09-07-2014 12:58 PM
Hello,
I have a basic configuration on this SG300-52 :
From the SG-300 :
There is no inter-VLAN routing, but I cannot find how to enable it...
The complete configuration is the following :
SG300-52#show run
config-file-header
SG300-52
v1.4.0.88 / R800_NIK_1_4_194_194
CLI v1.0
set system mode router
file SSD indicator encrypted
@
ssd-control-start
ssd config
ssd file passphrase control unrestricted
no ssd file integrity control
ssd-control-end cb0a3fdb1f3a1af4e4430033719968c0
!
vlan database
vlan 99
exit
voice vlan oui-table add 0001e3 Siemens_AG_phone________
voice vlan oui-table add 00036b Cisco_phone_____________
voice vlan oui-table add 00096e Avaya___________________
voice vlan oui-table add 000fe2 H3C_Aolynk______________
voice vlan oui-table add 0060b9 Philips_and_NEC_AG_phone
voice vlan oui-table add 00d01e Pingtel_phone___________
voice vlan oui-table add 00e075 Polycom/Veritel_phone___
voice vlan oui-table add 00e0bb 3Com_phone______________
bonjour interface range vlan 1
hostname SG300-52
username cisco password encrypted c464af817287343305cbd6493c593885695df531 privilege 15
ip ssh server
snmp-server server
ip telnet server
!
interface vlan 1
ip address 10.0.0.1 255.255.255.0
no ip address dhcp
!
interface vlan 99
name WAN
ip address 192.168.0.2 255.255.255.248
!
interface gigabitethernet49
switchport mode general
switchport general allowed vlan add 99 untagged
switchport general pvid 99
!
exit
ip default-gateway 192.168.0.1
Do you have any idea about the issue ?
Thanks in advance for your help.
Solved! Go to Solution.
09-11-2014 12:56 AM
I figured out the problem, the unmanaged router.
SG300 doesn't have nat and so I can managed only one vlan with this router.
Thank for your support.
09-09-2014 12:02 AM
Hi Athena1390,
Another approach to such a design is, when the firewall does not support multiple VLANs or you would not like to forward all broadcast up to the firewall is simply to add:
1. static route on the firewall pointing out that 10.0.0.1 /24 is accessible via 192.168.0.2
2. ensure that your firewall would do NAT on the subnets which are not directly connected interfaces.
That should be the easiest solution.
Aleksandra
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide