Cisco 2801 and Vlans

Unanswered Question
Dec 3rd, 2007
User Badges:

Dear all, i'd like your help on the following issue:

I've a cisco 2801, with 2 fa interfaces and 1 wic-4esw module.

I want to have an access to internet using fa 0/1 (no problem); and i need to provide internet to 2 private lans. I want to use the wic-4esw ports to access these 2 privates lans (2 ports for each lan).

Until now, i was able to define 2 vlans in vlan database. Also i could assigned 2 ip addresses to 2 fa 0/0.1 and fa 0/0.2, and use "encap dot1Q" on both interfaces.

But the router doesn't accept "switchport ..." on each interface and also doesn't accept "interface Vlan vlan_num", like is referenced in

"http://cisco.com/en/US/docs/routers/access/1700/1711/software/feature/guide/1711swm.html#wp228931"


Could you help? I'don't know what to do.

Thanks in advance


IOS info

---------------------

Cisco IOS Software, 2801 Software (C2801-IPBASE-M), Version 12.4(1c), RELEASE SOFTWARE (fc1)

Technical Support: http://www.cisco.com/techsupport

Copyright (c) 1986-2005 by Cisco Systems, Inc.

Compiled Wed 26-Oct-05 08:42 by evmiller


ROM: System Bootstrap, Version 12.3(8r)T9, RELEASE SOFTWARE (fc1)


SugarDaddy uptime is 3 days, 4 hours, 23 minutes

System returned to ROM by reload at 17:24:53 UTC Fri Nov 30 2007

System image file is "flash:c2801-ipbase-mz.124-1c.bin"

----------------

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
JORGE RODRIGUEZ Mon, 12/03/2007 - 13:02
User Badges:
  • Green, 3000 points or more

Hi, when you defined the two vlans in the switch are you trunking from switch to router fe0/0 interface ?


Also when you difine encapsulation dot1q place the vlan # next to dot1q statement under the subinterface to define the vlan should be under.


e.g say you configured vlan 3 and vlan 4 on switch , the configuration in router should look like this.


interface FastEthernet0/0.3

description vlan 3

encapsulation dot1Q 3


interface FastEthernet0/0.4

description vlan 4

encapsulation dot1Q 4




HTH

Jorge


windieana Mon, 12/03/2007 - 13:10
User Badges:

Hi Jorge, thanks for helping,


I 've now the following:

---------------------------------

interface FastEthernet0/0.1

encapsulation dot1Q 2

no snmp trap link-status

no cdp enable

!

interface FastEthernet0/0.2

no cdp enable

!

interface FastEthernet0/0.3

encapsulation dot1Q 3

no snmp trap link-status

no cdp enable

---------------------


and the show command , gives:


SugarDaddy# sh int fa 0/0.1

FastEthernet0/0.1 is up, line protocol is down

Hardware is Gt96k FE, address is 0017.590a.c122 (bia 0017.590a.c122)

MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,

reliability 255/255, txload 1/255, rxload 1/255

Encapsulation 802.1Q Virtual LAN, Vlan ID 2.

ARP type: ARPA, ARP Timeout 04:00:00

Last clearing of "show interface" counters never

SugarDaddy#sh int fa 0/0.3

FastEthernet0/0.3 is up, line protocol is down

Hardware is Gt96k FE, address is 0017.590a.c122 (bia 0017.590a.c122)

MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,

reliability 255/255, txload 1/255, rxload 1/255

Encapsulation 802.1Q Virtual LAN, Vlan ID 3.

ARP type: ARPA, ARP Timeout 04:00:00

Last clearing of "show interface" counters never

SugarDaddy#



But there is no IP address, which i've aready inserted. Should i do it again?

Also, at the end will this traffic pass thorugh other switches like hp procurve ?


thanks for your help,

windieana


JORGE RODRIGUEZ Mon, 12/03/2007 - 13:19
User Badges:
  • Green, 3000 points or more

you said you configured the sub with IP addresses and yet they do not show up.. hmmm.. try re-entering again and write mem.


[edit]

how are you trunking from the wic switch , have you selected a port on switch to trunk with router and pass the two vlans you created on swithc, can you discribe the topology and where the hp connects to?


Jorge


windieana Mon, 12/03/2007 - 13:27
User Badges:

Jorge,


yes, you are wright, this time the ip addresses are configured on both interfaces.


But i'm able to test it because i'm remotly connected and the cables are not pluged.


Anyway, is this configuration enough ?

will it work with other manufacturer switches?


thanks again.

windieana

windieana Mon, 12/03/2007 - 13:35
User Badges:


Hi Jorge


i'm not using any trunking and also these vlans on fa 0/0.1 and fa 0/0.3,should not comunicate.


do i need trunking? i heard trunk protocols on vlan on wic-4esw are not supported.


Each HP switch will connect to each fa0/0.x.


Here is my current config:

---------------------------

!

boot-start-marker

boot-end-marker

!

logging buffered 51200 warnings

!

no aaa new-model

!

resource policy

!

mmi polling-interval 60

no mmi auto-configure

no mmi pvc

mmi snmp-timeout 180

ip subnet-zero

ip cef

!

!

no ip dhcp use vrf connected

!

!

no ip domain lookup

ip domain name wcupmobile.com

!


!

!

!

interface FastEthernet0/0

description used for internet access redundancy

no ip address

speed 100

full-duplex

!

interface FastEthernet0/0.1

encapsulation dot1Q 2

ip address x.x.x.x 255.255.255.240

no snmp trap link-status

no cdp enable

!

interface FastEthernet0/0.2

no cdp enable

!

interface FastEthernet0/0.3

encapsulation dot1Q 3

ip address y.y.y.y 255.255.255.248

no snmp trap link-status

no cdp enable

!

interface FastEthernet0/1

description Acesso Internet

ip address z.z.z.z 255.255.255.252

duplex auto

speed auto

!

ip classless

ip route 0.0.0.0 0.0.0.0 r.r.r.r

!

ip http server

ip http authentication local

ip http timeout-policy idle 5 life 86400 requests 10000

!

no cdp run


---------------------


thanks

w.


JORGE RODRIGUEZ Mon, 12/03/2007 - 14:03
User Badges:
  • Green, 3000 points or more

According to this doc WIC-4ESW supports 802.1q, you will need to trunk because you are using one physical port on router and spliting it with two routable subnets.


http://www.cisco.com/en/US/products/hw/modules/ps2641/products_module_installation_guide_chapter09186a008007cb78.html#wp1029307


you could create access-list on router to prevent the vlans talking to each other.


Jorge



windieana Tue, 12/04/2007 - 05:19
User Badges:

Hi Jorge , thanks for the reply.


But my config is not "pinging".

I cannot ping my interfaces fa 0/0.1 and fa 0/0.3.


Couls someone help?


Also ive check the doc , and it says:

-----------

WIC-4ESW Interface Card Platform Limitations

The following features are not supported on the WIC-4ESW interface card:


•Virtual Local Area Network (VLAN) trunking protocols (server and client modes, and transparent mode v2)

--------


am i in the wrong direction?


windeiana


windieana Tue, 12/04/2007 - 05:50
User Badges:

Hi Jorge,


i don't see the ports availble under vlan-switch,


what to do?



rg

windieana

------------------



SugarDaddy#sh vlan-switch


VLAN Name Status Ports

---- -------------------------------- --------- -------------------------------

1 default active

2 vlan2 active

3 vlan3 active

1002 fddi-default active

1003 token-ring-default active

1004 fddinet-default active

1005 trnet-default active


VLAN Type SAID MTU Parent RingNo BridgeNo Stp BrdgMode Trans1 Trans2

---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------

1 enet 100001 1500 - - - - - 1002 1003

2 enet 100002 1500 - - - - - 0 0

3 enet 100003 1500 - - - - - 0 0

1002 fddi 101002 1500 - - - - - 1 1003

1003 tr 101003 1500 1005 0 - - srb 1 1002

1004 fdnet 101004 1500 - - 1 ibm - 0 0

1005 trnet 101005 1500 - - 1 ibm - 0 0

SugarDaddy#



JORGE RODRIGUEZ Mon, 12/03/2007 - 13:37
User Badges:
  • Green, 3000 points or more

it should as long the non cisco switches suport 802.1q standard.. and vlans you should be all set.. any questions we are here to help.



rate any helpful post if it helped


Rgds

Jorge

Actions

This Discussion