cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
551
Views
0
Helpful
1
Replies

SG300-28P InterVLAN routing and default gateway for WAP with mutilple SSIDs

m.nicholls1
Level 1
Level 1

Hello All,

I am trying to configure the sg300 switch (set to L3 mode) to provide a wireless network with multiple SSIDs that provide a DHCP assigned address from different scopes depending on what SSID is chosen. I have a Staff, a Guest  and a Register and a Conference SSID. I have chosen to use the IP range of 10.0.0.x with a subnet of 255.255.240.0.  The set up would be as follows:

Default VLAN = ID1
Staff VLAN = ID5
Reg VLAN = ID6
Guest VLAN = ID7
Conf VLAN = ID8

The Default VLAN address is set to 192.168 0.254 and the WAN address is set to 192.168.0.1 The Interface used for the link to the Router (Virgin Media router) is on port 24.

The Staff VLAN uses the address 10.0.64.x with the VLAN ID5 interface using 10.0.64.1 and the DHCP pool is 10.0.64.10 - 10.0.79.250 using ports 1-4
The Reg VLAN uses the address 10.0.80.x with the VLAN ID6 interface using 10.0.80.1 and the DHCP pool is 10.0.80.10 - 10.0.95.250 using ports 5-9
The Guest VLAN uses the address 10.0.96.x with the VLAN ID7 interface using 10.0.96.1 and the DHCP pool is 10.0.96.10 - 10.111.250 using ports 10-14
The Conf VLAN uses the address 10.0.112.x with the VLAN ID8 interface using 10.0.112.1 and the DHCP pool is 10.0.112.10 - 10.0.127.250 using ports 15-20

I have configured the default route 0.0.0.0/0.0.0.0 next hop 192.168.0.1
The switch has already created the directly connected routes. 

I have been able to connect a WAP and connect to the SSID which in turn provides the correct IP for that network, and I am able to ping the gateway of the VLAn the device is in, and I can ping the mgmt VLAN gateway too, but I cannot ping the router address 192.168.0.1

I have set the ports for the WAPs as tagged with ingress disabled as the SSIDs are told what VLAN ID they belong to.

I feel I'm missing something but Im not sure what it is.

Would anyone be kind enough to help point out where I'm going wrong?

Thanks in advance,
Mark

1 Reply 1

devils_advocate
Level 7
Level 7

Hi Mark

It sounds like your router (i.e. the device on 192.168.0.1) is not setup with the static routes for each of your IP ranges.

By default, the router only knows about the 192.168.0.0 /24 IP range as its directly connected to this. It has no clue that the 10.0.x.x addresses even exist. If it receives any frames from those addresses, it will simply drop them as it doesn't know know where it is meant to reply to. 

You need to configure this router with static routes for each of your IP ranges and set the next hop to 192.168.0.254. Basically you need to say to the router 'If you receive any packets with a source IP address of 10.0.x.x, you can reply to them by sending packets to 192.168.0.254 as this device knows how to reach those networks'.

Thanks

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Switch products supported in this community
Cisco Business Product Family
  • CBS110
  • CBS220
  • CBS250
  • CBS350
Cisco Switching Product Family
  • 110
  • 200
  • 220
  • 250
  • 300
  • 350
  • 350X
  • 550X