Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
449
Views
8
Helpful
7
Replies

Vlans internetworking

mmohanni1981
Level 1
Level 1

‎08-12-2007 04:40 AM - edited ‎03-05-2019 05:51 PM

Hi all,

Could you please advise. we have set a new network using 4507 as cores,3750 as distribution,2960 as access switches. now the vlans doesn't see each other and you can't access remotely to any host on a different vlan! how can i assign the IT ports the privilege to see all VLANS and access them. i only can access servers remotely if i disabled the firewall.

P.S: the IT are connected to the access which is connected to the distribution which is connected to the cores. the distribution and access are clients and the cores are servers

Labels:
0 Helpful
7 Replies 7

glen.grant
VIP Alumni
VIP Alumni

‎08-12-2007 05:17 AM

It is hard to say without seeing your configs. Obviously something is misconfigured either at layer 2 or 3 or you have trunks or etherchannels misconfigured . we would need to see what the configs look like for core, dist, acess switches .

mmohanni1981
Level 1
Level 1
In response to glen.grant

‎08-12-2007 05:59 AM

glen,

attached is my configuration could you please comment...

P.S:open with word pad to view correctly

9034-Core Configuration
0 Helpful

Edison Ortiz
Hall of Fame
Hall of Fame
In response to mmohanni1981

‎08-12-2007 07:45 AM

To understand your topology a bit better, please type the following commands on each switch:

show cdp ne

show vtp status

show vlan

show int trunk

b.petronio
Level 3
Level 3
In response to mmohanni1981

‎08-13-2007 04:58 AM

I think u miss the "ip routing" command in the core configuration, then it dont make the intervlan routing.

Try it and tell us how it as.

Best Regards,

Bruno Petr?nio

0 Helpful

Edison Ortiz
Hall of Fame
Hall of Fame
In response to b.petronio

‎08-13-2007 03:02 PM

4507 comes with 'ip routing' enabled by default.

The only way to see ip routing in the config, is by typing 'no ip routing' as default commands don't show up in the running config.

0 Helpful

b.petronio
Level 3
Level 3
In response to Edison Ortiz

‎08-14-2007 12:15 AM

Many Thanks Edison.

I'm always learning in this forum :)

Best Regards,

Bruno Petr?nio

0 Helpful

mmohanni1981
Level 1
Level 1
In response to Edison Ortiz

‎08-14-2007 04:21 AM

i'v tried to enable this by ACL's what i did is:

i added an ACL on the core

access-list 110 permit tcp any any

access-list 110 permit udp any any

and i assigned the IT ports on the access-group 110.

the problem is now everyone sees everyone ?? should i add an ACL before 110 and say DENY ANY ANY.

also after i'm seeing all the computers i can't access them remotly or offer remote assistance as i was before installing the new network gear.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card