cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
6320
Views
8
Helpful
12
Replies

Cant get the Vlan's on internet..

firmapost
Level 1
Level 1

Hi

Can anyone help me to setup this network..... i cant get the VLAN 50 and 100 to access internet, i is it any

wizard for dummies anywere?

I put in a drawing of my network.. pls ask if its anyting info/settings i need to check..

Thx anyway

1 Accepted Solution

Accepted Solutions

Hi Joar, if your goal is to get VLAN 50 and 100 to the internet, the DHCP service from those VLAN need a default router specified as 192.168.2.1 for VLAN 50 and 192.168.3.1 for VLAN 100. Once you specify the default router you will notice your client leases will have a default gateway of 192.168.3.1 and 192.168.2.1 respectively.

On the RV042 router, first enable multiple subnet feature under IPv4 tab click the button enable multiple subnet then type in the LAN ip address 192.168.3.1 with mask 255.255.255.0 and then make a second entry 192.168.2.1 with mask 255.255.255.0 and save this.

Once done, you need to make a couple static routes on the router

Destination IP address - 192.168.3.0 mask 255.255.255.0  gateway 192.168.3.1 hop count 1

Destination IP address - 192.168.2.0 mask 255.255.255.0  gateway 192.168.2.1 hop count 1

The static route has to be done correctly otherwise whatever subnet the router is not a member of will not work.

-Tom
Please mark answered for helpful posts

-Tom Please mark answered for helpful posts http://blogs.cisco.com/smallbusiness/

View solution in original post

12 Replies 12

viningele
Level 3
Level 3

First I would change the the managment ip for vlan 1 on the 10 port switch to .254 or anything other than .1 which the RV042 is using, then disable the DHCP server for vlan 1 in that switch since you can't have two dhcp servers for the same vlan.

Since the RV isn't vlan aware I believe you need to make the port on the adjacent 10 port switch that connects to the RV an access port for vlan 1 and then assign that port an IP in the vlan 1 subnet.  So something like 192.168.1.2 and then make that the default gateway for your switches so that everything down stream routes to that port.  On the RV you then need to set up advance routes to your other vlans pointing to the 192.168.1.2 (or whatever you made it) ip of the switch port that connecs to RV on that first 10 port switch. 

You'll also need access rules for the WAN to allow access the the other vlans via any VPN tunnels I believe if you intend to have remote access.

FYI, I'm by no means an expert, actually more a novice so this may be completely wrong but I think it's right and you can give it a try until someone wise chimes in with something to the contrary.

firmapost
Level 1
Level 1

Hi

i did try this... stil can get the vlans on internet, i put up some new info about my switch its like this:

config-file-header

switch437188

v1.3.5.58 / R750_NIK_1_35_647_358

CLI v1.0

set system mode router

file SSD indicator plaintext

@

vlan database

vlan 50,100

exit

voice vlan oui-table add 0001e3 Siemens_AG_phone________

voice vlan oui-table add 00036b Cisco_phone_____________

voice vlan oui-table add 00096e Avaya___________________

voice vlan oui-table add 000fe2 H3C_Aolynk______________

voice vlan oui-table add 0060b9 Philips_and_NEC_AG_phone

voice vlan oui-table add 00d01e Pingtel_phone___________

voice vlan oui-table add 00e075 Polycom/Veritel_phone___

voice vlan oui-table add 00e0bb 3Com_phone______________

ip dhcp server

ip dhcp pool network DB800

address low 192.168.3.100 high 192.168.3.200 255.255.255.0

lease infinite

exit

ip dhcp pool network Guest

address low 192.168.2.100 high 192.168.2.200 255.255.255.0

lease infinite

exit

bonjour interface range vlan 1,100

hostname switch437188

username cisco password 

ip telnet server

!

interface vlan 1

ip address 192.168.1.2 255.255.255.0

no ip address dhcp

!

interface vlan 50

name DB800

ip address 192.168.2.1 255.255.255.0

!

interface vlan 100

name ciscosb-guest

ip address 192.168.3.1 255.255.255.0

!

interface gigabitethernet6

switchport trunk allowed vlan add 50,100

!

interface gigabitethernet7

switchport trunk allowed vlan add 50,100

!

interface gigabitethernet8

switchport mode general

switchport general allowed vlan add 50,100 tagged

!

interface gigabitethernet10

switchport mode access

!

exit

ip default-gateway 192.168.1.1

ip route 192.168.2.0 /24 192.168.1.1

ip route 192.168.3.0 /24 192.168.1.1

ip ssh-client key rsa key-pair

---- BEGIN SSH2 PRIVATE KEY ----

Comment: RSA Private Key

-----END CERTIFICATE-----

Thx

Joar

Ho Joar, aside from assigning IP interface to each VLAN and defining the default-gateway on the switch all configuration goes on your router. You will need to enable multiple subnet and define the subnets used on the SX300 layer 3 switch then you need to make static routes pointing back to each SVI of the layer 3 switch.

-Tom
Please mark answered for helpful posts

-Tom Please mark answered for helpful posts http://blogs.cisco.com/smallbusiness/

Hi Tom

I didi think i did put the switch on L3 mode... and i cant put a ip-pool on the vlan1, i got a errer with cant have 2 dhcp severs on same range.. how can i see if i got the layer 3 correct ? .. i put in settings agen

config-file-header

Layer3Switch

v1.3.5.58 / R750_NIK_1_35_647_358

CLI v1.0

set system mode router

file SSD indicator encrypted

@

ssd-control-start

ssd config

ssd file passphrase control unrestricted

no ssd file integrity control

ssd-control-end 

!

vlan database

vlan 10,50,100

exit

voice vlan oui-table add 0001e3 Siemens_AG_phone________

voice vlan oui-table add 00036b Cisco_phone_____________

voice vlan oui-table add 00096e Avaya___________________

voice vlan oui-table add 000fe2 H3C_Aolynk______________

voice vlan oui-table add 0060b9 Philips_and_NEC_AG_phone

voice vlan oui-table add 00d01e Pingtel_phone___________

voice vlan oui-table add 00e075 Polycom/Veritel_phone___

voice vlan oui-table add 00e0bb 3Com_phone______________

ip dhcp server

ip dhcp pool network DB800

address low 192.168.3.100 high 192.168.3.200 255.255.255.0

lease infinite

exit

ip dhcp pool network Guest

address low 192.168.2.100 high 192.168.2.200 255.255.255.0

lease infinite

exit

bonjour interface range vlan 1,100

hostname Layer3Switch

username cisco password 

ip ssh server

snmp-server server

ip telnet server

!

interface vlan 1

ip address 192.168.1.2 255.255.255.0

no ip address dhcp

!

interface vlan 10

name Test

ip address 192.168.10.1 255.255.255.0

!

interface vlan 50

name Drembox

ip address 192.168.2.1 255.255.255.0

!

interface vlan 100

name ciscosb-guest

ip address 192.168.3.1 255.255.255.0

!

interface gigabitethernet6

switchport trunk allowed vlan add 50,100

!

interface gigabitethernet7

switchport trunk allowed vlan add 50,100

!

interface gigabitethernet8

switchport trunk allowed vlan add 50,100

!

interface gigabitethernet9

switchport mode access

!

interface gigabitethernet10

switchport mode access

!

exit

ip default-gateway 192.168.1.1

ip route 192.168.2.0 /24 192.168.1.1

ip route 192.168.3.0 /24 192.168.1.1

encrypted ip ssh-client key rsa key-pair

---- BEGIN SSH2 ENCRYPTED PRIVATE KEY ----

Thx

Joar

In your config "set system mode router" means it's setup as L3.  What port on the switch are you using to connect to your RV042G?  The RV is only port based vlan so it's not "vlan aware" so you can't use a port setup in trunk mode.

Hi
I use GI10 for the RV-042G, but do I need to disable DHCP in the RV-042G ? And use 192.168.1.2 as gateway .. And :) the statisk route from VLAN's to std. Gateway on the RV-042G...

Tanks for all help :) i try to learn this :)
Joar

Sent from Cisco Technical Support iPad App

Hi Joar, if your goal is to get VLAN 50 and 100 to the internet, the DHCP service from those VLAN need a default router specified as 192.168.2.1 for VLAN 50 and 192.168.3.1 for VLAN 100. Once you specify the default router you will notice your client leases will have a default gateway of 192.168.3.1 and 192.168.2.1 respectively.

On the RV042 router, first enable multiple subnet feature under IPv4 tab click the button enable multiple subnet then type in the LAN ip address 192.168.3.1 with mask 255.255.255.0 and then make a second entry 192.168.2.1 with mask 255.255.255.0 and save this.

Once done, you need to make a couple static routes on the router

Destination IP address - 192.168.3.0 mask 255.255.255.0  gateway 192.168.3.1 hop count 1

Destination IP address - 192.168.2.0 mask 255.255.255.0  gateway 192.168.2.1 hop count 1

The static route has to be done correctly otherwise whatever subnet the router is not a member of will not work.

-Tom
Please mark answered for helpful posts

-Tom Please mark answered for helpful posts http://blogs.cisco.com/smallbusiness/

Hi Tom!

Thx, now it work on wire.. but i cant get the WAP321 to connect to any other then VLAN1 (untagget), i did put the prt on SG-300 in trunk and added vlan 1, vlan 50 and vlan 100 ..

Joar

Hmm i dont think anyone know how to setup Wap-123 :) with multiple VLAN's


Sent from Cisco Technical Support iPhone App

Hi Joar, what specific set up do you want with the WAP? Just some SSID on different VLAN or do you try to do something else?

-Tom
Please mark answered for helpful posts

-Tom Please mark answered for helpful posts http://blogs.cisco.com/smallbusiness/

Hi,
Yes, i way to get 3 SSID's on my VLAN's
I do use 3 Wap-321 like the drawing of my network in the top of topic :)

Thx :)

Sent from Cisco Technical Support iPhone App

Ho Joar, apologies for a late reply.

To try to allow your SSID to match up, there is a LAN setting where the default VLAN is 1, this is for the management connection that you can configure the access point on.

When you manage your wireless SSID under Wireless -> Network, when you edit the SSID, there is a VLAN box to fill in a VLAN ID. Choose something simple such as 2, 3, 4 etc.

Once you specify the VLAN per SSID you need to configure your switch to understand those VLAN coming in to the port.

So if your management VLAN is 1 and your other SSID is VLAN 2, 3 and 4 you need to configure a switch port as 1 untagged 2,3,4 tagged

Sample command would be like this

config t

int gi1

switchport mode trunk

switchport trunk allowed vlan add 2-4

-Tom
Please mark answered for helpful posts

-Tom Please mark answered for helpful posts http://blogs.cisco.com/smallbusiness/
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Switch products supported in this community
Cisco Business Product Family
  • CBS110
  • CBS220
  • CBS250
  • CBS350
Cisco Switching Product Family
  • 110
  • 200
  • 220
  • 250
  • 300
  • 350
  • 350X
  • 550X