Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
4336
Views
0
Helpful
6
Replies

How to setup VLANs between SG500, SG300 switches

Go to solution
dzilla000
Level 1
Level 1

‎08-01-2014 02:34 PM

Hi all, I am trying to setup a VLAN on my network which will be for servers and other resources (not clients) and I am having quite a bit of trouble getting it to work. I have setup VLANs before with Dell PowerConnect and 3Com switches but we have since switched entirely to Cisco Small Business switches and I am running into a wall apparently. Here is our current configuration: Multiple Cisco small business switches (SG200, SG300, SG500) and those all reside on the original flat network of 192.168.2.x with a management IP address for each switch on the VLAN1 default of each switch. So for example, the SG200 has 192.168.2.10, the SG300 has 192.168.2.20 and the SG500 has 192.168.2.30.

I have gone into each switch by using those management IP addresses and configured a new VLAN with the ID of 3 on each switch (VLAN3 which is on a subnet of 192.168.200.x). So what I would like to end up with, is keeping our original network the same for clients and other resources, and then placing certain server systems on the new VLAN3 to keep them in their own broadcast domain but still accessible from the client computers. So I'd like both the original LAN and the new VLAN3 to talk to each other. I think I must not understand the way these Cisco switches utilize ports that are "tagged" vs. "untagged" vs "excluded" because when I tag a port for VLAN3 and then tag another port on another switch also for VLAN 3 and so on, and so on, I cannot communicate from 192.168.2.x to VLAN3 which is 192.168.200.x.

 

Can anybody give me a basic overview of VLAN'ing on these small business switches. Do I need to change port types to "access" instead of trunk? They all are trunk by default. Do the uplink ports to the other switches need to be tagged or untagged? I know this all sounds so novice, but I have set VLANs up several times with older 3com and Dell switches without issue.

Thanks,

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Aleksandra Dargiel
Cisco Employee
Cisco Employee
In response to dzilla000

‎08-05-2014 03:21 AM

Hi Dzilla,

So here are the answers to your questions:

1. port 23 - access VLAN 3, PVID 3 = 3UP

2. ports XG1-g10 - trunk tagged VLAN 3 and untagged VLAN 1 = 3T, 1UP

3. the same would be for ports Gi5 and Gi1/1/13 -  3T, 1UP

4. and the last port XG1 should be access VLAN 3 - 3UP

However routing configuration depends only on your traffic patterns. So I might need more information about what VLAN 3 users should access and what VLAN 1 is used for.

Regards,

Aleksandra

View solution in original post

0 Helpful
6 Replies 6

Go to solution
Aleksandra Dargiel
Cisco Employee
Cisco Employee

‎08-04-2014 01:46 AM

Hi Dizilla,

 

The tagging and untagging, access and trunk ports are related to layer 2 functionality and what you actually need is a layer 3 functionality.

SG300 or SG500 switches can be set as layer 3 devices (this is not however default setting). So please choose which device would be acting as router on your network. You will need to configure VLAN 3 (layer 2 interface) and IP address for VLAN 3 (layer 3 interface on this switch) in addition to existing VLAN 2 interface. Please ensure that all hosts and servers default gateway settings are pointing out this switch acting as router. And you should be ready to go.

This is the basic idea however if you have problems with applying this idea into real network I would recommend you to contact our Cisco Small Business Support Center and they will be happy to assist you:

http://www.cisco.com/c/en/us/support/web/tsd-cisco-small-business-support-center-contacts.html

Regards,

Aleksandra

0 Helpful

Go to solution
dzilla000
Level 1
Level 1
In response to Aleksandra Dargiel

‎08-04-2014 02:13 PM

Hi Adargiel,

Thank you for your response! I am still attempting to get this dialed in with a little luck, but I am not all the way there. Let me explain a bit more how I have it all setup and perhaps you can help further. I will explain the topology and ask questions right after each segment:

I am using a Sonicwall port as the "router port" for this VLAN, even though I know I could use the switch itself. The main reason I decided to go this route is because my other VLAN (VLAN2) which is currently in use on the network is following the exact same model/principle. From the Sonicwall port, I have a cable running into an SG500 switch on port 23. How should that port be assigned/tagged in order for VLAN3 to begin working correctly? Trunk? Tagged for VLAN3 or untagged?

From there, I have a SFP+ transceiver on port XG1 which leaves that switch and connects to another switch (SG300) on SFP+ port g10. How should that one be tagged, etc?

From there I have an Ethernet cable running from port 5 on the SG300 into another SG500 on port 13. How should both of those be tagged, etc?

All of the devices I want in VLAN3 will be underneath/connecting to this last SG500 switch, with only one device at the moment connecting into SFP+ port XG1. Should it be tagged or setup a certain way? Trunk, access?

I know this is a lot of info and I apologize for the headache, but any help would be so appreciated!

Thank you!

0 Helpful

Go to solution
Aleksandra Dargiel
Cisco Employee
Cisco Employee
In response to dzilla000

‎08-05-2014 03:21 AM

Hi Dzilla,

So here are the answers to your questions:

1. port 23 - access VLAN 3, PVID 3 = 3UP

2. ports XG1-g10 - trunk tagged VLAN 3 and untagged VLAN 1 = 3T, 1UP

3. the same would be for ports Gi5 and Gi1/1/13 -  3T, 1UP

4. and the last port XG1 should be access VLAN 3 - 3UP

However routing configuration depends only on your traffic patterns. So I might need more information about what VLAN 3 users should access and what VLAN 1 is used for.

Regards,

Aleksandra

0 Helpful

Go to solution
dzilla000
Level 1
Level 1
In response to Aleksandra Dargiel

‎08-05-2014 03:05 PM

Hi Aleksandra,

Your suggestions worked like a charm. I think I was getting hung up on the "untagging" versus "excluded". When I untagged the port coming from the Sonicwall and changed all those ports to access it seemed to do the trick. I'll let you know if I need any more expertise. Thank you Aleksandra!

0 Helpful

Go to solution
Aleksandra Dargiel
Cisco Employee
Cisco Employee
In response to dzilla000

‎08-07-2014 08:14 AM

Hi Dzilla,

Glad to hear :-)

Aleksandra

0 Helpful

Go to solution
mohoumani
Level 1
Level 1
In response to Aleksandra Dargiel

‎10-12-2015 03:58 AM

Hello Aleksandra,

I have similar situation i need to configure, but the problem is I am totally new into this field, do I have to create a new Discussion or I can simply give you the topology criteria that i have?

 

thank you in advanced.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Switch products supported in this community
Cisco Business Product Family
  • CBS110
  • CBS220
  • CBS250
  • CBS350
Cisco Switching Product Family
  • 110
  • 200
  • 220
  • 250
  • 300
  • 350
  • 350X
  • 550X
Customers Also Viewed These Support Documents