View 3 Replies View Related

Cisco Switching/Routing :: Low Bandwidth On 3750 From Vlan To Vlan?

Nov 20, 2012

We have a low bandwith (15-20 Mbit/s) to the ASA from our Client vlan. If i connect the Client to the same vlan as the ASA is, the bandwith (90 Mbit/s) is good.
 
Here are the Layer 3 Design:
 
Client     ->     vlan 2 - Switch - vlan 7     ->     vlan 1 - ASA 5505     ->     ISP
 
The Layer 2 Design:
 
Client     ->     Gig2/0/13 - Switch - Gig4/0/43     ->     Eth0/1 ASA5505     ->     ISP
 
IP Address:
Client: 172.16.2.10Vlan2: 172.16.2.1Vlan7: 172.16.7.1ASA: 172.16.7.2
  
I assuming the switch has a problem with routing ?It is a stacked Switch with following members:

switch 1 provision ws-c3750g-12sswitch 2 provision ws-c3750g-24tsswitch 3 provision ws-c3750g-24tsswitch 4 provision ws-c3750x-48
 
And we have following error message in the log from the switch:

%PLATFORM_UCAST-4-PREFIX: 

One or more specific prefixes could not be programmed into TCAM and are being covered by a less specific prefix, and the packets may be software forwarded I first get the idea that the switch is overloaded with router traffic. Thats why i assuming i have to check the sdm templates, but i'm not sure if this resolves the issue. 
 
Here are the relevant config:
 
ASA Interface on the Switch:

interface GigabitEthernet4/0/43description ASA-inside LANswitchport access vlan 7switchport mode accessspanning-tree portfast
 
Client Interface on the Switch:

interface GigabitEthernet3/0/1switchport access vlan 2switchport mode accessswitchport port-securityswitchport port-security aging time 2switchport port-security violation restrictswitchport port-security aging type inactivitymacro description cisco-desktopspanning-tree portfastspanning-tree bpduguard enable

[code]...

View 2 Replies View Related

Cisco :: Routing Traffic From Non VLAN To VLAN On Same Interface?

Nov 21, 2012

i'm going mad on following problem. I'm trying to get 2 networks seeing each other while one of the network is a non VLAN network and the other one is a VLAN network.They should use the same interface so i added VLAN e0/0.122 to the interface e0/0.Send a ping from my asa to both gw-IP's made me happy at first. In second in figured out that i cannot reach any client in the other network. For testing purpose i created an permit acl to any/any for both networks, but the packets still get dropped by the default implicit rule. (deny any/anyMaybe i'm to stupid for this

View 10 Replies View Related

Cisco :: SF302-08 VLAN Setup - VLAN Cannot Communicate With Each Other?

Nov 27, 2012

I am trying to set up a Vlan on an SF-302-08 small business switch. I would like two Vlans both with internet access but the two cannot communicate with each other. I am not really sure how to go about setting this up as its all fairly new to me. I have successfully set up the Vlans and the ports on each VLAN cannot communicate with each other however the internet access will only work when plugged into either VLAN but wont work on both together

View 1 Replies View Related

Cisco :: Cannot Route To Default Vlan (vlan 1) From Other VLANS

Jan 23, 2013

I've been given the task to clean-up our network config, and have walked into a disaster zone.We have a 4510R on site with everyone using the default VLAN, VLAN 1.I have created 4 new VLANS, VLAN100, VLAN150, VLAN200, VLAN250 I have assigned interface addresses to each VLAN and configured Inter VLAN routing.I can route to and from each new vlan with no problem, i.e VLAN250>VLAN100 VlAN100>VLAN200 etc but I can't route to VLAN 1(Default VLAN) from any of them, I can ping the interface on VLAN 1 from any VLAN , but any hosts are unreachable. On the flip side , from VLAN 1 I can route to all of the VLANS.

View 3 Replies View Related

Cisco Switches :: SF-300 - Connection Between Vlan 1 And Vlan 2 Not Accessing

Apr 6, 2013

I have some problem in my small network.I have 2 SF-300 48 port switches and connected to 847 router for intervlan routing.  I configure 7 vlan in SW1 and uplink to SW2 with trunkport. 

The problem is that if i used default gateway for users ip address of interface (vlan interface) is ok.  I bring two adsl modem and connected to vlan1 and vlan2 for internet access.  When i connected this two modem vlan 1 and vlan 2 are not going to access other vlan 3,4,5,6,7 and wise versa.
 
vlan1 users getting default gateway from adsl modem ip,  how i can permit this two vlan should to access other vlan 3,4,5,6,7 and 3,4,5,6,7 should access to internet also.
 
[URL]...

View 4 Replies View Related

Routers / Switches :: Netgear GSM7248R - How To Route From Vlan To Management Vlan

Jan 20, 2011

I have a Netgear GSM7248R switch with 5 different Vlans including th management Vlan. Each of the vlans are connected to my layer 3 switch for routing. I want to access the management vlan form any of my Vlans so my layer two switch can be detected by my snmp manager.

View 3 Replies View Related

Cisco :: NAM 5.1 View Only VLAN 0 In N TOP VLAN?

Nov 23, 2011

I have one NAM 2204 upgraded to 5.1.2 version, but in  Monitor - Traffic Summary - TOP N VLAN appears only VLAN 0, Why?

View 1 Replies View Related

SRW2048-K9-NA - Difference Between Port To Vlan Vs Vlan To Port?

Apr 5, 2011

I have this Cisco Switch: SRW2048-K9-NA. When I log into the Web GUI, I am provided the two options mentioned above for VLAN Management. I have fiddled with the two options and they seem identical to me. Is there really a difference, maybe better flexibility?

View 2 Replies View Related

Cisco :: LMS 4.0.1 Cannot See Devices

Jul 14, 2011

I have installed LMS. Then I have configured Default Credentional Set. Then start discovery with cdp and arp modules. LMS found my devices, 2 of them are reachable  but other unreacheble. All snmp settings on the devices are the same. I test from LMS connectivity, it works great. Then checked snmp from pc (C:Program Files (x86)CSCOpxobjectsjtin) all tools snmpset and snmp walk works corretly and can get data. How make LMS to get data from devices ?

View 4 Replies View Related

Cisco :: Devices Don't Show In NCS 1.0

Sep 15, 2011

I've added several switches and one WLC to my new NCS Prime box. I don't see them in the display. If I try to readd one, it says it already exists. What am I missing?

View 0 Replies View Related

Cisco VPN :: ASA 5520 - VPN With Two Devices

Jun 25, 2012

I got a VPN request form from one of our partners. On my side I have one ASA 5520 running 8.0(3) On their form, It says that their endpoints are two boxes, sitting on different cities, It also says that there is only one encryption domain, (actually just one IP) that I need to speficy on the VPN setting. It looks like they mean that you could access the same encryption domain from any of the two Boxes in different cities. This is strange to me, since every time I have set up VPN before, each endpoint has their own encryption domains.I never seen two enpoints with the same encryption domain behind, so Im confused wether it might be a mistake on their part, or this is expected.

View 1 Replies View Related

Cisco :: Devices Not Shown In CS LMS 3.2

Oct 23, 2011

LMS 3.2,the devices are not shown in the CS.
 
In CS Device management no devices are shown(0 devices).But devices are shown in DFM,RME and IPM.

View 7 Replies View Related

Cisco :: Add Some APC UPS Devices Into Works LMS 4.1

Jan 17, 2012

I am trying to add some APC UPS Devices into CiscoWorks LMS 4.1. For example i have three APC Smart UPS 5000 RT RMXLI with management cards AP9619, i have chosen Device Type as "Smart-UPS RT 5000 XL" in Nom-Cisco Devices list, but when i am creating Invetory collection job, i`m getting status failed for this devices and the error is: "RICS0001:Internal Error,unable to process the collected data from the device"

View 1 Replies View Related

Cisco :: Adding New Devices In LMS 4.1

Sep 4, 2011

I've download free trial from cisco site Cisco LMS. I've installed  and now I have a question. how to add a device ?

View 10 Replies View Related

Cisco :: Devices Discovering By LMS 4.0

Oct 9, 2011

I have LMS 4.0 server installed without any problems on windows server Enterprise edition service pack 2 then i enabled SNMP on cisco switches and routers by the following commands [code] But when i tried to discover cisco devices and after trying many times theres no result so correct commands required to be enabled on cisco devices.

View 2 Replies View Related

Cisco :: LMS 4.1 Deleting Devices

Feb 14, 2012

I recently deleted some devices from LMS.  Now, when I run a device credential report, I get the following for the devices that were deleted. Device has been deleted, or is not managed by LMS.

View 1 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved