Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1147
Views
0
Helpful
6
Replies

Basic VLAN Question

gfunkdave
Level 1
Level 1

‎06-18-2012 10:08 PM - edited ‎03-07-2019 07:19 AM

Hi all, I'm a bit new to the world of smart switches, so this is likely something very simple I'm overlooking.

I have a SG200-50 switch. When I assign it a management IP of 192.168.0.2, I can access it just fine for a certain amount of time. But if I go back later and try to access the web-based config screens, I suddenly can't. I can't even ping it.

I suspect the problem is that I haven't set up any VLANs on the switch, and so none of the switch ports are configured to be part of the management VLAN. But the default behavior is for every port to be an untagged trunk on VLAN 1 - correct?

So, why can't I access the switch?

Thanks for helping...as I said, I'm sure it's something really basic.

Labels:
0 Helpful
6 Replies 6

gfunkdave
Level 1
Level 1

‎06-19-2012 07:28 AM

Update: Still not sure what the problem is, but I'm homing in on it.

When plugged directly into the switch, everything works fine.

If I try to connect to the switch remotely (via a pre-existing VPN), I can't even ping it. But I can access everything else on the LAN just fine.

What's going on here? I can access every other device on the network, so it's not a problem with connectivity. And the switch isn't Layer 3, so why would it be inaccessible?

Thanks.

0 Helpful

Hari Haran S M
Cisco Employee
Cisco Employee
In response to gfunkdave

‎07-05-2012 04:17 AM

Since you are able to reach all other device in that network, routing should be fine. As said by Elton, you have to check the default gateway configuration in the switch.

0 Helpful

BigDawgFelton
Level 1
Level 1

‎06-19-2012 04:42 PM

It could possibly be that your VPN sets you up in a different subnet as your switch. If so does your switch have a default gateway configured? Can your switch ping the default gateway?

Sent from Cisco Technical Support iPhone App

0 Helpful

handoko wiyanto
Level 3
Level 3
In response to BigDawgFelton

‎06-20-2012 01:28 AM

hi gfunkdave,

im agree with elton, sometimes vpn connection will give us new ip and route only to certain network.

need to check the basic routing

regards,

0 Helpful

reddingaq
Level 1
Level 1

‎06-27-2012 07:42 AM

I agree with what has been posted here already.  It sounds like you don't have a route to the management subnet via your VPN connection.  Check your advertised and allowed routes when connecting to the VPN to verify.  As for not being able to manage the switch via the web interface, I would ensure the vlan interface is up/up, and connected nodes are passing traffic.  If that is not the issue, it could potentially be a bug.  Hope you are able to resolve the issue.

0 Helpful

Alessio Andreoli
Level 5
Level 5

‎07-05-2012 11:14 AM

Hi there,

check you DHCP settings and specify the excluded address range (the router ip must belong to this range). after that remember that authentication always happens even if it is null authentication.

Default behaviour should be access port vlan 1 on each switchport and anyway you cannot terminate a VPN there without the switch config. you can just pass through

Happy studies

Alessio

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card