Cisco WAN :: 3560 / How To Configure Static Routing To Different Gateway
Dec 6, 2011
I have one Cisco 3560, and it is connected to Firewall...I already turn on the ip routing, which is able to do interVLAN..In 3560, the static route is 0.0.0.0 0.0.0.0 192.168.2.2
3560 (port 1) =====> Firewall (port 1) ======> Internet (WAN)
192.168.2.1 192.168.2.2
Which mean... anything from 3560 will be rote to Firewall port 1 (192.168.2.2) and all the user behind 3560 will able to connect to Internet (WAN).
I want different setup now, I'm trying to configure another port (port 2) from Cisco 3560 connect to Firewall port 2...
3560 (port 2) =====> Firewall (port 2) ======> Internet (WAN)
10.1.1.1 10.1.1.2
I want subnet 10.1.1.x route to different gateway (10.1.1.2) to Firewall go out to WAN... and not using 192.168.2.2 gateway to WAN.
View 10 Replies
ADVERTISEMENT
Feb 25, 2013
We have two catalyst 3560 switches running c3560-ipbasek9-mz.122-58.SE2.bin They are connected using etherchannel using gi 0/21 - 24 interfaces.
on 3560-1 switch, there isn't any ip-default gateway or ip route configured. It only have 1 interface vlan configured.
on 3560-2 switch, there is ip default gateway configured along with 1 interface vlan.
What i dont understand here is that, i can reach out to other subnets from 3560-1 switch in which the routing is not enabled?
View 4 Replies
View Related
Oct 17, 2012
I have been looking at deploying a small core switch design for an important branch office that would consist of 2 cores with an etherchannel link and then 4 POE access switches linked to both cores utilising STP. I will also want static IP routing on the cores and will set up HSRP for gateway failover.
The initial switch I looked at for the core was WS-C3560E-24TD-S however after finding that there is no stock around of this at the moment I have seen the WS-C3560X-24T-S which looks like it will do everything I need including IP routing, HSRP and QoS for VOIP. The thing that concerns me is this is about £1000 cheaper so i'm slightly worried im missing someting.
View 6 Replies
View Related
Feb 7, 2012
We have a server connected to a 3560 switch which in turn connects to 6500s. The gateway interface is on the 6500. We will be changing the 6500s so the mac address for the gateway will change, however the IP address will remain the same. As we change out the 6500s the uplink connections to the 3560 will go down. This will flush the old mac address from the 3560.When the 3560 removes a MAC address does it update servers so they have to relearn the correct MAC address?
View 4 Replies
View Related
May 31, 2012
i am not sure if this is something with my DHCP setup or not, but it certainly seems to be the culprit. I am running a 3560G and using it as DHCP and to do V LAN routing (Geiger protocol). I have 10 pools configured with a few static addresses per pool. Now to get down to the problem. I have a computer (and this problem seems to be a gremlin as it changes what computer is affected quite often) that will connect, get its IP, immediately disconnect, then send out a DHCP req again. The computer has a static assignment in the pool, and for the brief second that it connects, it gets the right address. If i move the computer to another v lan, all works right. If i delete the static entry it will get an address in the right v lan no problem. The command i have been using to add static entries is:
address xxx.xxx.xxx.xxx client-id 01xx.xxxx.xxxx.xx
That seems to have been working on all my static routes except for a bank of computers in vlan3. I have went as far as to delete the pool and recreate it, heck i even recreated the v lan and i am still having issues. Below are some snippets of the running config for review.
The DHCP Pool for the affected LAN:
ip dhcp pool Dev3
network 192.168.3.0 255.255.255.0
boot file bootx86wdsnbp.com
next-server 192.168.1.78
dns- server 192.168.1.8 192.168.1.78
[Code] .....
View 4 Replies
View Related
Jul 4, 2012
A check out a network segment and want to know why SwA has a static route to SwB if SwA already has a Default GW to Core?
(SwA, SwB - Catalyst3560, Core - Catalyst4948)Note, there are distribute list on SwA - it does not has any OSPF route (exclude O*IA).
Does this mean when SwA send out packet with DA 10.5.64.0/26, Core will use only L2 switching (instead of L3)? Is this more effectively for Core Switch?
Pleace check my reasoning:
1. When use a static route: SwA receive packet from Vlan 20 with DA 10.5.64.0/26 it will strip out Dest. MAC and replace it with MAC of SwB. Core will switch this packet to SwB based on mac add. table (l2 switching)
2. When SwA has only Default gateway and receive packet from Vlan20 with DA 10.5.64.0/26 it replace Dest. MAC with Core MAC. Core receive this packet, lookup route table for 10.5.64.0 entry and forward packet base on this.
View 6 Replies
View Related
Mar 5, 2013
We have a 6509 series of core switches and 3750 series of L2 switches, There is no default gateway or any static routes to any IP.VLAN 1 is made admin down and another vlan is used for all communication here in this environment
Attached is configuration for reference But still I am able to take telnet or SSH. I want to know how telnet or SSH or tacacs authentication happens without any static or default route.
View 4 Replies
View Related
Nov 23, 2011
I configured following command to implement QoS on Cisco 3560.
class-map match-any IND
match access-group name Lync
policy-map LyncAV
class IND
set ip precedence 4
[code]....
how to apply this QoS on interface?
View 3 Replies
View Related
Jun 7, 2012
configure QoS on 3560 switch i have taken the template from cisco configuration guide since we have different QoS configuration on each model.
below is the configuration :
configure terminal
mls qos
end
mls qos map cos-dscp 0 8 16 26 32 46 48 56
no mls qos srr-queue input cos-map mls qos srr-queue input cos-map queue 1 threshold 2 1 mls qos srr-queue input cos-map queue 1 threshold 3 0
[code]....
Currently all the cisco phones are connected to this switch and configuration with only one vlan that is voice vlan .
1) what is the outcome of this configuration , i mean, what will be the expected output ? end of the day we need to prioritize the voice traffic but why other commands including threshold and buffers are mentioned with respectives queues , if I need to explain that what am i expecting out of this configuration ?
2) this is LAN QoS which i understood but again , do i need to configure policy-map along with class-map which is MQC on this switch ?
3) i have edge router where i have MQC already configured but confusion with this switch which is working as a Access switch .
4) I referred the cisco QoS document for the respetive model whereas we have policy-map configured on the same switch with class-map .
My understanding is if we have configured the LAN QoS , and mapped the CoS value with DSCP , we need not to have MQC.
View 4 Replies
View Related
Aug 19, 2012
I want to configure Cisco 3560 SWITCH with IP cameras. I need to configure the ports connected to Camers. IP addresses to the Cameras has been assigned.
View 1 Replies
View Related
Jun 4, 2012
It is possible to configure the IOS NetFlow 122-58.SE2 in a Catalyst 3560?
View 5 Replies
View Related
Nov 15, 2011
how we can configured 3560 for Avaya IP phone ? , we would link to use voice and data connect to the same port
View 1 Replies
View Related
Jan 26, 2013
I have routing enabled, can build a static route, and go back and see it (sh ip route), but I don't know how to get the route right. I have one host (Host A) on Vlan 20 w/192.168.20.2/24 dg 192.168.20.11 (the vlan ip) and (Host B) on Vlan 30 w/192.168.30.2/24 dg 192.168.30.11 (the vlan ip). I can't ping them from any host man. I can ping the Vlans but not the host.
View 19 Replies
View Related
Jan 21, 2013
As per the attached diagram: How do I configure the 2 ports on the 3560 (Ports 6 & 7) and the connected ports on each of the 2960 switches (Port 25) to provide redundancy.
If the up link from Switch A dies then I need the traffic to flow through the trunk and utilize the up link on Switch B with minimal delay (milliseconds).
View 9 Replies
View Related
Jul 30, 2012
How to configure cisco 3560 to force the client only can get ip by dhcp-relay server ?
The company i am working in has 5 vlans which have been set an lay-3 switch(3560), uses the dhcp-relay server .(in svi configuration: ip helper-address X.X.X.X) well , that works ok~
Now , I got my problem: I need to force the client only can get ip by dhcp-relay server, that means if anyone set static IP manunally , he can't really access to anywhere (to provent anyone set static IP with malignancy )
I know if a h3c router , how to set this configuration n svi configuration : dhcp relay security address-check enable )
the how to configure on a cisco 3560 ?
View 1 Replies
View Related
Feb 14, 2013
We have one core switch and we are planning to add a 6509. Both are none VSS.All the access switches are Catalyst 3560 series.
We plan to have all 3560s to have a link to each of the core. Without VSS, it is not possible to etherchannel to both core switches correct?What protocol should I configure to prevent in case one core fails? HSRP, VRRP, GLBP?
Do I need to run spanning tree protocol? if so which one?What is the best way to connect from each Catalyst 3560 for load balancing and redundancy? One to each core?
View 4 Replies
View Related
Mar 14, 2013
I need a switch to configure a static ARP entry for a MS NLB multicast.
Could answer me if I can do with the SRW2024-K9-BR?
View 4 Replies
View Related
Sep 18, 2012
Any info on how to configure dynamic-pinning, instead of static pinning on a Nexus 2224 connected to a 7009?Can't seem to find anything on CCO!
View 9 Replies
View Related
Apr 7, 2013
I am trying to setup the following. We have an RV042 Router and are using it as our gateway at the office. In the office we are using a Windows Domain abc.lan with DHCP of 10.0.0 - 10.0.0.254. The Router/Gateway is setup with a Static IP of 10.0.0.100.A couple of our office employees would like to work from home via VPN using their laptops. With the many options available for this router, I am not clear as to which options and what settings I should set.
View 2 Replies
View Related
May 21, 2013
My controller is vWLC installed in ESXi which has to vNet Cards configured with all vlans(4095), then it is connected to a 3560 switch with trunk. The configuration of the switch interface is as belows: The SSID is BYOD and I can connect the SSID and get the IP address such as 10.10.10.118/24, but for now, i cannot ping 10.10.10.1, but i can ping 10.10.10.90.
View 3 Replies
View Related
Jul 27, 2011
We have recently purchased a Cisco SG300 and have been configuring it. [code] The VLANs have ACLs set up to prevent any communication between the Holly and Tempo VLANs (and their associated WAN VLANs).Each VLAN has a WAN available for it's use, which connects to external networks (including the Internet).In order to facilitate this, we have set up all the necessary ACLs and routes and confirmed that this all works.However, the problem comes when we assign the static routes that specify the default gateways.We add the two static routes below:
-0.0.0.0 next hop 10.10.200.254 metric 1
-0.0.0.0 next hop 192.168.200.254 metric 1
In this case, only one of the VLANs has WAN access. It is either Holly or Tempo (it can be either if the order the static route is added is changed).What we need is to force Holly to use Holly WAN and Tempo to use Tempo WAN, but we cannot see a way of doing this.Effectively, we want the following static routes: [code]
View 2 Replies
View Related
Jul 6, 2012
I picked up a pair of RV220W's and before I spent loads of time at a remote site, I figured I'd go through some VPN testing at home to make sure I could get it setup properly. What this means is I've plugged the Internet uplink into a switch, then from the switch into both routers & configured them (using unique static IP's for each) from there. For what its worth: While I have some IT experience, I don't have strong networking experience.
I setup several VLAN's on the local RV220W, and the end result is to make it so that an asset at the remote site with an IP in any of the ranges (192.168.121.0/24, 192.168.131.0/24, 192.168.141.0/24 and any future VLANs) can communicate with/access resouces at the local site. Likewise, an asset at the local site with an IP in any of the ranges (.121, .131, .141 + any future VLANs) should be able to reach the remote resources (currently just 192.168.181.0/24, but future VLANs as well).
This evening I tried to focus on the relevant VPN pages of the Administration Guide to get the VPN up. Leaving the defaults I got as far as establishing a link between both sites and it seems that things are working right: From the remote site (.181) I can access the local site (.121, .131, .141); and from the local site I can at least ping resources (a laptop) on the remote site. (Yay!)
However, when I physically connected an asset that had a 192.168.121.X, 192.168.131.X and 192.168.141.X IP addresses to the remote RV220W (which is 192.168.181.0/24), I couldn't see it from the remote or local sites.I assume this is expected. But I'm reaching out to the community to see what other possibilities might be available becuase networking is a weak area for me. I figured it might be something like a Static [or Dynamic] Route but I really am not 100% sure.
'TECHNICAL' SPECS
Local Router LAN/WAN Settings:
LAN IP: 192.168.121.1 on default VLAN (1)
VLAN 13 defined 192.168.131.1 with DHCP enabled; Reservations created outside of DHCP scope
VLAN 14 defined 192.168.141.1 with DHCP enabled, Reservations created outside of DHCP scope
Inter VLAN Routing enabled for all VLANs
[URL]
View 7 Replies
View Related
Jul 18, 2011
Is it possible to configure multiple ISPs in 3560? and These ISPs traffic should be forward different vlans & different ports. i need configure port wise DHCP also and using different ip addresses please, which device supports this application
View 2 Replies
View Related
Mar 18, 2012
is it possible to configure an IOS Firewall IPS on a Catalyst 3560? Which IOS version would I need if it were possible?
View 3 Replies
View Related
May 25, 2012
I have a set of public ip(/29) using adsl2+, is it possible to config cisco 857 as a public gateway so i can assign public ips to my computers?? before i upgrade to adsl2+ i was using cisco 678, it can be config as a public gateway without problem, but now i have ot use adsl2+, can't use cisco 678 anymore..
View 8 Replies
View Related
Oct 3, 2011
I am trying to configure my catalyst swtich as an internal router.
I want to route traffic between 4 different subnets.
192.168.200.0 /24
192.168.201.0 /24
192.168.202.0 /24
10.10.10.0 /24
View 27 Replies
View Related
Nov 14, 2011
I would like to properly configure my L3 to support iSCSi traffic. My L3 acts as an internal router between 4 different sub nets.
I have a iSCSi SAN on my network. A Windows server has Microsoft iSCSi initiators connecting to the SAN.
View 3 Replies
View Related
May 25, 2012
I am trying to configure wireless network to my computer but it keeps asking for security key which I am not privy to.
View 1 Replies
View Related
Jul 19, 2011
is it possible with LMS 4.0 and VLAN Port Assignment also to configure auxiliary vlans?
1. I selected Configuration > Workflows > VLAN > Configure Port Assignment.
2. Selected my device (a test switch WS-C3560-8PC-S)
3. Clicked List Ports
All ports were listed, port Fa0/1 has only a native vlan, the ports Fa0/2 - 8 have native and voice vlans (auxiliary) configured manually.
So when I want to configure the voice vlan for Fa0/1 the voice vlan is set as the native one.
Is it only possible to configure the native vlans with the VLAN Port Assignment of LMS 4.0 ?
View 2 Replies
View Related
Feb 28, 2012
I am using D link Wireless router and the Model is DI-524 I am unable to configure the router with static Ip as the ISp having Static Address.
View 4 Replies
View Related
May 21, 2013
In my office environment, my machine is configured with an IP address, Subnet Mask and a Default Gateway. The Default Gateway does not allow internet connectivity but is configured to provide us with connectivity to some server based tool.
Now in order to provide us with the internet access, a proxy server is configured via the LAN settings in the IE. The problem here is the Proxy is restricted for some sites that I need like certain technical blogs and all, which it filters out in the blogs category and does not load.
I do have another Gateway server address that I can use in Local Area Connection IPv4 Properties as Default Gateway address which removes this restriction. I thought that this should be configurable to the LAN Settings as a proxy as well. But when I do so, I lose the connection to the internet.
I am not sure if all Gateways can act as proxy servers. Or is there anything that I am doing wrong. I am using the default port 8080 in LAN Settings.I can ask this from the technician but I am not sure if he would be able to answer that as he is just a first level guy. I thought of figuring it out myself.
View 1 Replies
View Related
Apr 18, 2013
I'll start out with the fact I work mostly with Wi-Fi and not a lot in the security realm... If I plug my workstation into the 3560, my wired client adapter can get an IP address. But the WLAN adapter will not when associated to WLAN.Usually this is not a problem since you may only have two access points on the controller and a dozen or so hosts. In my case, however, I want to put a few of the ports on the 3560 into the same VLAN as the WLAN on the 2106 so I can give them the same guest access as the WLAN. The hosts plugged into the 3560 get an IP address without issue from the ASA. When I disable dhcp proxy, the WLAN clients get an IP address, but then the APs cannot get an IP address from the internal DHCP server on the WLAN controller, and cease to function when rebooted since they cannot get to the controller without an IP address.
Any way to configure the ASA to accept the modified DHCP packets from the WLAN controller? It appears to me that the ASA is not able to accept DHCP relayed packets.
View 21 Replies
View Related
Jun 10, 2011
I am setting up a Cisco ASA 5505 first time for My organisation, I usually setup Cisco Router, I have 10 Static IP, & Have 6 Server (S-1, S-2, S-3, S-4, S-5, S-6), Traffic Should be pass through the ASA and is distributed to the destination server that is specified in the packet. LAN servers can be separated into discrete networks for security. For example, a private LAN for internal traffic accessed only via remote dial-in VPN sessions and Want to Configure DMZ for Server (S-4, S-5, S-6) that allows public web traffic.
I have Attached My Network Diagram I have some question,
1:- Can we Configure Multiple Static IP On ASA 5505 ?
2:- If Diagram is wrong what change need to be done ?
View 2 Replies
View Related
